mirror of
https://github.com/hashicorp/vault.git
synced 2025-08-15 02:57:04 +02:00
d4766766f2
* runs ember-cli-update to 4.4.0 * updates yarn.lock * updates dependencies causing runtime errors (#17135) * Inject Store Service When Accessed Implicitly (#17345) * adds codemod for injecting store service * adds custom babylon parser with decorators-legacy plugin for jscodeshift transforms * updates inject-store-service codemod to only look for .extend object expressions and adds recast options * runs inject-store-service codemod on js files * replace query-params helper with hash (#17404) * Updates/removes dependencies throwing errors in Ember 4.4 (#17396) * updates ember-responsive to latest * updates ember-composable-helpers to latest and uses includes helper since contains was removed * updates ember-concurrency to latest * updates ember-cli-clipboard to latest * temporary workaround for toolbar-link component throwing errors for using params arg with LinkTo * adds missing store injection to auth configure route * fixes issue with string-list component throwing error for accessing prop in same computation * fixes non-iterable query params issue in mfa methods controller * refactors field-to-attrs to handle belongsTo rather than fragments * converts mount-config fragment to belongsTo on auth-method model * removes ember-api-actions and adds tune method to auth-method adapter * converts cluster replication attributes from fragment to relationship * updates ember-data, removes ember-data-fragments and updates yarn to latest * removes fragments from secret-engine model * removes fragment from test-form-model * removes commented out code * minor change to inject-store-service codemod and runs again on js files * Remove LinkTo positional params (#17421) * updates ember-cli-page-object to latest version * update toolbar-link to support link-to args and not positional params * adds replace arg to toolbar-link component * Clean up js lint errors (#17426) * replaces assert.equal to assert.strictEqual * update eslint no-console to error and disables invididual intended uses of console * cleans up hbs lint warnings (#17432) * Upgrade bug and test fixes (#17500) * updates inject-service codemod to take arg for service name and runs for flashMessages service * fixes hbs lint error after merging main * fixes flash messages * updates more deps * bug fixes * test fixes * updates ember-cli-content-security-policy and prevents default form submission throwing errors * more bug and test fixes * removes commented out code * fixes issue with code-mirror modifier sending change event on setup causing same computation error * Upgrade Clean Up (#17543) * updates deprecation workflow and filter * cleans up build errors, removes unused ivy-codemirror and sass and updates ember-cli-sass and node-sass to latest * fixes control groups test that was skipped after upgrade * updates control group service tests * addresses review feedback * updates control group service handleError method to use router.currentURL rather that transition.intent.url * adds changelog entry
127 lines
3.9 KiB
JavaScript
127 lines
3.9 KiB
JavaScript
import TransformBase, { addToList, removeFromList } from './transform-edit-base';
|
|
import { inject as service } from '@ember/service';
|
|
|
|
export default TransformBase.extend({
|
|
flashMessages: service(),
|
|
store: service(),
|
|
initialRoles: null,
|
|
|
|
init() {
|
|
this._super(...arguments);
|
|
if (!this.model) return;
|
|
this.set('initialRoles', this.model.allowed_roles);
|
|
},
|
|
|
|
updateOrCreateRole(role, transformationId, backend) {
|
|
return this.store
|
|
.queryRecord('transform/role', {
|
|
backend,
|
|
id: role.id,
|
|
})
|
|
.then((roleStore) => {
|
|
let transformations = roleStore.transformations;
|
|
if (role.action === 'ADD') {
|
|
transformations = addToList(transformations, transformationId);
|
|
} else if (role.action === 'REMOVE') {
|
|
transformations = removeFromList(transformations, transformationId);
|
|
}
|
|
roleStore.setProperties({
|
|
backend,
|
|
transformations,
|
|
});
|
|
return roleStore.save().catch((e) => {
|
|
return {
|
|
errorStatus: e.httpStatus,
|
|
...role,
|
|
};
|
|
});
|
|
})
|
|
.catch((e) => {
|
|
if (e.httpStatus !== 403 && role.action === 'ADD') {
|
|
// If role doesn't yet exist, create it with this transformation attached
|
|
var newRole = this.store.createRecord('transform/role', {
|
|
id: role.id,
|
|
name: role.id,
|
|
transformations: [transformationId],
|
|
backend,
|
|
});
|
|
return newRole.save().catch((e) => {
|
|
return {
|
|
errorStatus: e.httpStatus,
|
|
...role,
|
|
action: 'CREATE',
|
|
};
|
|
});
|
|
}
|
|
|
|
return {
|
|
...role,
|
|
errorStatus: e.httpStatus,
|
|
};
|
|
});
|
|
},
|
|
|
|
handleUpdateRoles(updateRoles, transformationId) {
|
|
if (!updateRoles) return;
|
|
const backend = this.model.backend;
|
|
const promises = updateRoles.map((r) => this.updateOrCreateRole(r, transformationId, backend));
|
|
|
|
Promise.all(promises).then((results) => {
|
|
let hasError = results.find((role) => !!role.errorStatus);
|
|
|
|
if (hasError) {
|
|
let message =
|
|
'The edits to this transformation were successful, but transformations for its roles was not edited due to a lack of permissions.';
|
|
if (results.find((e) => !!e.errorStatus && e.errorStatus !== 403)) {
|
|
// if the errors weren't all due to permissions show generic message
|
|
// eg. trying to update a role with empty array as transformations
|
|
message = `You've edited the allowed_roles for this transformation. However, the corresponding edits to some roles' transformations were not made`;
|
|
}
|
|
this.flashMessages.stickyInfo(message);
|
|
}
|
|
});
|
|
},
|
|
|
|
isWildcard(role) {
|
|
if (typeof role === 'string') {
|
|
return role.indexOf('*') >= 0;
|
|
}
|
|
if (role && role.id) {
|
|
return role.id.indexOf('*') >= 0;
|
|
}
|
|
return false;
|
|
},
|
|
|
|
actions: {
|
|
createOrUpdate(type, event) {
|
|
event.preventDefault();
|
|
|
|
this.applyChanges('save', () => {
|
|
const transformationId = this.model.id;
|
|
const newModelRoles = this.model.allowed_roles || [];
|
|
const initialRoles = this.initialRoles || [];
|
|
|
|
const updateRoles = [...newModelRoles, ...initialRoles]
|
|
.filter((r) => !this.isWildcard(r)) // CBS TODO: expand wildcards into included roles instead
|
|
.map((role) => {
|
|
if (initialRoles.indexOf(role) < 0) {
|
|
return {
|
|
id: role,
|
|
action: 'ADD',
|
|
};
|
|
}
|
|
if (newModelRoles.indexOf(role) < 0) {
|
|
return {
|
|
id: role,
|
|
action: 'REMOVE',
|
|
};
|
|
}
|
|
return null;
|
|
})
|
|
.filter((r) => !!r);
|
|
this.handleUpdateRoles(updateRoles, transformationId);
|
|
});
|
|
},
|
|
},
|
|
});
|