Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Refactor auth client code into lib/auth/authclient #41460

Merged
merged 1 commit into from
May 14, 2024
Merged

Refactor auth client code into lib/auth/authclient #41460

merged 1 commit into from
May 14, 2024

Conversation

rosstimothy
Copy link
Contributor

This starts separating the lib/auth client and server code into distinct packages to reduce the dependency tree of client tools. For the time being aliases were left to all things moved into lib/auth/authclient to reduce the changeset and ensure code still compiles. Future changes will be built off this to convert code to use lib/auth/authclient where applicable, this was intentionally left to a minimum amount of changes to facilitate backports.

@rosstimothy rosstimothy added backport/branch/v13 backport/branch/v14 no-changelog Indicates that a PR does not require a changelog entry backport/branch/v15 labels May 13, 2024
@rosstimothy rosstimothy marked this pull request as ready for review May 13, 2024 14:00
@github-actions github-actions bot added machine-id size/md tctl tctl - Teleport admin tool labels May 13, 2024
@rosstimothy rosstimothy requested a review from zmb3 May 13, 2024 15:54
@rosstimothy
Copy link
Contributor Author

@zmb3 can I get a FTD bypass on TestClient_DialTimeout?

@zmb3
Copy link
Collaborator

zmb3 commented May 13, 2024

/excludeflake TestClient_DialTimeout

@rosstimothy
Refactor auth client code into lib/auth/authclient
5ebed30 
This starts separating the lib/auth client and server code into
distinct packages to reduce the dependency tree of client tools.
For the time being aliases were left to all things moved into
lib/auth/authclient to reduce the changeset and ensure code still
compiles. Future changes will be built off this to convert code
to use lib/auth/authclient where applicable, this was intentionally
left to a minimum amount of changes to facilitate backports.
strideynet
strideynet approved these changes May 13, 2024
View reviewed changes
lib/auth/authclient/authclient.go
// the proxy.
Resolver reversetunnelclient.Resolver
// ProxyDialer is used to create a client via a Proxy reverse tunnel.
ProxyDialer apiclient.ContextDialer
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Might be worth adding a note to this context to the effect of "For example, reverseclient.TunnelAuthDialer"

lib/auth/authclient/authclient.go
}

// Connect creates a valid client connection to the auth service. It may
// connect directly to the auth server, or tunnel through the proxy.
func Connect(ctx context.Context, cfg *Config) (*auth.Client, error) {
func Connect(ctx context.Context, cfg *Config) (*Client, error) {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think likely out of the scope of this PR, but this function has felt quite weird to me in the past, and feels even weirder now. If I know what ProxyDialer I want to use, it's weird that this tries connecting to the auth server directly first. Perhaps a more long-term thing, but it often feels to me that what we really want is something like:

direct := NewDirectDialler()
reverseTunnel := NewReverseTunnelDialler()

client := NewClient(TryInOrderStrategy(direct, reverseTunnel))
// or
client := NewClient(RacingStrategy(direct, reverseTunnel))

I have this same thought about the api.Client as well - so perhaps we just await the death of the auth client and then at some-point in the future we refactor api.Client's dialling mechanism to be less odd.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yeah I don't disagree the usefulness of this function is now at an all time low. Alternatively I can refactor a few things in reversectunnelclient so that it doesn't import lib/auth or lib/authclient and create a cycle.

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think we can leave this as is for now - we probably want to look at this as an individual thing I imagine.

@rosstimothy rosstimothy added this pull request to the merge queue May 14, 2024
Merged via the queue into master with commit 67f499a May 14, 2024
37 checks passed
@rosstimothy rosstimothy deleted the tross/authclient branch May 14, 2024 13:45
@public-teleport-github-review-bot
Copy link

@rosstimothy See the table below for backport results.

Branch Result
branch/v13 Failed
branch/v14 Failed
branch/v15 Failed

rosstimothy added a commit that referenced this pull request May 14, 2024
@rosstimothy
Refactor auth client code into lib/auth/authclient (#41460)
5ecced6 
This starts separating the lib/auth client and server code into
distinct packages to reduce the dependency tree of client tools.
For the time being aliases were left to all things moved into
lib/auth/authclient to reduce the changeset and ensure code still
compiles. Future changes will be built off this to convert code
to use lib/auth/authclient where applicable, this was intentionally
left to a minimum amount of changes to facilitate backports.
@rosstimothy rosstimothy mentioned this pull request May 14, 2024
Merged
rosstimothy added a commit that referenced this pull request May 14, 2024
@rosstimothy
Refactor auth client code into lib/auth/authclient (#41460)
78d4df0 
This starts separating the lib/auth client and server code into
distinct packages to reduce the dependency tree of client tools.
For the time being aliases were left to all things moved into
lib/auth/authclient to reduce the changeset and ensure code still
compiles. Future changes will be built off this to convert code
to use lib/auth/authclient where applicable, this was intentionally
left to a minimum amount of changes to facilitate backports.
@rosstimothy rosstimothy mentioned this pull request May 14, 2024
Merged
rosstimothy added a commit that referenced this pull request May 14, 2024
@rosstimothy
Refactor auth client code into lib/auth/authclient (#41460)
345751f 
This starts separating the lib/auth client and server code into
distinct packages to reduce the dependency tree of client tools.
For the time being aliases were left to all things moved into
lib/auth/authclient to reduce the changeset and ensure code still
compiles. Future changes will be built off this to convert code
to use lib/auth/authclient where applicable, this was intentionally
left to a minimum amount of changes to facilitate backports.
ptgott pushed a commit that referenced this pull request May 14, 2024
@rosstimothy @ptgott
Refactor auth client code into lib/auth/authclient (#41460)
0f309ed 
This starts separating the lib/auth client and server code into
distinct packages to reduce the dependency tree of client tools.
For the time being aliases were left to all things moved into
lib/auth/authclient to reduce the changeset and ensure code still
compiles. Future changes will be built off this to convert code
to use lib/auth/authclient where applicable, this was intentionally
left to a minimum amount of changes to facilitate backports.
rosstimothy added a commit that referenced this pull request May 14, 2024
@rosstimothy
Start using authclient.Client/ClientI/NewClient
9748842 
Consumes the new auth client created in #41460. The changes introduced
were performed with a series of gofmt rewrite rules.

```bash
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "ClientI -> authclient.ClientI" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "Client -> authclient.Client" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "NewClient -> authclient.NewClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.ClientI -> authclient.ClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.Client -> authclient.Client" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.NewClient -> authclient.NewClient" {} \;
```
rosstimothy added a commit that referenced this pull request May 14, 2024
@rosstimothy
Start using authclient.Client/ClientI/NewClient
c41a66a 
Consumes the new auth client created in #41460. The changes introduced
were performed with a series of gofmt rewrite rules.

```bash
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "ClientI -> authclient.ClientI" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "Client -> authclient.Client" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "NewClient -> authclient.NewClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.ClientI -> authclient.ClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.Client -> authclient.Client" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.NewClient -> authclient.NewClient" {} \;
```
@rosstimothy rosstimothy mentioned this pull request May 14, 2024
Merged
github-merge-queue bot pushed a commit that referenced this pull request May 14, 2024
@rosstimothy
Refactor auth client code into lib/auth/authclient (#41460) (#41524)
79e1b83 
This starts separating the lib/auth client and server code into
distinct packages to reduce the dependency tree of client tools.
For the time being aliases were left to all things moved into
lib/auth/authclient to reduce the changeset and ensure code still
compiles. Future changes will be built off this to convert code
to use lib/auth/authclient where applicable, this was intentionally
left to a minimum amount of changes to facilitate backports.
github-merge-queue bot pushed a commit that referenced this pull request May 14, 2024
@rosstimothy
Refactor auth client code into lib/auth/authclient (#41460) (#41522)
5bc3632 
This starts separating the lib/auth client and server code into
distinct packages to reduce the dependency tree of client tools.
For the time being aliases were left to all things moved into
lib/auth/authclient to reduce the changeset and ensure code still
compiles. Future changes will be built off this to convert code
to use lib/auth/authclient where applicable, this was intentionally
left to a minimum amount of changes to facilitate backports.
rosstimothy added a commit that referenced this pull request May 15, 2024
@rosstimothy
Start using authclient.Client/ClientI/NewClient
10ef502 
Consumes the new auth client created in #41460. The changes introduced
were performed with a series of gofmt rewrite rules.

```bash
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "ClientI -> authclient.ClientI" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "Client -> authclient.Client" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "NewClient -> authclient.NewClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.ClientI -> authclient.ClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.Client -> authclient.Client" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.NewClient -> authclient.NewClient" {} \;
```
github-merge-queue bot pushed a commit that referenced this pull request May 15, 2024
@rosstimothy
Start using authclient.Client/ClientI/NewClient (#41539)
e95f3d3 
Consumes the new auth client created in #41460. The changes introduced
were performed with a series of gofmt rewrite rules.

```bash
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "ClientI -> authclient.ClientI" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "Client -> authclient.Client" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "NewClient -> authclient.NewClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.ClientI -> authclient.ClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.Client -> authclient.Client" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.NewClient -> authclient.NewClient" {} \;
```
rosstimothy added a commit that referenced this pull request May 15, 2024
@rosstimothy
Start using authclient.Client/ClientI/NewClient
41b3159 
Consumes the new auth client created in #41460. The changes introduced were performed with a
series of gofmt rewrite rules.

```bash
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "ClientI -> authclient.ClientI" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "Client -> authclient.Client" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "NewClient -> authclient.NewClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.ClientI -> authclient.ClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.Client -> authclient.Client" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.NewClient -> authclient.NewClient" {} \;
```
rosstimothy added a commit that referenced this pull request May 15, 2024
@rosstimothy
Start using authclient.Client/ClientI/NewClient
1aa18c4 
Consumes the new auth client created in #41460. The changes introduced were performed with a
series of gofmt rewrite rules.

```bash
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "ClientI -> authclient.ClientI" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "Client -> authclient.Client" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "NewClient -> authclient.NewClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.ClientI -> authclient.ClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.Client -> authclient.Client" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.NewClient -> authclient.NewClient" {} \;
```
rosstimothy added a commit that referenced this pull request May 15, 2024
@rosstimothy
Start using authclient.Client/ClientI/NewClient
99f068a 
Consumes the new auth client created in #41460. The changes introduced were performed with a
series of gofmt rewrite rules.

```bash
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "ClientI -> authclient.ClientI" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "Client -> authclient.Client" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "NewClient -> authclient.NewClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.ClientI -> authclient.ClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.Client -> authclient.Client" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.NewClient -> authclient.NewClient" {} \;
```
rosstimothy added a commit that referenced this pull request May 15, 2024
@rosstimothy
Start using authclient.Client/ClientI/NewClient
6e64821 
Consumes the new auth client created in #41460. The changes introduced were performed with a
series of gofmt rewrite rules.

```bash
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "ClientI -> authclient.ClientI" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "Client -> authclient.Client" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "NewClient -> authclient.NewClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.ClientI -> authclient.ClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.Client -> authclient.Client" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.NewClient -> authclient.NewClient" {} \;
```
rosstimothy added a commit that referenced this pull request May 15, 2024
@rosstimothy
Start using authclient.Client/ClientI/NewClient
971faab 
Consumes the new auth client created in #41460. The changes introduced were performed with a
series of gofmt rewrite rules.

```bash
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "ClientI -> authclient.ClientI" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "Client -> authclient.Client" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "NewClient -> authclient.NewClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.ClientI -> authclient.ClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.Client -> authclient.Client" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.NewClient -> authclient.NewClient" {} \;
```
rosstimothy added a commit that referenced this pull request May 15, 2024
@rosstimothy
Start using authclient.Client/ClientI/NewClient
b3bd476 
Consumes the new auth client created in #41460. The changes introduced were performed with a
series of gofmt rewrite rules.

```bash
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "ClientI -> authclient.ClientI" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "Client -> authclient.Client" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "NewClient -> authclient.NewClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.ClientI -> authclient.ClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.Client -> authclient.Client" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.NewClient -> authclient.NewClient" {} \;
```
github-merge-queue bot pushed a commit that referenced this pull request May 15, 2024
@rosstimothy
Start using authclient.Client/ClientI/NewClient (#41594)
9ef2165 
Consumes the new auth client created in #41460. The changes introduced were performed with a
series of gofmt rewrite rules.

```bash
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "ClientI -> authclient.ClientI" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "Client -> authclient.Client" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "NewClient -> authclient.NewClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.ClientI -> authclient.ClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.Client -> authclient.Client" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.NewClient -> authclient.NewClient" {} \;
```
github-merge-queue bot pushed a commit that referenced this pull request May 16, 2024
@rosstimothy
Start using authclient.Client/ClientI/NewClient (#41598)
234c325 
Consumes the new auth client created in #41460. The changes introduced were performed with a
series of gofmt rewrite rules.

```bash
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "ClientI -> authclient.ClientI" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "Client -> authclient.Client" {} \;
$ find ./lib/auth -type f -name '*.go' -exec gofmt -w -l -r "NewClient -> authclient.NewClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.ClientI -> authclient.ClientI" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.Client -> authclient.Client" {} \;
$ find . -type f -name '*.go' -exec gofmt -w -l -r "auth.NewClient -> authclient.NewClient" {} \;
```
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@strideynet strideynet strideynet approved these changes

@greedy52 greedy52 greedy52 approved these changes

@zmb3 zmb3 Awaiting requested review from zmb3

Assignees
No one assigned
Labels
backport/branch/v13 backport/branch/v14 backport/branch/v15 machine-id no-changelog Indicates that a PR does not require a changelog entry size/md tctl tctl - Teleport admin tool
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@rosstimothy @zmb3 @greedy52 @strideynet