HTTP API: Allow assigning a specific organization when creating a new user

[Sytten]

What this PR does / why we need it:
With this PR, the API can now create user and directly assign it to an organization. Previously, we had to:

1. Create the user
2. Remove it from the main org
3. Add it to another organization

This is very common task for multi-tenant grafana and it is currently prone to errors and edge cases (for example a user could get stuck without any org).

Which issue(s) this PR fixes:

Fixes #7114

[aknuds1]

Looks generally good to me, but we need to decide if we want the functionality.

[Sytten]

The way I see it: Grafana wants to go down the route of observability for large enterprise, companies like logz.io are starting to offer managed versions of grafana to their users for this purpose (potential stream of revenue), this requires management of a multi-tenant grafana which is currently quite hard (I have done it myself), this PR helps a bit in that direction (and is clearly wanted by the feature request).

[Sytten]

Any update? @papagian @marefr

[papagian]

Great, thank you for your contribution!
In addition to my inline comment, I would love to include some test for admin/users endpoint.
More specifically I would like to add the following tests in admin_users_test.go:

• create user without providing orgId
• create user by providing orgId
• create user by providing non-existing orgId. To do so you the mock the response of CreateUserCommand to return ErrOrgNotFound similarly to what happens here.

Also for adding the above tests you need to implement a function
func adminCreateUserScenario(desc string, url string, routePattern string, cmd dtos.AdminCreateUserForm, fn scenarioFunc)
similar to the other scenarios defined in admin_users_test.go.
As an POST example you can check this one.

Please feel free to ping me if you need some additional information.

[papagian]

You could do this inside a defer block at the beginning of the test just after setting AutoAssignOrg to true, like:

defer func() {
    setting.AutoAssignOrg = false
}()

[aknuds1]

@papagian agree, but maybe it would be better to restore to the original value of setting.AutoAssignOrg, just in case it's true? Assumptions can be dangerous.

[papagian]

good point, that would be even better.

[stale]

This pull request has been automatically marked as stale because it has not had activity in the last 2 weeks. It will be closed in 30 days if no further activity occurs. Please feel free to give a status update now, ping for review, or re-open when it's ready. Thank you for your contributions!

[aknuds1]

@Sytten Have you considered @papagian's requested changes?

[Sytten]

Sorry had a lot going on, I will try to get it do tomorrow

[aknuds1]

Thanks!

[bergquist]

I'm not sure what happened here but it seems like there has been some kind of mistake of keeping up with the master branch. Please fix this PR to only contain your commit or open a new PR with only your commit :)

[Sytten]

Yeah its weird, most likely related to the issues github had today. I will fix it.

[Sytten]

@aknuds1 @papagian If you can review the new tests and let me know if thats ok for you, thanks!

[Sytten]

@aknuds1 @papagian just a small reminder of this PR

[aknuds1]

For the future, could you please avoid force pushing to PRs? The comments from previous reviews have been wiped. We squash PRs anyway on commits, so cleaning branch history is unnecessary.

Edit: Ah, I guess it was in order to fix the issue mentioned by Carl. Never mind then.

[aknuds1]

@marefr @bergquist Can you please weigh in on whether we want this new functionality? I remember we discussed before, but we didn't reach a conclusion I think.

[papagian]

Sorry for the delayed reply. Thanks for the modifications, I have some minor suggestions for fixing the tests.

[papagian]

I would suggest to declare a const NonExistingOrgID

[aknuds1]

@papagian Why should the const be exported? I.e., if it's capitalized it's exported. We should avoid exporting symbols unless there's a real need for it.

[papagian]

no reason to be exported

[aknuds1]

In that case, it should be named nonExistingOrgID :)

[papagian]

sorry for being unclear; I thought it goes without saying

[aknuds1]

Yeah never mind, I just wanted to be explicit so there's no room for misunderstanding.

[papagian]

Additionally, you can check that the error is ErrOrgNotFound

[papagian]

I would suggest using the constant nonExistingOrgID

[Sytten]

@papagian thanks for the review, I responded where I don't agree. I will fix the other comments. I will wait for your reply!

[aknuds1]

LGTM, although we should resolve the discussions.

[stale]

This pull request has been automatically marked as stale because it has not had activity in the last 2 weeks. It will be closed in 30 days if no further activity occurs. Please feel free to give a status update now, ping for review, or re-open when it's ready. Thank you for your contributions!

[Sytten]

no worries I will get to fix it, didnt have time lately with covid and everything

[bergquist]

@Sytten Great to hear that you're still up for it. I hope your safe given current circumstances. No rush. take your time :)

[stale]

This pull request has been automatically marked as stale because it has not had activity in the last 2 weeks. It will be closed in 30 days if no further activity occurs. Please feel free to give a status update now, ping for review, or re-open when it's ready. Thank you for your contributions!

[bergquist]

Go away stale bot!

[aknuds1]

LGTM