Skip to content

feat(controlplane-api): implement controlplane-api with GraphQL#274

Open
BjoernKarma wants to merge 27 commits intomainfrom
feat/cpapi
Open

feat(controlplane-api): implement controlplane-api with GraphQL#274
BjoernKarma wants to merge 27 commits intomainfrom
feat/cpapi

Conversation

@BjoernKarma
Copy link
Contributor

@BjoernKarma BjoernKarma commented Mar 13, 2026

Summary

  • Add new controlplane-api component: a read-only GraphQL API over PostgreSQL using ent + gqlgen + entgql, served via Fiber (common-server)
  • Implements team-scoped data isolation via ent privacy policies and a team filter interceptor, with JWT/OAuth2 auth delegated to common-server
  • Includes full code generation pipeline (ent schemas → ent.graphql → gqlgen resolvers) with SPDX header injection via hack/boilerplate.go.txt
  • Integrates into CI workflow, dependabot, and goreleaser

What's included

  • Ent schemas for 9 entities: Team, Application, ApiExposure, ApiSubscription, Approval, ApprovalRequest, Zone, Group, Environment
  • Privacy layer: viewer-based query policies, mutations always denied (read-only)
  • Team filter interceptor: restricts query results based on viewer's teams (team/group/admin client types)
  • Custom resolvers: ownerTeam (cross-tenant safe via TeamInfo), roverStatus (computed), type resolvers for JSON-embedded enums
  • README.md with architecture overview and development instructions

Test plan

  • Tests will follow in a separate PR (unit tests + integration tests with testcontainers-go)
  • make build (generate + compile) passes
  • golangci-lint run passes (0 issues)
  • pre-commit hooks pass (reuse-lint-file, gitleaks)

@github-advanced-security
Copy link

github-advanced-security bot commented Mar 13, 2026

You are seeing this message because GitHub Code Scanning has recently been set up for this repository, or this pull request contains the workflow file for the Code Scanning tool.

What Enabling Code Scanning Means:

  • The 'Security' tab will display more code scanning analysis results (e.g., for the default branch).
  • Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results.
  • You will be able to see the analysis results for the pull request's branch on this overview once the scans have completed and the checks have passed.

For more information about GitHub Code Scanning, check out the documentation.

lukas016
lukas016 reviewed Mar 17, 2026
View reviewed changes
lukas016
lukas016 reviewed Mar 17, 2026
View reviewed changes
lukas016
lukas016 reviewed Mar 17, 2026
View reviewed changes
lukas016
lukas016 reviewed Mar 17, 2026
View reviewed changes
lukas016
lukas016 reviewed Mar 17, 2026
View reviewed changes
lukas016
lukas016 reviewed Mar 17, 2026
View reviewed changes
lukas016
lukas016 reviewed Mar 17, 2026
View reviewed changes
lukas016
lukas016 reviewed Mar 17, 2026
View reviewed changes
lukas016
lukas016 reviewed Mar 17, 2026
View reviewed changes
lukas016
lukas016 reviewed Mar 17, 2026
View reviewed changes
lukas016
lukas016 reviewed Mar 17, 2026
View reviewed changes
lukas016
lukas016 reviewed Mar 17, 2026
View reviewed changes
lukas016
lukas016 reviewed Mar 17, 2026
View reviewed changes
@BjoernKarma BjoernKarma added controlplane-api Anything related to controlplane-api enhancement New feature or request go Pull requests that update go code labels Mar 19, 2026
@BjoernKarma
feat(controlplane-api): implement controlplane-api with graphql
40dcb56
@BjoernKarma
ci(controlplane-api): add controlplane-api in workflows and release c…
94a3bd8 
…onfig
@BjoernKarma
build(controlplane-api): Add reuse header everywhere
a8b2f23
@BjoernKarma
build(controlplane-api): fix golangci-lint issues
e0c0544
@BjoernKarma
chore(controlplane-api): bump github.com/99designs/gqlgen to v0.17.88
5d2234a
@BjoernKarma
build(controlplane-api): make lint runs golangci-lint
822bab4
@BjoernKarma
build(controlplane-api): make test parameters
de3737c
@BjoernKarma
feat(controlplane-api): server now gets metrics middleware, request l…
83734ba 
…ogging, panic recovery, and request timeouts from NewAppWithConfig()
@BjoernKarma
feat(controlplane-api): simplify model and remove TeamEnvironmentStat…
5a7b633 
…us (part of team and user management)
@BjoernKarma
feat(controlplane-api): make Team and Environment dedicated entities …
e915252 
…to support queries like "Get all teams of the user with email XYZ in environment ABC")
@BjoernKarma
feat(controlplane-api): remove ApiInfo type and add version directly …
e81d41d 
…in ApiExposure
@BjoernKarma
feat(controlplane-api): Simplify features in ApiExposure as a list of…
4204545 
… enabled features
@BjoernKarma
feat(controlplane-api): StatusMixin flattened, RoverStatus removed
c8a8e90
@BjoernKarma BjoernKarma marked this pull request as ready for review March 20, 2026 09:17
Copilot AI review requested due to automatic review settings March 20, 2026 09:17
Copilot AI reviewed Mar 20, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Copilot was unable to review this pull request because the user who requested the review has reached their quota limit.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@lukas016 lukas016 lukas016 left review comments

Copilot code review Copilot Copilot left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

controlplane-api Anything related to controlplane-api enhancement New feature or request go Pull requests that update go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@BjoernKarma @lukas016