feat: allow defining initial admin user as env variable

[jonasws]

About the changes

This PR adds a way of defining the username and password for the "default admin user" via environment variables. It defaults to using admin and unleash4all, so it should be completely backwards compatible.

Closes #4560

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
unleash-monorepo-frontend	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Oct 5, 2023 2:06pm

[vercel]

@jonasws is attempting to deploy a commit to the unleash-team Team on Vercel.

A member of the Team first needs to authorize it.

[ivarconr]

I would like to move this to the config object used for all config resolutions.

[ivarconr]

It should probably be seperate fields on the authentication options, with current values as default:
https://github.com/Unleash/unleash/blob/main/src/lib/types/option.ts#L56

[jonasws]

Thanks for the pointer. I'll look into moving these fields there instead.

[jonasws]

Does the update of how this is defined/read in 1012c34 make more sense?

[ivarconr]

Unfortunately, removing this option would be considered a breaking change. We would need to keep the option, and can then use it to set the default values for the initial user. If you want to configure the user yourself you can do that via the new initalAdminUser option.

[jonasws]

Ah, I did not realize at first. I wanted to simplify what would happen, so that one can't define a pair of options that doesn't "make sense".

[ivarconr]

This new option makes sense to me. If you set both this and createAdminUser at the same time the values in this option should dictate the result.

The only edge case I can think of is if you set createAdminUser=false and defines values for initialAdminUser. I this case my suggestion would be that we will not try to create the admin user.

What do you think?

[jonasws]

As stated in the other comment I'm guessing createAdminUser === false should take precedence, but ideally one shouldn't define both. Perhaps adding a runtime check to warn/throw if createAdminUser: false and initialAdminUser: 'non-null' are both explicitly passed? Also, I think if the env variables for username and passwords are present, this should force createAdminUser to be true. If people pass both a custom object AND use the env variables, I think we'd be wise to consider throwing an error, unless we can reliably resolve these and make the precedence clear in the docs.

[chriswk]

Thank you for adding this. Unfortunately, as Ivar said, we can't remove the createAdminUser field without it being a breaking change.

Would you be willing to update the PR to keep it?

I think the behaviour you discussed seems reasonable, at least throwing a warn if createAdminUser is false and you've sent in an initialAdminUser.

• createAdminUser is true, no initialAdminUser - same behaviour as we had before your patch (admin/unleash4all)
• createAdminUser is true and you've sent in an initialAdminUser we should use the initialAdminUser to create the adminUser,
• createAdminUser is unset, but an initialAdminUser is passed in, we should create the initialAdminUser.
• createAdminUser is unset and no initialAdminUser - do nothing

[jonasws]

Thank you for adding this. Unfortunately, as Ivar said, we can't remove the createAdminUser field without it being a breaking change.

Would you be willing to update the PR to keep it?

I think the behaviour you discussed seems reasonable, at least throwing a warn if createAdminUser is false and you've sent in an initialAdminUser.

* createAdminUser is true, no initialAdminUser - same behaviour as we had before your patch (admin/unleash4all)

* createAdminUser is true and you've sent in an initialAdminUser we should use the initialAdminUser to create the adminUser,

* createAdminUser is unset, but an initialAdminUser is passed in, we should create the initialAdminUser.

* createAdminUser is unset and no initialAdminUser - do nothing

Thanks for mapping out the different "logical branches" here. I'm already working on this, so I'll try to update this PR later today.

[jonasws]

@chriswk I've updated the behavior in f0d9dc6 to match what we discussed. I feel that this warrants some unit tests, as there are now four "logical branches" to account for. I'll get around to that right away, but feel free to comment on whether you feel the logic matches what you described.

[chriswk]

@jonasws - Thank you for the update. Yes, this matches my expectation. Great that you're adding unit tests. Once those are in place and running green I'll give you a 👍 on this.

[jonasws]

@jonasws - Thank you for the update. Yes, this matches my expectation. Great that you're adding unit tests. Once those are in place and running green I'll give you a 👍 on this.

Great. Now to the "bad" news: I've run into some real hickups as to how one would actually test the fact that initAdminUser is scheduled via process.nextTick. I'm sure there is a good reason for it being implemented this way, but does anyone have any pointers as to how one would test that in Jest 29? Using fake timers and advancing/running ticks doesn't seem to play well with the fact that we're scheduling a promise. The current tests don't actually test this, as they proceed to explicitly call initAdminUser after constructing the UserService object.

My hunch is that someone faced the same challenge in the past, and decided it wasn't worth the effort. Do we think that still applies here?

[chriswk]

Hmm. my gut reaction is to move the logic for what to do into the initAdminUser function. So making initAdminUser something we can call with the config settings. That way you can test the logic without worrying about the process.nextTick(). We're not interested in testing process.nextTick scheduling. We have to trust the engine for that.

[jonasws]

Hmm. my gut reaction is to move the logic for what to do into the initAdminUser function. So making initAdminUser something we can call with the config settings. That way you can test the logic without worrying about the process.nextTick(). We're not interested in testing process.nextTick scheduling. We have to trust the engine for that.

That has crossed my mind as well, and also aligns better with how the current test suite is implemented. Thanks for the input.

UPDATE: Refactored the handling and updated/added new unit test cases accordingly in c75a3c4. Seems like it works now, but the logs are a bit flooded during the test run. Should we check "twice" whether we create the user? Both before calling process.nextTick and inside the callback?

[jonasws]

Looks like I was able to finally address the snapshot update. Not sure about the other CI checks, but I feel like we're closing in here.

[chriswk]

Nice. You just saved us some work this quarter.

[chriswk]

The other CI checks are on us. I've updated my review. Will squash and merge

Thank you!