feat/controlplane api projector#397
Draft
ron96g wants to merge 6 commits into
Draft
Conversation
Member
ron96g
commented
May 12, 2026
ron96g
commented
- feat(schema): add zone issuer_url and rename rover_token_ref to team_token
- feat(schema): add secret rotation fields and secrets resolver
- feat(schema): add event exposure and subscription entities
- feat(api): add GraphQL schema and resolvers for events
- feat(api): add error presenter and mutation logging middleware
- refactor(api): update viewer, services, and team interceptor
…token Add issuer_url field to Zone entity for per-zone identity provider configuration. Rename Team.rover_token_ref to Team.team_token to reflect the generalized token concept. Includes generated ent code and projector domain updates for both entities.
Add client secret rotation support to Application entity with fields for rotated_client_secret, rotation phase tracking, and expiration timestamps. Remove issuer_url from Application (moved to Zone). Add secrets resolver package for external secret manager integration with deployment patches for SA token projection and trust bundle. Includes projector domain updates for the new application fields.
Introduce EventExposure and EventSubscription ent schemas with visibility, delivery type, approval config, and cascade delete support. Wire new edges from Application, Approval, and ApprovalRequest. Add cascade delete for ApiSubscription approval requests. Includes all generated ent code, projector domains for event exposure/subscription, updated approval/approvalrequest projectors, and shared infrastructure (id resolver, cache keys).
Add event exposure and subscription types, queries, and mutations to the GraphQL schema. Implement resolvers for creating, updating, and deleting event exposures and subscriptions with approval workflow support. Add mutation helper utilities and info type models. Includes updated gqlgen config and all generated resolver code.
Add RFC 9457-aware GraphQL error presenter that maps Problem types to appropriate error extensions. Add mutation logging middleware for structured audit logging of all GraphQL mutations. Wire both into the GraphQL controller setup.
Refactor viewer middleware to support team-scoped authentication and updated token extraction. Extend services layer with event exposure and subscription CRUD operations. Update team interceptor filtering logic and add build decision test coverage. Remove deprecated helpers.go in favor of inline implementations. Update test utilities and seed data for new entity types.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.