Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix (Read,Invoke) denied default provider handling #9067

Merged
merged 6 commits into from
Feb 28, 2022
Merged

Fix (Read,Invoke) denied default provider handling #9067

merged 6 commits into from
Feb 28, 2022

Conversation

iwahbe
Copy link
Member

@iwahbe iwahbe commented Feb 28, 2022
edited
Loading

When denying default providers was added, we had no special handling for
Reads and Invokes. This lead to confusing error messages. The fix (#8853)
involved checking on invokes. This check didn't apply to several types
of calls (Read) as well as blocking invokes with providers applied.

This PR fixes the logic to only deny providers when they are default
providers.

It also pushes the change into getProviderFromSource, which ensures
that this behavior is handled the same way (and correctly) for both
Invokes and Reads.

Description

Fixes #9055
Fixes #9060

Checklist

  • I have added tests that prove my fix is effective or that my feature works
  • Yes, there are changes in this PR that warrants bumping the Pulumi Service API version

@iwahbe
Fix (Read,Invoke) denied default provider handling
a09cc33 
When denying default providers was added, we had no special handling for
Reads and Invokes. This lead to confusing error messages. The fix (#8853)
involved checking on invokes. This check didn't apply to several types
of calls (Read) as well as blocking invokes with providers applied.

This PR fixes the logic to only deny providers when they are default
providers.

It also pushes the change into `getProviderFromSource`, which ensures
that this behavior is handled the same way (and correctly) for both
Invokes and Reads.
@iwahbe iwahbe self-assigned this Feb 28, 2022
@AaronFriel
Copy link
Member

Confirm that this fixes #9060 as well.

@AaronFriel AaronFriel mentioned this pull request Feb 28, 2022
Closed
AaronFriel
AaronFriel approved these changes Feb 28, 2022
View reviewed changes
Copy link
Member

@AaronFriel AaronFriel left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM modulo nits. I'd like to see "token" removed from the arguments to getProviderFromSource unless there's a need for it.

pkg/resource/deploy/source_eval.go Show resolved Hide resolved
pkg/resource/deploy/source_eval.go Show resolved Hide resolved
pkg/resource/deploy/source_eval_test.go Outdated Show resolved Hide resolved
pkg/resource/deploy/source_eval_test.go Outdated Show resolved Hide resolved
pkg/resource/deploy/source_eval_test.go
cases = append(cases, TT{
disableDefault: disableDefault,
hasExplicit: hasExplicit,
expectFail: disableDefault && !hasExplicit,
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

👍 surprisingly easy to read test matrix thanks to this conditional

@iwahbe iwahbe merged commit 999da67 into master Feb 28, 2022
@pulumi-bot pulumi-bot deleted the iwahbe/9055/generalize-deny-default-provider-handling branch February 28, 2022 23:33
@AaronFriel AaronFriel mentioned this pull request Mar 1, 2022
Closed
AaronFriel added a commit that referenced this pull request Mar 1, 2022
@AaronFriel
Revert "Fix (Read,Invoke) denied default provider handling (#9067)"
6781e10 
This reverts commit 999da67.
@stack72 stack72 mentioned this pull request Mar 22, 2022
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@AaronFriel AaronFriel AaronFriel approved these changes

Assignees

@iwahbe iwahbe

Labels
None yet
Projects
None yet
Milestone
No milestone
2 participants
@iwahbe @AaronFriel