mirrors/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2025-08-06 22:57:02 +02:00
Code Issues Projects Releases Wiki Activity

UI: Add mirage handler and scenarios for custom login work (#30394)

Browse Source 
* add mirage handler and scenarios for custom login work

* Update ui/mirage/handlers/custom-login.js

* stuck tests
This commit is contained in:
claire bontempo 2025-04-25 12:30:43 -07:00 committed by GitHub
parent 10495d77f3
commit a402560740
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
5 changed files with 104 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
ui/mirage/factories/login-rule.js Normal file
View File

@ -0,0 +1,14 @@
/**
* Copyright (c) HashiCorp, Inc.
* SPDX-License-Identifier: BUSL-1.1
*/
import { Factory } from 'miragejs';
export default Factory.extend({
name: (i) => `Login rule ${i}`,
namespace: (i) => `namespace-${i}`,
default_auth_type: 'okta',
backup_auth_types: () => ['oidc', 'token'],
disable_inheritance: false,
});

60
ui/mirage/handlers/custom-login.js Normal file
View File

@ -0,0 +1,60 @@
/**
* Copyright (c) HashiCorp, Inc.
* SPDX-License-Identifier: BUSL-1.1
*/
export default function (server) {
// LIST, READ and DELETE requests for default-auth (login customizations)
server.get('sys/config/ui/login/default-auth', (schema, req) => {
// API expects { data: { list: true } } as query params when making LIST requests
if (req.queryParams.list) {
const records = schema.db['loginRules'];
if (records) {
const keys = records.map(({ name }) => name);
const key_info = records.reduce((obj, record) => {
const { name, namespace, disable_inheritance } = record;
// TBD, but likely only limited information will be returned about the record from the LIST request
obj[name] = { namespace, disable_inheritance };
return obj;
}, {});
return {
data: { keys, key_info },
};
}
return new Response(404, {}, { errors: [] });
}
});
server.get('sys/config/ui/login/default-auth/:name', (schema, req) => {
// req.params come in as: { name: "Login rule name" }
const record = schema.db['loginRules'].findBy(req.params);
if (record) {
delete record.id; // "name" is the id
return { data: record };
}
return new Response(404, {}, { errors: [] });
});
server.delete('sys/config/ui/login/default-auth/:name', (schema, req) => {
const record = schema.db['loginRules'].findBy(req.params);
if (record) {
schema.db['loginRules'].remove(record);
return new Response(204); // No content
}
return new Response(404, {}, { errors: [] });
});
// UNAUTHENTICATED READ ONLY for login form display logic
server.get('sys/internal/ui/default-login-methods', (schema, req) => {
const nsHeader = req.requestHeaders['X-Vault-Namespace'];
// if no namespace is passed, assume root
const namespace = !nsHeader ? '' : nsHeader;
const nsRule = schema.db['loginRules'].findBy({ namespace });
if (nsRule) {
// only data relevant to login form is returned
const { default_auth_type, backup_auth_types } = nsRule;
return { data: { default_auth_type, backup_auth_types } };
}
return new Response(404, {}, { errors: [] });
});
}

10
ui/mirage/handlers/index.js
View File

@ -7,8 +7,9 @@
// individual lookup done in mirage config // individual lookup done in mirage config
import base from './base'; import base from './base';
import chrootNamespace from './chroot-namespace'; import chrootNamespace from './chroot-namespace';
import customMessages from './custom-messages';
import clients from './clients'; import clients from './clients';
import customMessages from './custom-messages';
import customLogin from './custom-login';
import database from './database'; import database from './database';
import hcpLink from './hcp-link'; import hcpLink from './hcp-link';
import kms from './kms'; import kms from './kms';
@ -18,13 +19,15 @@ import mfaConfig from './mfa-config';
import mfaLogin from './mfa-login'; import mfaLogin from './mfa-login';
import oidcConfig from './oidc-config'; import oidcConfig from './oidc-config';
import reducedDisclosure from './reduced-disclosure'; import reducedDisclosure from './reduced-disclosure';
import sync from './sync';
import replication from './replication'; import replication from './replication';
import sync from './sync';
export { export {
base, base,
chrootNamespace, chrootNamespace,
clients, clients,
customLogin,
customMessages,
database, database,
hcpLink, hcpLink,
kms, kms,
@ -34,7 +37,6 @@ export {
mfaLogin, mfaLogin,
oidcConfig, oidcConfig,
reducedDisclosure, reducedDisclosure,
customMessages,
sync,
replication, replication,
sync,
}; };

22
ui/mirage/scenarios/custom-login.js Normal file
View File

@ -0,0 +1,22 @@
/**
* Copyright (c) HashiCorp, Inc.
* SPDX-License-Identifier: BUSL-1.1
*/
export default function (server) {
server.create('login-rule', {
name: 'Root namespace default',
namespace: '',
default_auth_type: 'userpass',
backup_auth_types: ['okta'],
disable_inheritance: true,
});
server.create('login-rule', {
namespace: 'admin/',
default_auth_type: 'oidc',
backup_auth_types: ['token'],
});
server.create('login-rule', { default_auth_type: 'jwt', backup_auth_types: [] });
server.create('login-rule', { default_auth_type: '', backup_auth_types: ['oidc', 'jwt'] });
server.create('login-rule', { default_auth_type: '', backup_auth_types: ['token'] });
}

3
ui/mirage/scenarios/index.js
View File

@ -6,5 +6,6 @@
import kubernetes from './kubernetes'; import kubernetes from './kubernetes';
import ldap from './ldap'; import ldap from './ldap';
import sync from './sync'; import sync from './sync';
import customLogin from './custom-login';
export { kubernetes, ldap, sync }; export { kubernetes, ldap, sync, customLogin };