authorize: remove admin (#1833)

* authorize: remove admin * regen rego * add note to upgrading
2025-05-25 06:57:11 +02:00 · 2021-02-01 15:22:02 -07:00 · 2021-02-01 15:22:02 -07:00 · b7f0242090
commit b7f0242090
parent a5a3ab55fc
17 changed files with 204 additions and 381 deletions
--- a/integration/control_plane_test.go
+++ b/integration/control_plane_test.go
@ -8,8 +8,6 @@ import (
 	"time"

 	"github.com/stretchr/testify/assert"
-
-	"github.com/pomerium/pomerium/integration/internal/flows"
 )

 func TestDashboard(t *testing.T) {
@ -17,28 +15,6 @@ func TestDashboard(t *testing.T) {
 	ctx, clearTimeout := context.WithTimeout(ctx, time.Second*30)
 	defer clearTimeout()

-	t.Run("admin impersonate", func(t *testing.T) {
-		client := testcluster.NewHTTPClient()
-
-		_, err := flows.Authenticate(ctx, client, mustParseURL("https://httpdetails.localhost.pomerium.io/by-user"),
-			flows.WithEmail("bob@dogs.test"), flows.WithGroups("user"))
-		if !assert.NoError(t, err) {
-			return
-		}
-
-		req, err := http.NewRequestWithContext(ctx, "GET", "https://httpdetails.localhost.pomerium.io/.pomerium/admin/impersonate", nil)
-		if err != nil {
-			t.Fatal(err)
-		}
-
-		res, err := client.Do(req)
-		if !assert.NoError(t, err, "unexpected http error") {
-			return
-		}
-		defer res.Body.Close()
-
-		assertDeniedAccess(t, res)
-	})
 	t.Run("user dashboard", func(t *testing.T) {
 		client := testcluster.NewHTTPClient()