directory: remove provider from user id (#2068)

2025-06-04 20:03:18 +02:00 · 2021-04-07 15:06:08 -06:00 · 2021-04-07 15:06:08 -06:00 · aeb8aaf9cd
commit aeb8aaf9cd
parent a51c7140ea
18 changed files with 71 additions and 104 deletions
--- a/internal/directory/auth0/auth0.go
+++ b/internal/directory/auth0/auth0.go
@ -14,7 +14,6 @@ import (
 	"gopkg.in/auth0.v5/management"

 	"github.com/pomerium/pomerium/internal/log"
-	"github.com/pomerium/pomerium/pkg/grpc/databroker"
 	"github.com/pomerium/pomerium/pkg/grpc/directory"
 )

@ -104,12 +103,11 @@ func (p *Provider) User(ctx context.Context, userID, accessToken string) (*direc
 		return nil, fmt.Errorf("auth0: could not get the role manager: %w", err)
 	}

-	_, providerUserID := databroker.FromUserID(userID)
 	du := &directory.User{
 		Id: userID,
 	}

-	u, err := um.Read(providerUserID)
+	u, err := um.Read(userID)
 	if err != nil {
 		return nil, fmt.Errorf("auth0: error getting user info: %w", err)
 	}
@ -117,7 +115,7 @@ func (p *Provider) User(ctx context.Context, userID, accessToken string) (*direc
 	du.Email = u.GetEmail()

 	for page, hasNext := 0, true; hasNext; page++ {
-		rl, err := um.Roles(providerUserID, management.IncludeTotals(true), management.Page(page))
+		rl, err := um.Roles(userID, management.IncludeTotals(true), management.Page(page))
 		if err != nil {
 			return nil, fmt.Errorf("auth0: error getting user roles: %w", err)
 		}
@ -161,7 +159,7 @@ func (p *Provider) UserGroups(ctx context.Context) ([]*directory.Group, []*direc
 	for userID, groups := range userIDToGroups {
 		sort.Strings(groups)
 		users = append(users, &directory.User{
-			Id:       databroker.GetUserID(Name, userID),
+			Id:       userID,
 			GroupIds: groups,
 		})
 	}
--- a/internal/directory/auth0/auth0_test.go
+++ b/internal/directory/auth0/auth0_test.go
@ -100,12 +100,12 @@ func TestProvider_User(t *testing.T) {
 		WithDomain(srv.URL),
 		WithServiceAccount(&ServiceAccount{ClientID: "CLIENT_ID", Secret: "SECRET"}),
 	)
-	du, err := p.User(ctx, "auth0/user1", "")
+	du, err := p.User(ctx, "user1", "")
 	if !assert.NoError(t, err) {
 		return
 	}
 	testutil.AssertProtoJSONEqual(t, `{
-		"id": "auth0/user1",
+		"id": "user1",
 		"displayName": "User 1",
 		"email": "user1@example.com",
 		"groupIds": ["role1", "role2"]
@ -359,15 +359,15 @@ func TestProvider_UserGroups(t *testing.T) {
 			},
 			expectedUsers: []*directory.User{
 				{
-					Id:       "auth0/i-am-user-id-1",
+					Id:       "i-am-user-id-1",
 					GroupIds: []string{"i-am-role-id-1"},
 				},
 				{
-					Id:       "auth0/i-am-user-id-2",
+					Id:       "i-am-user-id-2",
 					GroupIds: []string{"i-am-role-id-1"},
 				},
 				{
-					Id:       "auth0/i-am-user-id-3",
+					Id:       "i-am-user-id-3",
 					GroupIds: []string{"i-am-role-id-1"},
 				},
 			},
@ -446,23 +446,23 @@ func TestProvider_UserGroups(t *testing.T) {
 			},
 			expectedUsers: []*directory.User{
 				{
-					Id:       "auth0/i-am-user-id-1",
+					Id:       "i-am-user-id-1",
 					GroupIds: []string{"i-am-role-id-1", "i-am-role-id-2"},
 				},
 				{
-					Id:       "auth0/i-am-user-id-2",
+					Id:       "i-am-user-id-2",
 					GroupIds: []string{"i-am-role-id-1"},
 				},
 				{
-					Id:       "auth0/i-am-user-id-3",
+					Id:       "i-am-user-id-3",
 					GroupIds: []string{"i-am-role-id-1"},
 				},
 				{
-					Id:       "auth0/i-am-user-id-4",
+					Id:       "i-am-user-id-4",
 					GroupIds: []string{"i-am-role-id-1", "i-am-role-id-2"},
 				},
 				{
-					Id:       "auth0/i-am-user-id-5",
+					Id:       "i-am-user-id-5",
 					GroupIds: []string{"i-am-role-id-2"},
 				},
 			},