add API for listing silo users#1261
Conversation
e519c32 to
74cacdb
Compare
|
This is ready for review but I'm leaving this as a draft because it depends on #1265. |
|
There's one issue I need to fix: currently, only privileged users can list Silo users. I imagine we'll want to make all users able to list users. |
Not sure. Any authenticated user? Feels wrong, but I can't think of a good reason why. Are you thinking because anyone can create a project, and therefore be an admin on that project, and then they have to list user to assign roles? Can anyone create a project? |
|
It's possible today to have (useful) users that cannot create Projects. They could potentially have full control over Projects that were shared with them. But I feel like "name" and "id" information about all users in the same Silo is both reasonable and probably expected. Without this, you couldn't even see who else has access to the same thing that you have access to. |
Yeah, that makes sense. Wasn't sure whether this is expected. In the GitHub web UI I can't see this on a private repo for which I'm not an admin because they block access to the whole settings view. But it turns out you can still get the list of collaborators from the API: I wonder if there's a distinction to be made between listing users on a particular resource and enumerating all users? |
It's possible but tricky. I imagine we'll eventually add a It seems surprising to me that people would want to put two people in the same Silo that couldn't know about each other. Wouldn't you use different Silos for that? But if we're not sure, we can raise this with product. |
|
I was picturing something more at the endpoint level, like you can't get anything out of |
|
Okay, this version lets all users see all users in their own Silo. I added this endpoint to the allowlist of things without authz test coverage because the test doesn't currently support endpoints that are totally public for all authenticated users. I will file a new ticket for this though because we have a couple of them now. Edit: #1277. |
david-crespo
left a comment
There was a problem hiding this comment.
Very straightforward.
Propolis changes: Update h2 dependency Add NPT ops API definitions from illumos#15639 server: return better HTTP errors when not ensured (#649) Crucible changes: Make Region test suite generic across backends (#1263) Remove async from now-synchronous functions (#1264) Agent update to support cloning. (#1262) Remove the Active → Faulted transition (#1260) Avoid race condition in crutest rand-read/write (#1261) Add Active -> Offline -> Faulted tests (#1257) Reorganize dummy downstairs tests (#1253) Switch to unbounded queues (#1256) Add Upstairs session ID to dtrace stat probe, cleanup closure (#1254) Panic instead of returning errors in unit tests (#1251) Add a clone option to downstairs create (#1249)
Propolis changes: Update h2 dependency Add NPT ops API definitions from illumos#15639 server: return better HTTP errors when not ensured (#649) Crucible changes: Make Region test suite generic across backends (#1263) Remove async from now-synchronous functions (#1264) Agent update to support cloning. (#1262) Remove the Active → Faulted transition (#1260) Avoid race condition in crutest rand-read/write (#1261) Add Active -> Offline -> Faulted tests (#1257) Reorganize dummy downstairs tests (#1253) Switch to unbounded queues (#1256) Add Upstairs session ID to dtrace stat probe, cleanup closure (#1254) Panic instead of returning errors in unit tests (#1251) Add a clone option to downstairs create (#1249) Co-authored-by: Alan Hanson <alan@oxide.computer>
Fixes #1235.
This change:
CC @david-crespo I'm not sure if this change will wind up breaking the console flow you have because there's only an "id" now.