mirror of
https://github.com/hashicorp/vault.git
synced 2025-08-20 22:21:09 +02:00
d35a915f57
* move some auth controller logic to route page component * remove unused vars * fix action handling so this context is retained * rename authpage to auth-form-page * rename auth-route-page to auth-splash-page * link jira VAULT-28251 * wowww typo * add padding to mfa form alert message * update component name in tests * alphabetize args * use auth helpers for login method * remove async, await * rename components * update jsdoc * add comment
73 lines
2.6 KiB
JavaScript
73 lines
2.6 KiB
JavaScript
/**
|
|
* Copyright (c) HashiCorp, Inc.
|
|
* SPDX-License-Identifier: BUSL-1.1
|
|
*/
|
|
|
|
import Component from '@glimmer/component';
|
|
import { service } from '@ember/service';
|
|
import { tracked } from '@glimmer/tracking';
|
|
import { action } from '@ember/object';
|
|
|
|
/**
|
|
* @module AuthPage
|
|
* The Auth::Page wraps OktaNumberChallenge and AuthForm to manage the login flow and is responsible for calling the authenticate method
|
|
*
|
|
* @example
|
|
* <Auth::Page @namespaceQueryParam={{this.namespaceQueryParam}} @onAuthSuccess={{action "authSuccess"}} @oidcProviderQueryParam={{this.oidcProvider}} @cluster={{this.model}} @onNamespaceUpdate={{perform this.updateNamespace}} />
|
|
*
|
|
* @param {string} authMethodQueryParam - auth method type to login with, updated by selecting an auth method from the dropdown
|
|
* @param {string} namespaceQueryParam - namespace to login with, updated by typing in to the namespace input
|
|
* @param {string} oidcProviderQueryParam - oidc provider query param, set in url as "?o=someprovider"
|
|
* @param {function} onAuthSuccess - callback task in controller that receives the auth response (after MFA, if enabled) when login is successful
|
|
* @param {function} onNamespaceUpdate - callback task that passes user input to the controller to update the login namespace in the url query params
|
|
* @param {string} wrappedToken - passed down to the AuthForm component and can be used to login if added directly to the URL via the "wrapped_token" query param
|
|
* */
|
|
|
|
export default class AuthPage extends Component {
|
|
@service flags;
|
|
|
|
@tracked mfaErrors;
|
|
@tracked mfaAuthData;
|
|
|
|
get namespaceInput() {
|
|
const namespaceQP = this.args.namespaceQueryParam;
|
|
if (this.flags.hvdManagedNamespaceRoot) {
|
|
// When managed, the user isn't allowed to edit the prefix `admin/` for their nested namespace
|
|
const split = namespaceQP.split('/');
|
|
if (split.length > 1) {
|
|
split.shift();
|
|
return `/${split.join('/')}`;
|
|
}
|
|
return '';
|
|
}
|
|
return namespaceQP;
|
|
}
|
|
|
|
@action
|
|
handleNamespaceUpdate(event) {
|
|
this.args.onNamespaceUpdate(event.target.value);
|
|
}
|
|
|
|
@action
|
|
onAuthResponse(authResponse, backend, data) {
|
|
const { mfa_requirement } = authResponse;
|
|
// if an mfa requirement exists further action is required
|
|
if (mfa_requirement) {
|
|
this.mfaAuthData = { mfa_requirement, backend, data };
|
|
} else {
|
|
this.args.onAuthSuccess(authResponse);
|
|
}
|
|
}
|
|
|
|
@action
|
|
onMfaSuccess(authResponse) {
|
|
this.args.onAuthSuccess(authResponse);
|
|
}
|
|
|
|
@action
|
|
onMfaErrorDismiss() {
|
|
this.mfaAuthData = null;
|
|
this.mfaErrors = null;
|
|
}
|
|
}
|