open-vault/ui/app/models/transit-key.js

import { alias } from '@ember/object/computed';
import { set, get, computed } from '@ember/object';
import DS from 'ember-data';
import clamp from 'vault/utils/clamp';
import lazyCapabilities, { apiPath } from 'vault/macros/lazy-capabilities';

const { attr } = DS;

const ACTION_VALUES = {
  encrypt: 'supportsEncryption',
  decrypt: 'supportsDecryption',
  datakey: 'supportsEncryption',
  rewrap: 'supportsEncryption',
  sign: 'supportsSigning',
  hmac: true,
  verify: true,
  export: 'exportable',
};

export default DS.Model.extend({
  type: attr('string', {
    defaultValue: 'aes256-gcm96',
  }),
  name: attr('string'),
  deletionAllowed: attr('boolean'),
  derived: attr('boolean'),
  exportable: attr('boolean'),
  minDecryptionVersion: attr('number', {
    defaultValue: 1,
  }),
  minEncryptionVersion: attr('number', {
    defaultValue: 0,
  }),
  latestVersion: attr('number'),
  keys: attr('object'),
  convergentEncryption: attr('boolean'),
  convergentEncryptionVersion: attr('number'),

  supportsSigning: attr('boolean'),
  supportsEncryption: attr('boolean'),
  supportsDecryption: attr('boolean'),
  supportsDerivation: attr('boolean'),

  setConvergentEncryption(val) {
    if (val === true) {
      set(this, 'derived', val);
    }
    set(this, 'convergentEncryption', val);
  },

  setDerived(val) {
    if (val === false) {
      set(this, 'convergentEncryption', val);
    }
    set(this, 'derived', val);
  },

  supportedActions: computed('type', function() {
    return Object.keys(ACTION_VALUES).filter(name => {
      const isSupported = ACTION_VALUES[name];
      if (typeof isSupported === 'boolean') {
        return isSupported;
      }
      return get(this, isSupported);
    });
  }),

  canDelete: computed('deletionAllowed', 'lastLoadTS', function() {
    const deleteAttrChanged = Boolean(this.changedAttributes().deletionAllowed);
    return get(this, 'deletionAllowed') && deleteAttrChanged === false;
  }),

  keyVersions: computed('validKeyVersions', function() {
    let maxVersion = Math.max(...get(this, 'validKeyVersions'));
    let versions = [];
    while (maxVersion > 0) {
      versions.unshift(maxVersion);
      maxVersion--;
    }
    return versions;
  }),

  encryptionKeyVersions: computed('keyVerisons', 'minDecryptionVersion', 'latestVersion', function() {
    const { keyVersions, minDecryptionVersion } = this.getProperties('keyVersions', 'minDecryptionVersion');

    return keyVersions
      .filter(version => {
        return version >= minDecryptionVersion;
      })
      .reverse();
  }),

  keysForEncryption: computed('minEncryptionVersion', 'latestVersion', function() {
    let { minEncryptionVersion, latestVersion } = this.getProperties('minEncryptionVersion', 'latestVersion');
    let minVersion = clamp(minEncryptionVersion - 1, 0, latestVersion);
    let versions = [];
    while (latestVersion > minVersion) {
      versions.push(latestVersion);
      latestVersion--;
    }
    return versions;
  }),

  validKeyVersions: computed('keys', function() {
    return Object.keys(get(this, 'keys'));
  }),

  exportKeyTypes: computed('exportable', 'type', function() {
    let types = ['hmac'];
    if (this.get('supportsSigning')) {
      types.unshift('signing');
    }
    if (this.get('supportsEncryption')) {
      types.unshift('encryption');
    }
    return types;
  }),

  backend: attr('string', {
    readOnly: true,
  }),

  rotatePath: lazyCapabilities(apiPath`${'backend'}/keys/${'id'}/rotate`, 'backend', 'id'),
  canRotate: alias('rotatePath.canUpdate'),
  secretPath: lazyCapabilities(apiPath`${'backend'}/keys/${'id'}`, 'backend', 'id'),
  canRead: alias('secretPath.canUpdate'),
  canEdit: alias('secretPath.canUpdate'),
});
Ember update (#5386) Ember update - update ember-cli, ember-data, and ember to 3.4 series 2018-09-25 16:28:26 +00:00			`import { alias } from '@ember/object/computed';`
			`import { set, get, computed } from '@ember/object';`
Moving UI assets to OSS 2018-04-03 14:16:57 +00:00			`import DS from 'ember-data';`
			`import clamp from 'vault/utils/clamp';`
UI - code cleanup (#4699) * use lazyCapabilities macro in models * use expandAttributeMeta and fieldToAttrs everywhere * add angle bracket component polyfill * use PageHeader component throughout 2018-06-12 21:06:37 +00:00			`import lazyCapabilities, { apiPath } from 'vault/macros/lazy-capabilities';`
Moving UI assets to OSS 2018-04-03 14:16:57 +00:00
			`const { attr } = DS;`

			`const ACTION_VALUES = {`
			`encrypt: 'supportsEncryption',`
			`decrypt: 'supportsDecryption',`
			`datakey: 'supportsEncryption',`
			`rewrap: 'supportsEncryption',`
			`sign: 'supportsSigning',`
			`hmac: true,`
			`verify: true,`
			`export: 'exportable',`
			`};`

			`export default DS.Model.extend({`
			`type: attr('string', {`
			`defaultValue: 'aes256-gcm96',`
			`}),`
			`name: attr('string'),`
			`deletionAllowed: attr('boolean'),`
			`derived: attr('boolean'),`
			`exportable: attr('boolean'),`
			`minDecryptionVersion: attr('number', {`
			`defaultValue: 1,`
			`}),`
			`minEncryptionVersion: attr('number', {`
			`defaultValue: 0,`
			`}),`
			`latestVersion: attr('number'),`
			`keys: attr('object'),`
			`convergentEncryption: attr('boolean'),`
			`convergentEncryptionVersion: attr('number'),`

			`supportsSigning: attr('boolean'),`
			`supportsEncryption: attr('boolean'),`
			`supportsDecryption: attr('boolean'),`
			`supportsDerivation: attr('boolean'),`

			`setConvergentEncryption(val) {`
			`if (val === true) {`
			`set(this, 'derived', val);`
			`}`
			`set(this, 'convergentEncryption', val);`
			`},`

			`setDerived(val) {`
			`if (val === false) {`
			`set(this, 'convergentEncryption', val);`
			`}`
			`set(this, 'derived', val);`
			`},`

			`supportedActions: computed('type', function() {`
			`return Object.keys(ACTION_VALUES).filter(name => {`
			`const isSupported = ACTION_VALUES[name];`
			`if (typeof isSupported === 'boolean') {`
			`return isSupported;`
			`}`
			`return get(this, isSupported);`
			`});`
			`}),`

			`canDelete: computed('deletionAllowed', 'lastLoadTS', function() {`
			`const deleteAttrChanged = Boolean(this.changedAttributes().deletionAllowed);`
			`return get(this, 'deletionAllowed') && deleteAttrChanged === false;`
			`}),`

			`keyVersions: computed('validKeyVersions', function() {`
			`let maxVersion = Math.max(...get(this, 'validKeyVersions'));`
			`let versions = [];`
			`while (maxVersion > 0) {`
			`versions.unshift(maxVersion);`
			`maxVersion--;`
			`}`
			`return versions;`
			`}),`

			`encryptionKeyVersions: computed('keyVerisons', 'minDecryptionVersion', 'latestVersion', function() {`
			`const { keyVersions, minDecryptionVersion } = this.getProperties('keyVersions', 'minDecryptionVersion');`

			`return keyVersions`
			`.filter(version => {`
			`return version >= minDecryptionVersion;`
			`})`
			`.reverse();`
			`}),`

			`keysForEncryption: computed('minEncryptionVersion', 'latestVersion', function() {`
			`let { minEncryptionVersion, latestVersion } = this.getProperties('minEncryptionVersion', 'latestVersion');`
			`let minVersion = clamp(minEncryptionVersion - 1, 0, latestVersion);`
			`let versions = [];`
			`while (latestVersion > minVersion) {`
			`versions.push(latestVersion);`
			`latestVersion--;`
			`}`
			`return versions;`
			`}),`

			`validKeyVersions: computed('keys', function() {`
			`return Object.keys(get(this, 'keys'));`
			`}),`

			`exportKeyTypes: computed('exportable', 'type', function() {`
			`let types = ['hmac'];`
			`if (this.get('supportsSigning')) {`
			`types.unshift('signing');`
			`}`
			`if (this.get('supportsEncryption')) {`
			`types.unshift('encryption');`
			`}`
			`return types;`
			`}),`

			`backend: attr('string', {`
			`readOnly: true,`
			`}),`

UI - code cleanup (#4699) * use lazyCapabilities macro in models * use expandAttributeMeta and fieldToAttrs everywhere * add angle bracket component polyfill * use PageHeader component throughout 2018-06-12 21:06:37 +00:00			rotatePath: lazyCapabilities(apiPath`${'backend'}/keys/${'id'}/rotate`, 'backend', 'id'),
Ember update (#5386) Ember update - update ember-cli, ember-data, and ember to 3.4 series 2018-09-25 16:28:26 +00:00			`canRotate: alias('rotatePath.canUpdate'),`
Fix transit-key context menu on the transit-key list page (#8348) * thread backend through requests so that the transit-key model has it on list responses * add tests for transit-key menu and serializer handling of backend * remove changes to preview-head Co-authored-by: Noelle Daley <noelledaley@users.noreply.github.com> 2020-02-13 20:03:28 +00:00			secretPath: lazyCapabilities(apiPath`${'backend'}/keys/${'id'}`, 'backend', 'id'),
			`canRead: alias('secretPath.canUpdate'),`
			`canEdit: alias('secretPath.canUpdate'),`
Moving UI assets to OSS 2018-04-03 14:16:57 +00:00			`});`