backport of commit 3f9b6075aaa1ca3e4c4065b0a460c3bd80b1afd9 (#23127)

Backport of UI: add SSH role attribute allowed_domains_template Co-authored-by: Chelsea Shaw <82459713+hashishaw@users.noreply.github.com>
2023-09-15 17:56:40 -04:00 · 2023-09-15 17:56:40 -04:00 · 0a443e1d34
parent dfc1385992
commit 0a443e1d34
2 changed files with 9 additions and 1 deletions
--- a/changelog/23119.txt
+++ b/changelog/23119.txt
@ -0,0 +1,3 @@
+```release-note:improvement
+ui: Added allowed_domains_template field for CA type role in SSH engine
+```
--- a/ui/app/models/role-ssh.js
+++ b/ui/app/models/role-ssh.js
@ -31,6 +31,7 @@ const CA_FIELDS = [
  'allowedUsers',
  'allowedUsersTemplate',
  'allowedDomains',
+  'allowedDomainsTemplate',
  'ttl',
  'maxTtl',
  'allowedCriticalOptions',
@ -76,12 +77,16 @@ export default Model.extend({
  }),
  allowedUsersTemplate: attr('boolean', {
    helpText:
-      'Specifies that Allowed users can be templated e.g. {{identity.entity.aliases.mount_accessor_xyz.name}}',
+      'Specifies that Allowed Users can be templated e.g. {{identity.entity.aliases.mount_accessor_xyz.name}}',
  }),
  allowedDomains: attr('string', {
    helpText:
      'List of domains for which a client can request a certificate (e.g. `example.com`, or `*` to allow all)',
  }),
+  allowedDomainsTemplate: attr('boolean', {
+    helpText:
+      'Specifies that Allowed Domains can be set using identity template policies. Non-templated domains are also permitted.',
+  }),
  cidrList: attr('string', {
    helpText: 'List of CIDR blocks for which this role is applicable',
  }),