mirror of
https://github.com/hashicorp/vault.git
synced 2025-08-16 03:27:01 +02:00
d4766766f2
* runs ember-cli-update to 4.4.0 * updates yarn.lock * updates dependencies causing runtime errors (#17135) * Inject Store Service When Accessed Implicitly (#17345) * adds codemod for injecting store service * adds custom babylon parser with decorators-legacy plugin for jscodeshift transforms * updates inject-store-service codemod to only look for .extend object expressions and adds recast options * runs inject-store-service codemod on js files * replace query-params helper with hash (#17404) * Updates/removes dependencies throwing errors in Ember 4.4 (#17396) * updates ember-responsive to latest * updates ember-composable-helpers to latest and uses includes helper since contains was removed * updates ember-concurrency to latest * updates ember-cli-clipboard to latest * temporary workaround for toolbar-link component throwing errors for using params arg with LinkTo * adds missing store injection to auth configure route * fixes issue with string-list component throwing error for accessing prop in same computation * fixes non-iterable query params issue in mfa methods controller * refactors field-to-attrs to handle belongsTo rather than fragments * converts mount-config fragment to belongsTo on auth-method model * removes ember-api-actions and adds tune method to auth-method adapter * converts cluster replication attributes from fragment to relationship * updates ember-data, removes ember-data-fragments and updates yarn to latest * removes fragments from secret-engine model * removes fragment from test-form-model * removes commented out code * minor change to inject-store-service codemod and runs again on js files * Remove LinkTo positional params (#17421) * updates ember-cli-page-object to latest version * update toolbar-link to support link-to args and not positional params * adds replace arg to toolbar-link component * Clean up js lint errors (#17426) * replaces assert.equal to assert.strictEqual * update eslint no-console to error and disables invididual intended uses of console * cleans up hbs lint warnings (#17432) * Upgrade bug and test fixes (#17500) * updates inject-service codemod to take arg for service name and runs for flashMessages service * fixes hbs lint error after merging main * fixes flash messages * updates more deps * bug fixes * test fixes * updates ember-cli-content-security-policy and prevents default form submission throwing errors * more bug and test fixes * removes commented out code * fixes issue with code-mirror modifier sending change event on setup causing same computation error * Upgrade Clean Up (#17543) * updates deprecation workflow and filter * cleans up build errors, removes unused ivy-codemirror and sass and updates ember-cli-sass and node-sass to latest * fixes control groups test that was skipped after upgrade * updates control group service tests * addresses review feedback * updates control group service handleError method to use router.currentURL rather that transition.intent.url * adds changelog entry
123 lines
4.3 KiB
JavaScript
123 lines
4.3 KiB
JavaScript
import Model, { belongsTo, hasMany, attr } from '@ember-data/model';
|
|
import { alias } from '@ember/object/computed'; // eslint-disable-line
|
|
import { computed } from '@ember/object'; // eslint-disable-line
|
|
import { inject as service } from '@ember/service';
|
|
import fieldToAttrs, { expandAttributeMeta } from 'vault/utils/field-to-attrs';
|
|
import apiPath from 'vault/utils/api-path';
|
|
import attachCapabilities from 'vault/lib/attach-capabilities';
|
|
import { withModelValidations } from 'vault/decorators/model-validations';
|
|
|
|
const validations = {
|
|
path: [{ type: 'presence', message: "Path can't be blank." }],
|
|
};
|
|
|
|
// unsure if ember-api-actions will work on native JS class model
|
|
// for now create class to use validations and then use classic extend pattern
|
|
@withModelValidations(validations)
|
|
class AuthMethodModel extends Model {}
|
|
const ModelExport = AuthMethodModel.extend({
|
|
store: service(),
|
|
|
|
config: belongsTo('mount-config', { async: false, inverse: null }), // one-to-none that replaces former fragment
|
|
authConfigs: hasMany('auth-config', { polymorphic: true, inverse: 'backend', async: false }),
|
|
path: attr('string'),
|
|
accessor: attr('string'),
|
|
name: attr('string'),
|
|
type: attr('string'),
|
|
// namespaces introduced types with a `ns_` prefix for built-in engines
|
|
// so we need to strip that to normalize the type
|
|
methodType: computed('type', function () {
|
|
return this.type.replace(/^ns_/, '');
|
|
}),
|
|
description: attr('string', {
|
|
editType: 'textarea',
|
|
}),
|
|
local: attr('boolean', {
|
|
helpText:
|
|
'When Replication is enabled, a local mount will not be replicated across clusters. This can only be specified at mount time.',
|
|
}),
|
|
sealWrap: attr('boolean', {
|
|
helpText:
|
|
'When enabled - if a seal supporting seal wrapping is specified in the configuration, all critical security parameters (CSPs) in this backend will be seal wrapped. (For K/V mounts, all values will be seal wrapped.) This can only be specified at mount time.',
|
|
}),
|
|
|
|
// used when the `auth` prefix is important,
|
|
// currently only when setting perf mount filtering
|
|
apiPath: computed('path', function () {
|
|
return `auth/${this.path}`;
|
|
}),
|
|
localDisplay: computed('local', function () {
|
|
return this.local ? 'local' : 'replicated';
|
|
}),
|
|
|
|
tuneAttrs: computed('path', function () {
|
|
let { methodType } = this;
|
|
let tuneAttrs;
|
|
// token_type should not be tuneable for the token auth method
|
|
if (methodType === 'token') {
|
|
tuneAttrs = [
|
|
'description',
|
|
'config.{listingVisibility,defaultLeaseTtl,maxLeaseTtl,auditNonHmacRequestKeys,auditNonHmacResponseKeys,passthroughRequestHeaders}',
|
|
];
|
|
} else {
|
|
tuneAttrs = [
|
|
'description',
|
|
'config.{listingVisibility,defaultLeaseTtl,maxLeaseTtl,tokenType,auditNonHmacRequestKeys,auditNonHmacResponseKeys,passthroughRequestHeaders}',
|
|
];
|
|
}
|
|
return expandAttributeMeta(this, tuneAttrs);
|
|
}),
|
|
|
|
formFields: computed(function () {
|
|
return [
|
|
'type',
|
|
'path',
|
|
'description',
|
|
'accessor',
|
|
'local',
|
|
'sealWrap',
|
|
'config.{listingVisibility,defaultLeaseTtl,maxLeaseTtl,tokenType,auditNonHmacRequestKeys,auditNonHmacResponseKeys,passthroughRequestHeaders}',
|
|
];
|
|
}),
|
|
|
|
formFieldGroups: computed(function () {
|
|
return [
|
|
{ default: ['path'] },
|
|
{
|
|
'Method Options': [
|
|
'description',
|
|
'config.listingVisibility',
|
|
'local',
|
|
'sealWrap',
|
|
'config.{defaultLeaseTtl,maxLeaseTtl,tokenType,auditNonHmacRequestKeys,auditNonHmacResponseKeys,passthroughRequestHeaders}',
|
|
],
|
|
},
|
|
];
|
|
}),
|
|
|
|
attrs: computed('formFields', function () {
|
|
return expandAttributeMeta(this, this.formFields);
|
|
}),
|
|
|
|
fieldGroups: computed('formFieldGroups', function () {
|
|
return fieldToAttrs(this, this.formFieldGroups);
|
|
}),
|
|
canDisable: alias('deletePath.canDelete'),
|
|
canEdit: alias('configPath.canUpdate'),
|
|
|
|
tune(data) {
|
|
return this.store.adapterFor('auth-method').tune(this.path, data);
|
|
},
|
|
});
|
|
|
|
export default attachCapabilities(ModelExport, {
|
|
deletePath: apiPath`sys/auth/${'id'}`,
|
|
configPath: function (context) {
|
|
if (context.type === 'aws') {
|
|
return apiPath`auth/${'id'}/config/client`.call(this, context);
|
|
} else {
|
|
return apiPath`auth/${'id'}/config`.call(this, context);
|
|
}
|
|
},
|
|
});
|