Skip to content

feat: support dynamic user management in Weaviate v1.30#369

Merged
bevzzz merged 13 commits intomainfrom
feat/dynamic-user-managament
Apr 9, 2025
Merged

feat: support dynamic user management in Weaviate v1.30#369
bevzzz merged 13 commits intomainfrom
feat/dynamic-user-managament

Conversation

@bevzzz
Copy link
Collaborator

@bevzzz bevzzz commented Apr 7, 2025
edited
Loading

This PR brings support for dynamic user management features introduced in v1.30.

Adds (sync/async):

  • DbUsers and OidcUsers clients accessible via client.users().db() and client.users().oidc()
  • UserAssignemntsGetter to retrieve uses assigned to the role from /user-assignments endpoint
  • Another Result constructor that allows to override the body while reusing the HTTP response
  • Result.voidToBoolean helpers now accept a list of allowed failure codes that still should produce true in the result
  • array-to-list parsers for Result
  • Extends RoleAssigner and RoleRevoker to take an optional namespace argument. This allows re-using the existing classes for legacy, db-, and oidc- users.

Deprecates (sync/async):

  • assigner, revoker, and userRolesGetter on the root Users client (not namaspaced)
  • assignedUsersGetter in Roles client (in favor of userAssignmentsGetter)
  • Enables OIDC and dynamic user management in WeaviateWithRbac testcontainer

Updates:

  • Weaviate version and commit hash for integration tests
  • WCS_DUMMY email used for OIDC tests (see thread)

orca-security-eu[bot]
orca-security-eu bot reviewed Apr 7, 2025
View reviewed changes
Copy link

@orca-security-eu orca-security-eu bot left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Orca Security Scan Summary

Status Check Issues by priority
Passed Passed Infrastructure as Code high 0   medium 0   low 0   info 0 View in Orca
Passed Passed SAST high 0   medium 0   low 0   info 0 View in Orca
Passed Passed Secrets high 0   medium 0   low 0   info 0 View in Orca
Passed Passed Vulnerabilities high 0   medium 0   low 0   info 0 View in Orca

bevzzz added 12 commits April 7, 2025 18:31
@bevzzz
ci: update expected git hash
0d5651b
@bevzzz
fix: read api key only for non-null body
3cefe74
@bevzzz
feat: add new user permissions and handle unknown actions
4cab418 
- create_users
- update_users
- delete_users
@bevzzz
feat: extend Roles client to support /user-assignments endpoint
eda3357
@bevzzz
chore: revert unnecessery formatting changes
52c0c20
@bevzzz
test: fix expected error message
9f86071
@bevzzz
fix(b/c): restore existing logic for handling 404
5b27eb0 
We do not want to risk breaking existing applications,
as currently 404 response code does not produce a WeaviateError.
@bevzzz
ci: update wcs_dummy email
d4c2fd0
@bevzzz
chore: add documentation and deprecation notices
b94b970
@bevzzz
test: update test-interface method names
496bbad
@bevzzz
chore: add clarifying docstring to userAssignmentsGetter
647f9c4 
Deprecate assignedUsersGetter in the async client.
@bevzzz
fix: return false on HTTP 409 Conflict in /activate and /deactivate
7464273
@bevzzz bevzzz merged commit 4df2216 into main Apr 9, 2025
5 checks passed
@bevzzz bevzzz deleted the feat/dynamic-user-managament branch April 9, 2025 13:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@orca-security-eu orca-security-eu[bot] orca-security-eu[bot] left review comments

@antas-marcin antas-marcin antas-marcin approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@bevzzz @antas-marcin