mirror of
https://github.com/hashicorp/vault.git
synced 2025-08-18 04:27:02 +02:00
0b12cdcfd1
* Adding explicit MPL license for sub-package. This directory and its subdirectories (packages) contain files licensed with the MPLv2 `LICENSE` file in this directory and are intentionally licensed separately from the BSL `LICENSE` file at the root of this repository. * Adding explicit MPL license for sub-package. This directory and its subdirectories (packages) contain files licensed with the MPLv2 `LICENSE` file in this directory and are intentionally licensed separately from the BSL `LICENSE` file at the root of this repository. * Updating the license from MPL to Business Source License. Going forward, this project will be licensed under the Business Source License v1.1. Please see our blog post for more details at https://hashi.co/bsl-blog, FAQ at www.hashicorp.com/licensing-faq, and details of the license at www.hashicorp.com/bsl. * add missing license headers * Update copyright file headers to BUS-1.1 * Fix test that expected exact offset on hcl file --------- Co-authored-by: hashicorp-copywrite[bot] <110428419+hashicorp-copywrite[bot]@users.noreply.github.com> Co-authored-by: Sarah Thompson <sthompson@hashicorp.com> Co-authored-by: Brian Kassouf <bkassouf@hashicorp.com>
82 lines
3.0 KiB
JavaScript
82 lines
3.0 KiB
JavaScript
/**
|
|
* Copyright (c) HashiCorp, Inc.
|
|
* SPDX-License-Identifier: BUSL-1.1
|
|
*/
|
|
|
|
import Component from '@glimmer/component';
|
|
import { inject as service } from '@ember/service';
|
|
import { action } from '@ember/object';
|
|
import { tracked } from '@glimmer/tracking';
|
|
|
|
/**
|
|
* @module MfaSetupStepOne
|
|
* MfaSetupStepOne component is a child component used in the end user setup for MFA. It records the UUID (aka method_id) and sends a admin-generate request.
|
|
*
|
|
* @param {string} entityId - the entityId of the user. This comes from the auth service which records it on loading of the cluster. A root user does not have an entityId.
|
|
* @param {function} isUUIDVerified - a function that consumes a boolean. Is true if the admin-generate is successful and false if it throws a warning or error.
|
|
* @param {boolean} restartFlow - a boolean that is true that is true if the user should proceed to step two or false if they should stay on step one.
|
|
* @param {function} saveUUIDandQrCode - A function that sends the inputted UUID and return qrCode from step one to the parent.
|
|
* @param {boolean} showWarning - whether a warning is returned from the admin-generate query. Needs to be passed to step two.
|
|
*/
|
|
|
|
export default class MfaSetupStepOne extends Component {
|
|
@service store;
|
|
@tracked error = '';
|
|
@tracked warning = '';
|
|
@tracked qrCode = '';
|
|
|
|
@action
|
|
redirectPreviousPage() {
|
|
this.args.restartFlow();
|
|
window.history.back();
|
|
}
|
|
|
|
@action
|
|
async verifyUUID(evt) {
|
|
evt.preventDefault();
|
|
const response = await this.postCurrentTokenGenerate();
|
|
|
|
if (response === 'stop_progress') {
|
|
this.args.isUUIDVerified(false);
|
|
} else if (response === 'reset_method') {
|
|
this.args.showWarning(this.warning);
|
|
} else {
|
|
this.args.isUUIDVerified(true);
|
|
}
|
|
}
|
|
|
|
async postCurrentTokenGenerate() {
|
|
this.error = '';
|
|
this.warning = '';
|
|
const adapter = this.store.adapterFor('mfa-setup');
|
|
let response;
|
|
|
|
try {
|
|
response = await adapter.currentTokenGenerate({
|
|
method_id: this.UUID, // comes from value on the input
|
|
});
|
|
this.args.saveUUIDandQrCode(this.UUID, response.data?.url);
|
|
// if there was a warning it won't fail but needs to be handled here and the flow needs to be interrupted
|
|
const warnings = response.warnings || [];
|
|
if (warnings.length > 0) {
|
|
this.UUID = ''; // clear UUID
|
|
const alreadyGenerated = warnings.find((w) =>
|
|
w.includes('Entity already has a secret for MFA method')
|
|
);
|
|
if (alreadyGenerated) {
|
|
this.warning =
|
|
'A QR code has already been generated, scanned, and MFA set up for this entity. If a new code is required, contact your administrator.';
|
|
return 'reset_method';
|
|
}
|
|
this.warning = warnings; // in case other kinds of warnings comes through.
|
|
return 'reset_method';
|
|
}
|
|
} catch (error) {
|
|
this.UUID = ''; // clear the UUID
|
|
this.error = error.errors;
|
|
return 'stop_progress';
|
|
}
|
|
return response;
|
|
}
|
|
}
|