Workspaces: Enabled Graphql service for workspace authorization (!116962) · Merge requests · GitLab.org / GitLab

Shekhar Patnaik requested to merge spatnaik/workspace_rails_auth_service into remote_dev Apr 06, 2023

What does this MR do and why?

We need to enable a graphql service that will return the username for the user that is the owner (creator) of the workspace. This is required for workspace authorization - i.e. when a user tries to access a workspace, we authenticate them using OAuth2.0, after that we need to confirm that the user has access to the workspace, we will do this by making a call to the graphql endpoint, receiving the users username and comparing that with what we got from the OAuth response.

Fixes #393020 (closed)

Screenshots or screen recordings

N/A

How to set up and validate locally

Validate using graphql playground - the workspace resource should now have the user resource embedded within it.
The resources being generated via the devfile library should have the workspace id so that auth proxy can be aware of the ID of the workspace.

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Edited Apr 06, 2023 by Shekhar Patnaik

Workspaces: Enabled Graphql service for workspace authorization

What does this MR do and why?

Screenshots or screen recordings

How to set up and validate locally

MR acceptance checklist

Merge request reports