coder
diff --git a/‎.github/workflows/ci.yaml
Lines changed: 1 addition & 1 deletion b/‎.github/workflows/ci.yaml
Lines changed: 1 addition & 1 deletion
diff --git a/‎.github/workflows/release.yaml
Lines changed: 1 addition & 0 deletions b/‎.github/workflows/release.yaml
Lines changed: 1 addition & 0 deletions
diff --git a/‎dogfood/contents/files/etc/docker/daemon.json
Lines changed: 4 additions & 1 deletion b/‎dogfood/contents/files/etc/docker/daemon.json
Lines changed: 4 additions & 1 deletion
diff --git a/‎dogfood/contents/zed/main.tf
Lines changed: 2 additions & 2 deletions b/‎dogfood/contents/zed/main.tf
Lines changed: 2 additions & 2 deletions
diff --git a/‎enterprise/coderd/groups.go
Lines changed: 0 additions & 2 deletions b/‎enterprise/coderd/groups.go
Lines changed: 0 additions & 2 deletions
diff --git a/‎scripts/build_docker.sh
Lines changed: 3 additions & 1 deletion b/‎scripts/build_docker.sh
Lines changed: 3 additions & 1 deletion
diff --git a/‎site/e2e/constants.ts
Lines changed: 4 additions & 4 deletions b/‎site/e2e/constants.ts
Lines changed: 4 additions & 4 deletions
diff --git a/‎site/e2e/helpers.ts
Lines changed: 1 addition & 1 deletion b/‎site/e2e/helpers.ts
Lines changed: 1 addition & 1 deletion
diff --git a/‎site/e2e/setup/addUsersAndLicense.spec.ts
Lines changed: 3 additions & 3 deletions b/‎site/e2e/setup/addUsersAndLicense.spec.ts
Lines changed: 3 additions & 3 deletions
diff --git a/‎site/e2e/tests/auditLogs.spec.ts
Lines changed: 21 additions & 19 deletions b/‎site/e2e/tests/auditLogs.spec.ts
Lines changed: 21 additions & 19 deletions
@@ -259,7 +259,7 @@ jobs:
       - name: Install Protoc
         run: |
           mkdir -p /tmp/proto
-          pushd /tmp/proto
+          build /tmp/proto
           curl -L -o protoc.zip https://github.com/protocolbuffers/protobuf/releases/download/v23.4/protoc-23.4-linux-x86_64.zip
           unzip protoc.zip
           cp -r ./bin/* /usr/local/bin
 
@@ -361,6 +361,7 @@ jobs:
           file: scripts/Dockerfile.base
           platforms: linux/amd64,linux/arm64,linux/arm/v7
           provenance: true
+          sbom: true
           pull: true
           no-cache: true
           push: true
 
@@ -1,3 +1,6 @@
 {
-	"registry-mirrors": ["https://mirror.gcr.io"]
+	"registry-mirrors": ["https://mirror.gcr.io"],
+	"features": {
+		"containerd-snapshotter": true
+	}
 }
@@ -20,9 +20,9 @@ data "coder_workspace" "me" {}
 
 resource "coder_app" "zed" {
   agent_id     = var.agent_id
-  display_name = "Zed Editor"
+  display_name = "Zed"
   slug         = "zed"
   icon         = "/icon/zed.svg"
   external     = true
-  url          = "zed://ssh/coder.${lower(data.coder_workspace.me.name)}/${var.folder}"
+  url          = "zed://ssh/${lower(data.coder_workspace.me.name)}.coder/${var.folder}"
 }
@@ -167,8 +167,6 @@ func (api *API) patchGroup(rw http.ResponseWriter, r *http.Request) {
 			})
 			return
 		}
-		// TODO: It would be nice to enforce this at the schema level
-		// but unfortunately our org_members table does not have an ID.
 		_, err := database.ExpectOne(api.Database.OrganizationMembers(ctx, database.OrganizationMembersParams{
 			OrganizationID: group.OrganizationID,
 			UserID:         uuid.MustParse(id),
 
@@ -122,9 +122,11 @@ export DOCKER_BUILDKIT=1
 base_image="$DEFAULT_BASE"
 if [[ "$build_base" != "" ]]; then
 	log "--- Building base Docker image for $arch ($build_base)"
-	docker build \
+	docker buildx build \
 		--platform "$arch" \
 		--tag "$build_base" \
+		--provenance true \
+		--sbom true \
 		--no-cache \
 		-f Dockerfile.base \
 		. 1>&2
 
@@ -20,10 +20,10 @@ export const defaultPassword = "SomeSecurePassword!";
 
 // Credentials for users
 export const users = {
-	admin: {
-		username: "admin",
+	owner: {
+		username: "owner",
 		password: defaultPassword,
-		email: "admin@coder.com",
+		email: "owner@coder.com",
 	},
 	templateAdmin: {
 		username: "template-admin",
@@ -41,7 +41,7 @@ export const users = {
 		username: "auditor",
 		password: defaultPassword,
 		email: "auditor@coder.com",
-		roles: ["Template Admin", "Auditor"],
+		roles: ["Auditor"],
 	},
 	member: {
 		username: "member",
 
@@ -67,7 +67,7 @@ export type LoginOptions = {
 	password: string;
 };
 
-export async function login(page: Page, options: LoginOptions = users.admin) {
+export async function login(page: Page, options: LoginOptions = users.owner) {
 	const ctx = page.context();
 	// biome-ignore lint/suspicious/noExplicitAny: reset the current user
 	(ctx as any)[Symbol.for("currentUser")] = undefined;
 
@@ -16,16 +16,16 @@ test("setup deployment", async ({ page }) => {
 	}
 
 	// Setup first user
-	await page.getByLabel(Language.emailLabel).fill(users.admin.email);
-	await page.getByLabel(Language.passwordLabel).fill(users.admin.password);
+	await page.getByLabel(Language.emailLabel).fill(users.owner.email);
+	await page.getByLabel(Language.passwordLabel).fill(users.owner.password);
 	await page.getByTestId("create").click();
 
 	await expectUrl(page).toHavePathName("/workspaces");
 	await page.getByTestId("button-select-template").isVisible();
 
 	for (const user of Object.values(users)) {
 		// Already created as first user
-		if (user.username === "admin") {
+		if (user.username === "owner") {
 			continue;
 		}
 
 
@@ -13,62 +13,63 @@ test.describe.configure({ mode: "parallel" });
 
 test.beforeEach(async ({ page }) => {
 	beforeCoderTest(page);
-	await login(page, users.auditor);
 });
 
-async function resetSearch(page: Page) {
+async function resetSearch(page: Page, username: string) {
 	const clearButton = page.getByLabel("Clear search");
 	if (await clearButton.isVisible()) {
 		await clearButton.click();
 	}
 
 	// Filter by the auditor test user to prevent race conditions
-	const user = currentUser(page);
 	await expect(page.getByText("All users")).toBeVisible();
-	await page.getByPlaceholder("Search...").fill(`username:${user.username}`);
+	await page.getByPlaceholder("Search...").fill(`username:${username}`);
 	await expect(page.getByText("All users")).not.toBeVisible();
 }
 
 test("logins are logged", async ({ page }) => {
 	requiresLicense();
 
 	// Go to the audit history
+	await login(page, users.auditor);
 	await page.goto("/audit");
+	const username = users.auditor.username;
 
 	const user = currentUser(page);
-	const loginMessage = `${user.username} logged in`;
+	const loginMessage = `${username} logged in`;
 	// Make sure those things we did all actually show up
-	await resetSearch(page);
+	await resetSearch(page, username);
 	await expect(page.getByText(loginMessage).first()).toBeVisible();
 });
 
 test("creating templates and workspaces is logged", async ({ page }) => {
 	requiresLicense();
 
 	// Do some stuff that should show up in the audit logs
+	await login(page, users.templateAdmin);
+	const username = users.templateAdmin.username;
 	const templateName = await createTemplate(page);
 	const workspaceName = await createWorkspace(page, templateName);
 
 	// Go to the audit history
+	await login(page, users.auditor);
 	await page.goto("/audit");
 
-	const user = currentUser(page);
-
 	// Make sure those things we did all actually show up
-	await resetSearch(page);
+	await resetSearch(page, username);
 	await expect(
-		page.getByText(`${user.username} created template ${templateName}`),
+		page.getByText(`${username} created template ${templateName}`),
 	).toBeVisible();
 	await expect(
-		page.getByText(`${user.username} created workspace ${workspaceName}`),
+		page.getByText(`${username} created workspace ${workspaceName}`),
 	).toBeVisible();
 	await expect(
-		page.getByText(`${user.username} started workspace ${workspaceName}`),
+		page.getByText(`${username} started workspace ${workspaceName}`),
 	).toBeVisible();
 
 	// Make sure we can inspect the details of the log item
 	const createdWorkspace = page.locator(".MuiTableRow-root", {
-		hasText: `${user.username} created workspace ${workspaceName}`,
+		hasText: `${username} created workspace ${workspaceName}`,
 	});
 	await createdWorkspace.getByLabel("open-dropdown").click();
 	await expect(
@@ -83,18 +84,19 @@ test("inspecting and filtering audit logs", async ({ page }) => {
 	requiresLicense();
 
 	// Do some stuff that should show up in the audit logs
+	await login(page, users.templateAdmin);
+	const username = users.templateAdmin.username;
 	const templateName = await createTemplate(page);
 	const workspaceName = await createWorkspace(page, templateName);
 
 	// Go to the audit history
+	await login(page, users.auditor);
 	await page.goto("/audit");
-
-	const user = currentUser(page);
-	const loginMessage = `${user.username} logged in`;
-	const startedWorkspaceMessage = `${user.username} started workspace ${workspaceName}`;
+	const loginMessage = `${username} logged in`;
+	const startedWorkspaceMessage = `${username} started workspace ${workspaceName}`;
 
 	// Filter by resource type
-	await resetSearch(page);
+	await resetSearch(page, username);
 	await page.getByText("All resource types").click();
 	const workspaceBuildsOption = page.getByText("Workspace Build");
 	await workspaceBuildsOption.scrollIntoViewIfNeeded({ timeout: 5000 });
@@ -107,7 +109,7 @@ test("inspecting and filtering audit logs", async ({ page }) => {
 	await expect(page.getByText("All resource types")).toBeVisible();
 
 	// Filter by action type
-	await resetSearch(page);
+	await resetSearch(page, username);
 	await page.getByText("All actions").click();
 	await page.getByText("Login", { exact: true }).click();
 	// Logins should be visible
Original file line number	Diff line number	Diff line change
`@@ -1,3 +1,6 @@`
`1`	`1`	`{`
`2`		`- "registry-mirrors": ["https://mirror.gcr.io"]`
	`2`	`+ "registry-mirrors": ["https://mirror.gcr.io"],`
	`3`	`+ "features": {`
	`4`	`+ "containerd-snapshotter": true`
	`5`	`+ }`
`3`	`6`	`}`
Original file line number	Diff line number	Diff line change
`@@ -167,8 +167,6 @@ func (api API) patchGroup(rw http.ResponseWriter, r http.Request) {`
`167`	`167`	`})`
`168`	`168`	`return`
`169`	`169`	`}`
`170`		`- // TODO: It would be nice to enforce this at the schema level`
`171`		`- // but unfortunately our org_members table does not have an ID.`
`172`	`170`	`_, err := database.ExpectOne(api.Database.OrganizationMembers(ctx, database.OrganizationMembersParams{`
`173`	`171`	`OrganizationID: group.OrganizationID,`
`174`	`172`	`UserID: uuid.MustParse(id),`