shishantbiswas/coder
1
0
Fork 0
mirror of https://github.com/coder/coder.git synced 2026-06-02 20:48:20 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix(coderd/rbac): make workspace ACL disabled flag atomic (#21799)

Browse Source 
The flag is a package-global that was only meant to be set once on
startup. This was a bad assumption since the lack of sync caused test
flakes.

Related to:
https://github.com/coder/internal/issues/1317
https://github.com/coder/internal/issues/1318
This commit is contained in:
George K
2026-01-30 11:21:27 -08:00
committed by GitHub
parent 37aecda165
commit c60f802580
1 changed files with 4 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files
coderd/rbac/object.go
+4 -3
View File
@@ -3,6 +3,7 @@ package rbac
import (
"fmt"
"strings"
"sync/atomic"
"github.com/google/uuid"
"golang.org/x/xerrors"
@@ -239,16 +240,16 @@ func (z Object) WithGroupACL(groups map[string][]policy.Action) Object {
// TODO(geokat): similar to builtInRoles, this should ideally be
// scoped to a coderd rather than a global.
var workspaceACLDisabled bool
var workspaceACLDisabled atomic.Bool
// SetWorkspaceACLDisabled disables/enables workspace sharing for the
// deployment.
func SetWorkspaceACLDisabled(v bool) {
workspaceACLDisabled = v
workspaceACLDisabled.Store(v)
}
// WorkspaceACLDisabled returns true if workspace sharing is disabled
// for the deployment.
func WorkspaceACLDisabled() bool {
return workspaceACLDisabled
return workspaceACLDisabled.Load()
}