mirror of
https://github.com/hashicorp/vault.git
synced 2025-08-19 05:31:10 +02:00
21bd134ad2
* ui: adds a new auth form option * add warning if nonsecure context, cleanup * more ember-y * Only show saml auth method for enterprise, plus tests * Use error message helper * Dont include saml on community auth list * Add allSupportedAuthBackends method * change token request from GET to PUT to match backend change * Fetch role on sign in, cancel login after timeout * saml acceptance test * Add changelog * saml test only on enterprise * set the acs_url according to which cluster the UI is served from * prepare namespace in addition to path with a helper func --------- Co-authored-by: Chelsea Shaw <cshaw@hashicorp.com>
82 lines
2.3 KiB
JavaScript
82 lines
2.3 KiB
JavaScript
/**
|
|
* Copyright (c) HashiCorp, Inc.
|
|
* SPDX-License-Identifier: BUSL-1.1
|
|
*/
|
|
|
|
import AdapterError from '@ember-data/adapter/error';
|
|
import { assign } from '@ember/polyfills';
|
|
import { set } from '@ember/object';
|
|
import ApplicationAdapter from './application';
|
|
import { encodePath } from 'vault/utils/path-encoding-helpers';
|
|
|
|
export default ApplicationAdapter.extend({
|
|
url(path) {
|
|
const url = `${this.buildURL()}/auth`;
|
|
return path ? url + '/' + encodePath(path) : url;
|
|
},
|
|
|
|
// used in updateRecord
|
|
pathForType() {
|
|
return 'mounts/auth';
|
|
},
|
|
|
|
findAll(store, type, sinceToken, snapshotRecordArray) {
|
|
const isUnauthenticated = snapshotRecordArray?.adapterOptions?.unauthenticated;
|
|
if (isUnauthenticated) {
|
|
const url = `/${this.urlPrefix()}/internal/ui/mounts`;
|
|
return this.ajax(url, 'GET', {
|
|
unauthenticated: true,
|
|
})
|
|
.then((result) => {
|
|
return {
|
|
data: result.data.auth,
|
|
};
|
|
})
|
|
.catch(() => {
|
|
return {
|
|
data: {},
|
|
};
|
|
});
|
|
}
|
|
return this.ajax(this.url(), 'GET').catch((e) => {
|
|
if (e instanceof AdapterError) {
|
|
set(e, 'policyPath', 'sys/auth');
|
|
}
|
|
throw e;
|
|
});
|
|
},
|
|
|
|
createRecord(store, type, snapshot) {
|
|
const serializer = store.serializerFor(type.modelName);
|
|
const data = serializer.serialize(snapshot);
|
|
const path = snapshot.attr('path');
|
|
|
|
return this.ajax(this.url(path), 'POST', { data }).then(() => {
|
|
// ember data doesn't like 204s if it's not a DELETE
|
|
data.config.id = path; // config relationship needs an id so use path for now
|
|
return {
|
|
data: assign({}, data, { path: path + '/', id: path }),
|
|
};
|
|
});
|
|
},
|
|
|
|
urlForDeleteRecord(id, modelName, snapshot) {
|
|
return this.url(snapshot.id);
|
|
},
|
|
|
|
exchangeOIDC(path, state, code) {
|
|
return this.ajax(`/v1/auth/${encodePath(path)}/oidc/callback`, 'GET', { data: { state, code } });
|
|
},
|
|
|
|
pollSAMLToken(path, token_poll_id, client_verifier) {
|
|
return this.ajax(`/v1/auth/${encodePath(path)}/token`, 'PUT', {
|
|
data: { token_poll_id, client_verifier },
|
|
});
|
|
},
|
|
|
|
tune(path, data) {
|
|
const url = `${this.buildURL()}/${this.pathForType()}/${encodePath(path)}tune`;
|
|
return this.ajax(url, 'POST', { data });
|
|
},
|
|
});
|