21af204683
* add namespace sidebar item * depend on ember-inflector directly * list-view and list-item components * fill out components and render empty namespaces page * list namespaces in access * add menu contextual component to list item * popup contextual component * full crud for namespaces * add namespaces service and picker component * split application and vault.cluster templates and controllers, add namespace query param, add namespace-picker to vault.namespace template * remove usage of href-to * remove ember-href-to from deps * add ember-responsive * start styling the picker and link to appropriate namespaces, use ember-responsive to render picker in different places based on the breakpoint * get query param working and save ns to authdata when authenticating, feed through ns in application adapter * move to observer on the controller for setting state on the service * set state in the beforeModel hook and clear the ember data model cache * nav to secrets on change and make error handling more resilient utilizing the method that atlas does to eagerly update URLs * add a list of sys endpoints in a helper * hide header elements if not in the root namespace * debounce namespace input on auth, fix 404 for auth method fetch, move auth method fetch to a task on the auth-form component and refretch on namespace change * fix display of supported engines and exclusion of sys and identity engines * don't fetch replication status if you're in a non-root namespace * hide seal sub-menu if not in the root namespace * don't autocomplete auth form inputs * always send some requests to the root namespace * use methodType and engineType instead of type in case there it is ns_ prefixed * use sys/internal/ui/namespaces to fetch the list in the dropdown * don't use model for namespace picker and always make the request to the token namespace * fix header handling for fetch calls * use namespace-reminder component on creation and edit forms throughout the application * add namespace-reminder to the console * add flat * add deepmerge for creating the tree in the menu * delayed rendering for animation timing * design and code feedback on the first round * white text in the namespace picker * fix namespace picker issues with root keys * separate path-to-tree * add tests for path-to-tree util * hide picker if you're in the root ns and you can't access other namespaces * show error message if you enter invalid characters for namespace path * return a different model if we dont have the namespaces feature and show upgrade page * if a token has a namespace_path, use that as the root user namespace and transition them there on login * use token namespace for user, but use specified namespace to log in * always renew tokens in the token namespace * fix edition-badge test
122 lines
3.5 KiB
JavaScript
122 lines
3.5 KiB
JavaScript
import Ember from 'ember';
|
|
import DS from 'ember-data';
|
|
import { fragment } from 'ember-data-model-fragments/attributes';
|
|
import { queryRecord } from 'ember-computed-query';
|
|
import { methods } from 'vault/helpers/mountable-auth-methods';
|
|
import fieldToAttrs, { expandAttributeMeta } from 'vault/utils/field-to-attrs';
|
|
import { memberAction } from 'ember-api-actions';
|
|
import lazyCapabilities, { apiPath } from 'vault/macros/lazy-capabilities';
|
|
|
|
const { attr, hasMany } = DS;
|
|
const { computed } = Ember;
|
|
|
|
const METHODS = methods();
|
|
|
|
const configPath = function configPath(strings, key) {
|
|
return function(...values) {
|
|
return `${strings[0]}${values[key]}${strings[1]}`;
|
|
};
|
|
};
|
|
export default DS.Model.extend({
|
|
authConfigs: hasMany('auth-config', { polymorphic: true, inverse: 'backend', async: false }),
|
|
path: attr('string', {
|
|
defaultValue: METHODS[0].value,
|
|
}),
|
|
accessor: attr('string'),
|
|
name: attr('string'),
|
|
type: attr('string', {
|
|
defaultValue: METHODS[0].value,
|
|
possibleValues: METHODS,
|
|
}),
|
|
// namespaces introduced types with a `ns_` prefix for built-in engines
|
|
// so we need to strip that to normalize the type
|
|
methodType: computed('type', function() {
|
|
return this.get('type').replace(/^ns_/, '');
|
|
}),
|
|
description: attr('string', {
|
|
editType: 'textarea',
|
|
}),
|
|
config: fragment('mount-config', { defaultValue: {} }),
|
|
local: attr('boolean'),
|
|
sealWrap: attr('boolean'),
|
|
|
|
// used when the `auth` prefix is important,
|
|
// currently only when setting perf mount filtering
|
|
apiPath: computed('path', function() {
|
|
return `auth/${this.get('path')}`;
|
|
}),
|
|
localDisplay: computed('local', function() {
|
|
return this.get('local') ? 'local' : 'replicated';
|
|
}),
|
|
|
|
tuneAttrs: computed(function() {
|
|
return expandAttributeMeta(this, [
|
|
'description',
|
|
'config.{listingVisibility,defaultLeaseTtl,maxLeaseTtl,auditNonHmacRequestKeys,auditNonHmacResponseKeys,passthroughRequestHeaders}',
|
|
]);
|
|
}),
|
|
|
|
//sys/mounts/auth/[auth-path]/tune.
|
|
tune: memberAction({
|
|
path: 'tune',
|
|
type: 'post',
|
|
urlType: 'updateRecord',
|
|
}),
|
|
|
|
formFields: [
|
|
'type',
|
|
'path',
|
|
'description',
|
|
'accessor',
|
|
'local',
|
|
'sealWrap',
|
|
'config.{listingVisibility,defaultLeaseTtl,maxLeaseTtl,auditNonHmacRequestKeys,auditNonHmacResponseKeys,passthroughRequestHeaders}',
|
|
],
|
|
|
|
formFieldGroups: [
|
|
{ default: ['type', 'path'] },
|
|
{
|
|
'Method Options': [
|
|
'description',
|
|
'config.listingVisibility',
|
|
'local',
|
|
'sealWrap',
|
|
'config.{defaultLeaseTtl,maxLeaseTtl,auditNonHmacRequestKeys,auditNonHmacResponseKeys,passthroughRequestHeaders}',
|
|
],
|
|
},
|
|
],
|
|
|
|
attrs: computed('formFields', function() {
|
|
return expandAttributeMeta(this, this.get('formFields'));
|
|
}),
|
|
|
|
fieldGroups: computed('formFieldGroups', function() {
|
|
return fieldToAttrs(this, this.get('formFieldGroups'));
|
|
}),
|
|
|
|
configPathTmpl: computed('type', function() {
|
|
const type = this.get('type');
|
|
if (type === 'aws') {
|
|
return configPath`auth/${0}/config/client`;
|
|
} else {
|
|
return configPath`auth/${0}/config`;
|
|
}
|
|
}),
|
|
|
|
configPath: queryRecord(
|
|
'capabilities',
|
|
context => {
|
|
const { id, configPathTmpl } = context.getProperties('id', 'configPathTmpl');
|
|
return {
|
|
id: configPathTmpl(id),
|
|
};
|
|
},
|
|
'id',
|
|
'configPathTmpl'
|
|
),
|
|
|
|
deletePath: lazyCapabilities(apiPath`sys/auth/${'id'}`, 'id'),
|
|
canDisable: computed.alias('deletePath.canDelete'),
|
|
canEdit: computed.alias('configPath.canUpdate'),
|
|
});
|