@Emyrk the new version of workspaces_expanded revealed an issue in a (test) helper function update merged yesterday (by yours truly 🤕).

This hunk fixes the issue so that the tests using the helper don't break when passing in only one from the UserACL/GroupACL pair.

With the old workspace_expanded view the issue (JSON null being saved in DB instead of the default {}) wasn't surfacing, but with the new version of the view, fetching results in this error:

pq: cannot call jsonb_each on a non-object

As I said, this commit fixes the issue for tests, but it begs a bigger question: should we consider adopting check constraints for JSONB columns across our schema, e.g.:

ALTER TABLE workspaces
    ADD CONSTRAINT group_acl_is_object CHECK (jsonb_typeof(group_acl) = 'object');

so that JSON nulls never get saved by faulty Go code?

Ah, do we need a db migration and constraint to fix it?

That would be ok

If that's OK, I'll submit a separate PR when I have a little more bandwidth.

this type is used by the UpdateWorkspaceACLByID query. I don't think we want to add these extra fields here, because they're not valid to set when calling that query.

in the RFC this used a type called SharedWorkspaceActor https://www.notion.so/coderhq/Shared-Workspaces-214d579be592803697cdef7a662d35b5?source=copy_link#224d579be59280688617ed6001e46377

ah, yeah, we do define that here still. can we avoid polluting the db type and either convert to this earlier or use a different type as the intermediate?

Good point, thanks! Pushed an update that reads the ACL actors' display info as separate columns on the workspaces_expanded view.

The query behind this version of the view is slightly (up to 20%) faster, likely because it doesn't need to parse saved ACL JSON (just extracts the keys).

old version
new version

The downside is more data on the wire and extra boilerplate.