mirror of
https://github.com/hashicorp/vault.git
synced 2026-01-08 02:01:38 +01:00
225cd9d19f
* refactor findAll to use internal/ui/mounts when authenticated as well * format ttl in details view * include hours in format for easy comparison to CLI return * Revert "include hours in format for easy comparison to CLI return" This reverts commit 990aaf5d1e157ccd83389ecd54011b8971f7e52d. * add changelog * revert adapter change * add new adapter method instead of updating existing * add test for ttl * revert and use findAll again * update mirage endpoints * remove query obj * Revert "update mirage endpoints" This reverts commit f5fb333bf46b8ee86fbd134cbbd9fde85a72c9a1. * another one that snuck into a separate commit * use adapterOption to manage endpoint logic * add adapter tests * Update changelog/26663.txt Co-authored-by: Chelsea Shaw <82459713+hashishaw@users.noreply.github.com> * add test that ttl inputs aren not checked --------- Co-authored-by: Chelsea Shaw <82459713+hashishaw@users.noreply.github.com>
93 lines
2.9 KiB
JavaScript
93 lines
2.9 KiB
JavaScript
/**
|
|
* Copyright (c) HashiCorp, Inc.
|
|
* SPDX-License-Identifier: BUSL-1.1
|
|
*/
|
|
|
|
import AdapterError from '@ember-data/adapter/error';
|
|
import { set } from '@ember/object';
|
|
import ApplicationAdapter from './application';
|
|
import { encodePath } from 'vault/utils/path-encoding-helpers';
|
|
|
|
export default ApplicationAdapter.extend({
|
|
url(path) {
|
|
const url = `${this.buildURL()}/auth`;
|
|
return path ? url + '/' + encodePath(path) : url;
|
|
},
|
|
|
|
// used in updateRecord
|
|
pathForType() {
|
|
return 'mounts/auth';
|
|
},
|
|
|
|
findAll(store, type, sinceToken, snapshotRecordArray) {
|
|
const isUnauthenticated = snapshotRecordArray?.adapterOptions?.unauthenticated;
|
|
// sys/internal/ui/mounts returns the actual value of the system TTL
|
|
// instead of '0' which just indicates the mount is using system defaults
|
|
const useMountsEndpoint = snapshotRecordArray?.adapterOptions?.useMountsEndpoint;
|
|
if (isUnauthenticated || useMountsEndpoint) {
|
|
const url = `/${this.urlPrefix()}/internal/ui/mounts`;
|
|
return this.ajax(url, 'GET', {
|
|
unauthenticated: isUnauthenticated,
|
|
})
|
|
.then((result) => {
|
|
return {
|
|
data: result.data.auth,
|
|
};
|
|
})
|
|
.catch((e) => {
|
|
if (isUnauthenticated) return { data: {} };
|
|
|
|
if (e instanceof AdapterError) {
|
|
set(e, 'policyPath', 'sys/internal/ui/mounts');
|
|
}
|
|
throw e;
|
|
});
|
|
}
|
|
return this.ajax(this.url(), 'GET').catch((e) => {
|
|
if (e instanceof AdapterError) {
|
|
set(e, 'policyPath', 'sys/auth');
|
|
}
|
|
throw e;
|
|
});
|
|
},
|
|
|
|
createRecord(store, type, snapshot) {
|
|
const serializer = store.serializerFor(type.modelName);
|
|
const data = serializer.serialize(snapshot);
|
|
const path = snapshot.attr('path');
|
|
|
|
return this.ajax(this.url(path), 'POST', { data }).then(() => {
|
|
// ember data doesn't like 204s if it's not a DELETE
|
|
data.config.id = path; // config relationship needs an id so use path for now
|
|
return {
|
|
data: { ...data, path: path + '/', id: path },
|
|
};
|
|
});
|
|
},
|
|
|
|
urlForDeleteRecord(id, modelName, snapshot) {
|
|
return this.url(snapshot.id);
|
|
},
|
|
|
|
exchangeOIDC(path, state, code) {
|
|
return this.ajax(`/v1/auth/${encodePath(path)}/oidc/callback`, 'GET', { data: { state, code } });
|
|
},
|
|
|
|
pollSAMLToken(path, token_poll_id, client_verifier) {
|
|
return this.ajax(`/v1/auth/${encodePath(path)}/token`, 'PUT', {
|
|
data: { token_poll_id, client_verifier },
|
|
});
|
|
},
|
|
|
|
tune(path, data) {
|
|
const url = `${this.buildURL()}/${this.pathForType()}/${encodePath(path)}tune`;
|
|
return this.ajax(url, 'POST', { data });
|
|
},
|
|
|
|
resetPassword(backend, username, password) {
|
|
// For userpass auth types only
|
|
const url = `/v1/auth/${encodePath(backend)}/users/${encodePath(username)}/password`;
|
|
return this.ajax(url, 'POST', { data: { password } });
|
|
},
|
|
});
|