Merge pull request #4684 from continuedev/nate/org-secret-resolution

sestinj · web-flow · commit b3c3b197dedd · 2025-03-16T18:53:05.000-07:00
use org scope to resolve org secrets
diff --git a/core/package-lock.json b/core/package-lock.json
diff --git a/core/package.json b/core/package.json
@@ -46,7 +46,7 @@
     "@aws-sdk/client-sagemaker-runtime": "^3.758.0",
     "@aws-sdk/credential-providers": "^3.758.0",
     "@continuedev/config-types": "^1.0.13",
-    "@continuedev/config-yaml": "^1.0.61",
+    "@continuedev/config-yaml": "^1.0.63",
     "@continuedev/fetch": "^1.0.4",
     "@continuedev/llm-info": "^1.0.2",
     "@continuedev/openai-adapters": "^1.0.10",
diff --git a/gui/package-lock.json b/gui/package-lock.json
diff --git a/gui/package.json b/gui/package.json
@@ -15,7 +15,7 @@
     "test:watch": "vitest"
   },
   "dependencies": {
-    "@continuedev/config-yaml": "^1.0.61",
+    "@continuedev/config-yaml": "^1.0.63",
     "@headlessui/react": "^1.7.17",
     "@heroicons/react": "^2.0.18",
     "@reduxjs/toolkit": "^2.3.0",
diff --git a/packages/config-yaml/package.json b/packages/config-yaml/package.json
@@ -1,6 +1,6 @@
 {
   "name": "@continuedev/config-yaml",
-  "version": "1.0.61",
+  "version": "1.0.63",
   "description": "",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
diff --git a/packages/config-yaml/src/interfaces/index.ts b/packages/config-yaml/src/interfaces/index.ts
@@ -32,6 +32,7 @@ export function getLocationsToLook(
   blockSlug: PackageSlug | undefined,
   currentUserSlug: string,
   secretName: string,
+  orgScopeSlug: string | null,
 ): SecretLocation[] {
   const locationsToLook: SecretLocation[] = [
     ...(blockSlug
@@ -57,11 +58,15 @@ export function getLocationsToLook(
       secretName,
     },
     // Organization that owns assistant (org secrets can only be used in assistants owned by that org)
-    {
-      secretType: SecretType.Organization as const,
-      orgSlug: assistantSlug.ownerSlug,
-      secretName,
-    },
+    ...(orgScopeSlug
+      ? [
+          {
+            secretType: SecretType.Organization as const,
+            orgSlug: orgScopeSlug,
+            secretName,
+          },
+        ]
+      : []),
     // User
     {
       secretType: SecretType.User as const,
@@ -90,6 +95,7 @@ export function listAvailableSecrets(
   assistantSlug: PackageSlug,
   blockSlug: PackageSlug | undefined,
   currentUserSlug: string,
+  orgScopeSlug: string | null,
 ): SecretLocation[] {
   // Create a set of all secret names
   const allSecretNames = new Set([
@@ -108,6 +114,7 @@ export function listAvailableSecrets(
       blockSlug,
       currentUserSlug,
       secretName,
+      orgScopeSlug,
     );
 
     // Go through the locations one by one
@@ -155,6 +162,7 @@ export async function resolveFQSN(
   currentUserSlug: string,
   fqsn: FQSN,
   platformSecretStore: PlatformSecretStore,
+  orgScopeSlug: string | null,
 ): Promise<SecretResult> {
   // First create the list of secret locations to try in order
   const assistantSlug = fqsn.packageSlugs[0];
@@ -164,6 +172,7 @@ export async function resolveFQSN(
     blockSlug,
     currentUserSlug,
     fqsn.secretName,
+    orgScopeSlug,
   );
 
   // Then try to get the secret from each location
diff --git a/packages/config-yaml/test/index.test.ts b/packages/config-yaml/test/index.test.ts
@@ -44,7 +44,7 @@ describe("E2E Scenarios", () => {
     ): Promise<(SecretResult | undefined)[]> {
       return await Promise.all(
         fqsns.map((fqsn) =>
-          resolveFQSN("test-user", fqsn, platformSecretStore),
+          resolveFQSN("test-user", fqsn, platformSecretStore, "test-org"),
         ),
       );
     },

Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,6 @@`
`1`	`1`	`{`
`2`	`2`	`"name": "@continuedev/config-yaml",`
`3`		`- "version": "1.0.61",`
	`3`	`+ "version": "1.0.63",`
`4`	`4`	`"description": "",`
`5`	`5`	`"main": "dist/index.js",`
`6`	`6`	`"types": "dist/index.d.ts",`