DEVPROD-5753: Implement and apply requireHostAccess GQL directive

[SupaJoon]

DEVPROD-5753

Description

The actual added code to review is less than 540 lines.
These code changes implement and apply the @requireHostAccess directive to these mutations:

• updateSpawnHostStatus
• editSpawnHost
• reprovisionToNew
• restartJasper
• updateHostStatus

and these queries:

• host
• hostEvents

I also applied the directive permission logic to the hosts query resolver instead of the schema since there is are no host IDs available before the host db query takes place.

These code changes combine the permission for editing spawn hosts and non-spawn hosts. Currently in Evergreen, the difference between the two implementations is that spawn hosts permission is granted if the host startedBy field is the same as the requesting user and the user has the host edit permission (code) whereas modifying a non-spawn host only checks the edit permission (code). I confirmed in staging that I am able to modify my spawn host with the current code changes and I could use edge case clarification from an App engineer.

e2e test is fixed in this UI PR: evergreen-ci/ui#410

[minnakt]

since we don't really do anything with the forbiddenHosts, I wonder if it makes sense to do this check in the same loop where we're building the APIHosts below (and just return immediately if you encounter no permissions)

[hadjri]

You can either do that or include a formatted list of all the forbidden hosts in the error message here

[SupaJoon]

I originally considered returning a list of hosts that are inaccessible but I think that is insecure since the query parameters match the hostIds in the error message which makes the error message really useful to someone who doesn't have host permissions

[minnakt]

does it make sense to do this so you can skip the extra loop for hostIds 👀

Suggested change

	hostIdsInterface, hasHostIds := args["hostIds"].([]interface{})
	hostIds, hasHostIds := args["hostIds"].([]string)

[SupaJoon]

I tried this and hostIds was always empty

[hadjri]

The references to .Equal or .EqualError in this file should use assert rather than require for codebase style consistency.

[hadjri]

You can either do that or include a formatted list of all the forbidden hosts in the error message here

[hadjri]

nit: initialize as []string{hostId} and remove L56

[hadjri]

is access not being specified a valid case? If not I would use else rather than else if

[hadjri]

This should be consistent with the logic here (as in whether we keep track of a list of forbidden hosts or not)

[SupaJoon]

I omitted the forbidden hosts from the error message from your link because those hostIDs are the result of a query. I think it makes sense to include the forbidden hostIDs in the directive error message because those hosts were supplied by the user. This could make it easier for the user to ask for help in the support channel.

[SupaJoon]

evergreen retry

[minnakt]

should we include the err message here?

[minnakt]

could this be consolidated? I also think using %s might be slightly better than using %v since it's a string

Suggested change

	if len(forbiddenHosts) == 1 {
	return nil, Forbidden.Send(ctx, fmt.Sprintf("user '%s' does not have permission to access host '%v'", user.Username(), forbiddenHosts[0]))
	} else if len(forbiddenHosts) > 1 {
	hostsString := strings.Join(forbiddenHosts, ", ")
	return nil, Forbidden.Send(ctx, fmt.Sprintf("user '%s' does not have permission to access hosts: '%v'", user.Username(), hostsString))
	}
	if len(forbiddenHosts) > 0 {
	hostsString := strings.Join(forbiddenHosts, ", ")
	return nil, Forbidden.Send(ctx, fmt.Sprintf("user '%s' does not have permission to access host(s): '%s'", user.Username(), hostsString))
	}

[SupaJoon]

This could be consolidated but I like how the copy is more specific in the original code. I updated %v to %s.