Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement JupyterHub 5.x sharing APIs in the hub client #224

Merged
merged 61 commits into from
May 8, 2024
Merged

Implement JupyterHub 5.x sharing APIs in the hub client #224

merged 61 commits into from
May 8, 2024

Conversation

aktech
Copy link
Member

@aktech aktech commented Apr 9, 2024
edited
Loading

Reference Issues or PRs

Implements #185 and part of #11

On top of: #248

What does this implement/fix?

Put a x in the boxes that apply

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds a feature)
  • Breaking change (fix or feature that would cause existing features not to work as expected)
  • Documentation Update
  • Code style update (formatting, renaming)
  • Refactoring (no functional changes, no API changes)
  • Build related changes
  • Other (please describe):

Testing

  • Did you test the pull request locally?
  • Did you add new tests?

Documentation

Access-centered content checklist

Text styling

  • The content is written with plain language (where relevant).
  • If there are headers, they use the proper header tags (with only one level-one header: H1 or # in markdown).
  • All links describe where they link to (for example, check the Nebari website).
  • This content adheres to the Nebari style guides.

Non-text content

  • All content is represented as text (for example, images need alt text, and videos need captions or descriptive transcripts).
  • If there are emojis, there are not more than three in a row.
  • Don't use flashing GIFs or videos.
  • If the content were to be read as plain text, it still makes sense, and no information is missing.

Any other comments?

aktech added 25 commits April 9, 2024 09:42
@aktech
jhub-411
bec6cc6
@aktech
make less strict
9fbd521
@aktech
try jupyterhub 5
4507e86
@aktech
fix typo in env file
54a63a9
@aktech
allow-direct-references in pyproject
ecf6d43
@aktech
remove oauth_no_confirm from services
269ed3c
@aktech
wip
3be71ef
@aktech
run tests for jupyterhub 5.x in CI
73a5418
@aktech
fix jupyterhub version
8d8c823
@aktech
fix jhub version
70edc06
@aktech
bump commit hash version
34d41a9
@aktech
fix artifact names clash
cfb4877
@aktech
fix jhub-suffix var name
414b53b
@aktech
undo hub client changes
bbf0bcf
@aktech
undo config changes
ef06202
@aktech
bump micromamba
f9ead54
@aktech
undo env name change
48b693e
@aktech
run conda list and pip freeze
204e25a
@aktech
override jupyterhub after jhub-apps install
5206d3f
@aktech
undo changes to pyproject.toml
79a5047
@aktech
add function to share app/server
dfc721a
@aktech
Merge branch 'main' into share-apis
9d16f19
@aktech
return if neither user of group provided
eba3c38
@aktech
add functionality to share with users and groups
8b5c436
@aktech
add functions to revoke and get shares
51a9914
@vercel Vercel
Copy link

vercel bot commented Apr 9, 2024
edited
Loading

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Comments Updated (UTC)
jhub-apps ✅ Ready (Inspect) Visit Preview 💬 Add feedback May 6, 2024 2:10pm
jhub-apps-docs ✅ Ready (Inspect) Visit Preview 💬 Add feedback May 6, 2024 2:10pm

@aktech aktech requested a review from krassowski May 6, 2024 12:40
krassowski
krassowski reviewed May 6, 2024
View reviewed changes
Copy link
Member

@krassowski krassowski left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The code looks good to me, I left a few questions.

jhub_apps/hub_client/hub_client.py
Comment on lines +134 to +143
url = f"/shares/{username}/{servername}"
if share_to_user:
data = {"user": share_to_user}
elif share_to_group:
data = {"group": share_to_group}
else:
raise ValueError("None of share_to_user or share_to_group provided")
share_with = share_to_group or share_to_user
logger.info(f"Sharing {username}/{servername} with {share_with}")
return requests.post(API_URL + url, headers=self._headers(), json=data)
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Do we need some escaping here? My concern is, what if a user names their server ../../another-endpoint? Maybe it is safe because normalize_server_name should strip both . and /. Maybe all that needs to be done is having a test case to ensure no path traversal.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Maybe it is safe because normalize_server_name should strip both . and /.

Yes, correct. I added tests for normalize_server_name.

jhub_apps/hub_client/hub_client.py Show resolved Hide resolved
jhub_apps/hub_client/hub_client.py Outdated
Comment on lines 227 to 234
users = hclient.get_users()
user_names = [user["name"] for user in users]
groups = hclient.get_groups()
group_names = [group['name'] for group in groups]
# TODO: Filter users and groups based on what the user has access to share with
# parsed_scopes = parse_scopes(scopes)
return {
"users": user_names,
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Does it makes sense to always filter the current user out as sharing with yourself does not have much utility?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, good catch. Done.

@aktech aktech mentioned this pull request May 6, 2024
Closed
krassowski
krassowski approved these changes May 7, 2024
View reviewed changes
Copy link
Member

@krassowski krassowski left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good to me, thank you!

jhub_apps/hub_client/hub_client.py
Comment on lines +234 to +235
# TODO: Filter users and groups based on what the user has access to share with
# parsed_scopes = parse_scopes(scopes)
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I see there is now #268 for this 👍

@aktech aktech merged commit 79b0288 into main May 8, 2024
25 checks passed
@aktech aktech deleted the share-apis branch May 26, 2024 16:48
@aktech aktech mentioned this pull request May 28, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@krassowski krassowski krassowski approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@aktech @krassowski