mirror of
https://github.com/hashicorp/vault.git
synced 2025-08-20 06:01:10 +02:00
3abca46464
* manual cherry pick to deal with all the merge things * changelog * test fixes * Update 28148.txt * fix tests failures after main merge * fix test failures after main merge * Add Access Type and conditionally render WIF fields (#28149) * initial work. * remove access_type * better no model logic well kind of * rollback attrs * remove defaults * stopping point * wip changing back to sidebranch * hustling shuffling and serializing * some of the component test coverage * disable acces type if editing * test coverage * hide max retries that sneaky bugger * cleanup * cleanup * Update root-config.js * remove flash message check, locally passes great but on ci flaky * clean up * thank you chelsea * test clean up per enterprise vs community * address pr comments * welp a miss add * UI (sidebranch) WIF Issuer field (#28187) * Add type declaration files for aws config models * use updated task syntax for save method on configure-aws * fix types on edit route * fetch issuer on configure edit page if aws + enterprise * track issuer within configure-aws component * add placeholder support on form-field * Add warning if issuer changed from previous value or could not be read * cleanup * preliminary tests * dont use while loop so we can test the modal * tests * cleanup * fix tests * remove extra tracked value and duplicate changed attrs check * modal footer --------- Co-authored-by: Angel Garbarino <argarbarino@gmail.com> * Display issuer on Configuration details (#28209) * display issuer on configuration details * workflow complete, now on to testing * handle issuer things * fix all the broken tests things * add test coveragE: * cleanup * rename model/adapter * Update configure-aws.ts * Update aws-configuration-test.js * 90 percent there for pr comments * last one for tonight * a few more because why not * hasDirtyAttributes fixes * revert back to previous noRead->queryIssuerError --------- Co-authored-by: Chelsea Shaw <82459713+hashishaw@users.noreply.github.com>
98 lines
3.5 KiB
JavaScript
98 lines
3.5 KiB
JavaScript
/**
|
|
* Copyright (c) HashiCorp, Inc.
|
|
* SPDX-License-Identifier: BUSL-1.1
|
|
*/
|
|
|
|
import Component from '@glimmer/component';
|
|
import { action } from '@ember/object';
|
|
import { service } from '@ember/service';
|
|
import { tracked } from '@glimmer/tracking';
|
|
import { task } from 'ember-concurrency';
|
|
|
|
/**
|
|
* @module OidcKeyForm
|
|
* OidcKeyForm components are used to create and update OIDC providers
|
|
*
|
|
* @example
|
|
* ```js
|
|
* <OidcKeyForm @model={{this.model}} />
|
|
* ```
|
|
* @callback onCancel
|
|
* @callback onSave
|
|
* @param {Object} model - oidc client model
|
|
* @param {onCancel} onCancel - callback triggered when cancel button is clicked
|
|
* @param {onSave} onSave - callback triggered on save success
|
|
* @param {boolean} [isModalForm=false] - if true, hides inputs related to selecting an application which is only relevant to the OIDC provider workflow.
|
|
*/
|
|
|
|
export default class OidcKeyForm extends Component {
|
|
@service store;
|
|
@service flashMessages;
|
|
@tracked errorBanner;
|
|
@tracked invalidFormAlert;
|
|
@tracked modelValidations;
|
|
@tracked radioCardGroupValue =
|
|
// If "*" is provided, all clients are allowed: https://developer.hashicorp.com/vault/api-docs/secret/identity/oidc-provider#parameters
|
|
!this.args.model.allowedClientIds || this.args.model.allowedClientIds.includes('*')
|
|
? 'allow_all'
|
|
: 'limited';
|
|
|
|
get filterDropdownOptions() {
|
|
// query object sent to search-select so only clients that reference this key appear in dropdown
|
|
return { paramKey: 'key', filterFor: [this.args.model.name] };
|
|
}
|
|
|
|
@action
|
|
handleClientSelection(selection) {
|
|
// if array then coming from search-select component, set selection as model clients
|
|
if (Array.isArray(selection)) {
|
|
this.args.model.allowedClientIds = selection.map((client) => client.clientId);
|
|
} else {
|
|
// otherwise update radio button value and reset clients so
|
|
// UI always reflects a user's selection (including when no clients are selected)
|
|
this.radioCardGroupValue = selection;
|
|
this.args.model.allowedClientIds = [];
|
|
}
|
|
}
|
|
|
|
@action
|
|
cancel() {
|
|
const method = this.args.model.isNew ? 'unloadRecord' : 'rollbackAttributes';
|
|
this.args.model[method]();
|
|
this.args.onCancel();
|
|
}
|
|
|
|
@task
|
|
*save(event) {
|
|
event.preventDefault();
|
|
try {
|
|
const { isValid, state, invalidFormMessage } = this.args.model.validate();
|
|
this.modelValidations = isValid ? null : state;
|
|
this.invalidFormAlert = invalidFormMessage;
|
|
if (isValid) {
|
|
const { isNew, name } = this.args.model;
|
|
if (this.radioCardGroupValue === 'allow_all') {
|
|
this.args.model.allowedClientIds = ['*'];
|
|
}
|
|
// if TTL components are toggled off, set to default lease duration
|
|
const { rotationPeriod, verificationTtl } = this.args.model;
|
|
// value returned from API is a number, and string when from form action
|
|
if (Number(rotationPeriod) === 0) this.args.model.rotationPeriod = '24h';
|
|
if (Number(verificationTtl) === 0) this.args.model.verificationTtl = '24h';
|
|
yield this.args.model.save();
|
|
this.flashMessages.success(
|
|
`Successfully ${isNew ? 'created' : 'updated'} the key
|
|
${name}.`
|
|
);
|
|
// this form is sometimes used in a modal, passing the model notifies
|
|
// the parent if the save was successful
|
|
this.args.onSave(this.args.model);
|
|
}
|
|
} catch (error) {
|
|
const message = error.errors ? error.errors.join('. ') : error.message;
|
|
this.errorBanner = message;
|
|
this.invalidFormAlert = 'There was an error submitting this form.';
|
|
}
|
|
}
|
|
}
|