open-vault/ui/tests/helpers/policy-generator/pki.js

import { singularize } from 'ember-inflector';

export const adminPolicy = (mountPath) => {
  return `
    path "${mountPath}/*" {
      capabilities = ["create", "read", "update", "delete", "list"]
    },
  `;
};

// keys require singularized paths for GET
export const readerPolicy = (mountPath, resource) => {
  return `
    path "${mountPath}/${resource}" {
      capabilities = ["read", "list"]
    },
    path "${mountPath}/${resource}/*" {
      capabilities = ["read", "list"]
    },
    path "${mountPath}/${singularize(resource)}" {
      capabilities = ["read", "list"]
    },
    path "${mountPath}/${singularize(resource)}/*" {
      capabilities = ["read", "list"]
    },
  `;
};
export const updatePolicy = (mountPath, resource) => {
  return `
    path "${mountPath}/${resource}" {
      capabilities = ["read", "list"]
    },
    path "${mountPath}/${resource}/*" {
      capabilities = ["read", "update"]
    },
    path "${mountPath}/${singularize(resource)}/*" {
      capabilities = ["read", "update"]
    },    
    path "${mountPath}/issue/*" {
      capabilities = ["update"]
    },
    path "${mountPath}/generate/*" {
      capabilities = ["update"]
    },
    path "${mountPath}/import" {
      capabilities = ["update"]
    },
    path "${mountPath}/sign/*" {
      capabilities = ["update"]
    },
  `;
};
UI/pki key workflow tests (#18496) * wip tests * fix links * Revert "wip tests" This reverts commit aed9bb9b8fffb1b4d52d9c27644033ff3d983fff. * wip tests * add policy generator * add workflow tests for key * change apostrophe -___- * fix workflow tests * add update to key form tests * fix capability check for read * finish tests * fix flash messages; * rename policy generator file, update tests 2023-01-04 02:00:29 +00:00			`import { singularize } from 'ember-inflector';`

			`export const adminPolicy = (mountPath) => {`
			return `
			`path "${mountPath}/*" {`
			`capabilities = ["create", "read", "update", "delete", "list"]`
			`},`
			`;
			`};`

			`// keys require singularized paths for GET`
			`export const readerPolicy = (mountPath, resource) => {`
			return `
			`path "${mountPath}/${resource}" {`
			`capabilities = ["read", "list"]`
			`},`
			`path "${mountPath}/${resource}/*" {`
			`capabilities = ["read", "list"]`
			`},`
			`path "${mountPath}/${singularize(resource)}" {`
			`capabilities = ["read", "list"]`
			`},`
			`path "${mountPath}/${singularize(resource)}/*" {`
			`capabilities = ["read", "list"]`
			`},`
			`;
			`};`
			`export const updatePolicy = (mountPath, resource) => {`
			return `
			`path "${mountPath}/${resource}" {`
			`capabilities = ["read", "list"]`
			`},`
			`path "${mountPath}/${resource}/*" {`
			`capabilities = ["read", "update"]`
			`},`
			`path "${mountPath}/${singularize(resource)}/*" {`
			`capabilities = ["read", "update"]`
			`},`
			`path "${mountPath}/issue/*" {`
			`capabilities = ["update"]`
			`},`
			`path "${mountPath}/generate/*" {`
			`capabilities = ["update"]`
			`},`
			`path "${mountPath}/import" {`
			`capabilities = ["update"]`
			`},`
			`path "${mountPath}/sign/*" {`
			`capabilities = ["update"]`
			`},`
			`;
			`};`