Skip to content

Copilot: Update: Add User group membership authenticate #68

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 10 commits into from
Sep 10, 2025
Merged

Copilot: Update: Add User group membership authenticate #68

merged 10 commits into from
Sep 10, 2025

Conversation

quge009
Copy link
Collaborator

@quge009 quge009 commented Sep 8, 2025
edited
Loading

Add:

  • in 'AGENT_LOCAL' mode:
    • return dev purpose admin (bool) and virtual_cluster (list)
  • in production mode
    • get value of key 'admin' and 'virtualCluster' from rest server api
  • authenticate logic:
    • if user is admin, or user is not admin but belong to a valid vc (set via env: COPILOT_VALID_VCS), authenticate success
    • else, authenticate fail
    • user's authenticate state will be valid inside Copilot for 1 hour, access within valid duration won't require rest server api call, access after valid duration requires rest server api call

Copilot

This comment was marked as outdated.

Sign in to view

yukirora
yukirora reviewed Sep 9, 2025
View reviewed changes
@quge009 quge009 requested review from yukirora and Copilot September 10, 2025 08:08
Copilot
Copilot AI reviewed Sep 10, 2025
View reviewed changes
Copy link

@Copilot Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR implements user group membership authentication for the Copilot system, adding support for both local development mode and production REST API authentication.

  • Adds REST API integration to verify user authentication via the rest server
  • Updates authentication logic to check admin privileges and virtual cluster membership
  • Changes configuration from "valid-groups" to "valid-vcs" (virtual clusters) across deployment files

Reviewed Changes

Copilot reviewed 3 out of 3 changed files in this pull request and generated 4 comments.

File Description
authentication.py Implements production REST API authentication and updates local auth logic to return admin/virtual cluster info
copilot-chat-deployment.yaml.template Updates environment variable name from COPILOT_VALID_GROUPS to COPILOT_VALID_VCS
copilot-chat.yaml Changes configuration key from valid-groups to valid-vcs

Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.

quge009 and others added 4 commits September 10, 2025 16:11
@quge009 @Copilot
Update src/copilot-chat/src/copilot_agent/utils/authentication.py
0b73b2d 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
@quge009 @Copilot
Update src/copilot-chat/src/copilot_agent/utils/authentication.py
5f60a8e 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
@quge009
minor
1a02b25
@quge009
minor
9f608ce
@quge009 quge009 merged commit a3ea170 into dev Sep 10, 2025
1 check passed
@quge009 quge009 deleted the lequ/copilot/authenticate branch September 10, 2025 23:51
This was referenced Sep 15, 2025
Open
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

Copilot code review Copilot Copilot left review comments

@yukirora yukirora yukirora approved these changes

@zhogu zhogu Awaiting requested review from zhogu

Assignees

@zhogu zhogu

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@quge009 @yukirora @zhogu