21af204683
* add namespace sidebar item * depend on ember-inflector directly * list-view and list-item components * fill out components and render empty namespaces page * list namespaces in access * add menu contextual component to list item * popup contextual component * full crud for namespaces * add namespaces service and picker component * split application and vault.cluster templates and controllers, add namespace query param, add namespace-picker to vault.namespace template * remove usage of href-to * remove ember-href-to from deps * add ember-responsive * start styling the picker and link to appropriate namespaces, use ember-responsive to render picker in different places based on the breakpoint * get query param working and save ns to authdata when authenticating, feed through ns in application adapter * move to observer on the controller for setting state on the service * set state in the beforeModel hook and clear the ember data model cache * nav to secrets on change and make error handling more resilient utilizing the method that atlas does to eagerly update URLs * add a list of sys endpoints in a helper * hide header elements if not in the root namespace * debounce namespace input on auth, fix 404 for auth method fetch, move auth method fetch to a task on the auth-form component and refretch on namespace change * fix display of supported engines and exclusion of sys and identity engines * don't fetch replication status if you're in a non-root namespace * hide seal sub-menu if not in the root namespace * don't autocomplete auth form inputs * always send some requests to the root namespace * use methodType and engineType instead of type in case there it is ns_ prefixed * use sys/internal/ui/namespaces to fetch the list in the dropdown * don't use model for namespace picker and always make the request to the token namespace * fix header handling for fetch calls * use namespace-reminder component on creation and edit forms throughout the application * add namespace-reminder to the console * add flat * add deepmerge for creating the tree in the menu * delayed rendering for animation timing * design and code feedback on the first round * white text in the namespace picker * fix namespace picker issues with root keys * separate path-to-tree * add tests for path-to-tree util * hide picker if you're in the root ns and you can't access other namespaces * show error message if you enter invalid characters for namespace path * return a different model if we dont have the namespaces feature and show upgrade page * if a token has a namespace_path, use that as the root user namespace and transition them there on login * use token namespace for user, but use specified namespace to log in * always renew tokens in the token namespace * fix edition-badge test
178 lines
6.7 KiB
Handlebars
178 lines
6.7 KiB
Handlebars
{{#if replaceCA}}
|
|
{{message-error model=model}}
|
|
<h2 data-test-title class="title is-3">
|
|
{{#if needsConfig}}
|
|
Configure CA Certificate
|
|
{{else}}
|
|
Replace CA Certificate
|
|
{{/if}}
|
|
</h2>
|
|
{{#if (or model.certificate model.csr)}}
|
|
{{#each model.attrs as |attr|}}
|
|
{{info-table-row data-test-table-row label=(capitalize (or attr.options.label (humanize (dasherize attr.name)))) value=(get model attr.name)}}
|
|
{{/each}}
|
|
<div class="field is-grouped box is-fullwidth is-bottomless">
|
|
<div class="control">
|
|
{{#copy-button
|
|
clipboardText=(or model.certificate model.csr)
|
|
class="button"
|
|
buttonType="button"
|
|
success=(action (set-flash-message (concat (if model.certificate "Certificate" "CSR") " copied!")))
|
|
}}
|
|
Copy {{if model.certificate "Certificate" "CSR"}}
|
|
{{/copy-button}}
|
|
</div>
|
|
<div class="control">
|
|
<button data-test-back-button {{action "refresh"}} type="button" class="button">
|
|
Back
|
|
</button>
|
|
</div>
|
|
</div>
|
|
{{else}}
|
|
<form {{action "saveCA" on="submit"}} data-test-generate-root-cert="true">
|
|
<NamespaceReminder @mode="save" @noun="PKI change" />
|
|
{{#if model.uploadPemBundle}}
|
|
{{#message-in-page type="warning" data-test-warning=true}}
|
|
<em>If you have already set a certificate and key, they will be overridden with the successful saving of a new <code>PEM bundle</code>.</em>
|
|
{{/message-in-page}}
|
|
{{/if}}
|
|
{{partial "partials/form-field-groups-loop"}}
|
|
<div class="field is-grouped is-grouped-split box is-fullwidth is-bottomless">
|
|
<div class="field is-grouped">
|
|
<div class="control">
|
|
<button data-test-submit type="submit" class="button is-primary {{if loading 'is-loading'}}" disabled={{loading}}>
|
|
Save
|
|
</button>
|
|
</div>
|
|
<div class="control">
|
|
<button data-test-back-button {{action "toggleReplaceCA"}} type="button" class="button">
|
|
Cancel
|
|
</button>
|
|
</div>
|
|
</div>
|
|
<div class="control">
|
|
{{#if model.canDeleteRoot}}
|
|
{{#confirm-action
|
|
buttonClasses="button"
|
|
onConfirmAction=(action "deleteCA")
|
|
confirmMessage="Are you sure you want to delete the root CA key?"
|
|
cancelButtonText="Cancel"
|
|
}}
|
|
Delete
|
|
{{/confirm-action}}
|
|
{{/if}}
|
|
</div>
|
|
</div>
|
|
</form>
|
|
{{/if}}
|
|
{{else if signIntermediate}}
|
|
{{#if (or model.certificate)}}
|
|
{{#message-in-page data-test-warning type="warning"}}
|
|
If using this for an Intermediate CA in Vault, copy the certificate below and write it to the PKI mount being used as an intermediate using the `Set signed Intermediate` endpoint.
|
|
{{/message-in-page}}
|
|
{{#each model.attrs as |attr|}}
|
|
{{info-table-row data-test-table-row label=(capitalize (or attr.options.label (humanize (dasherize attr.name)))) value=(get model attr.name)}}
|
|
{{/each}}
|
|
<div class="field is-grouped box is-fullwidth is-bottomless">
|
|
<div class="control">
|
|
{{#copy-button
|
|
clipboardText=model.certificate
|
|
class="button"
|
|
buttonType="button"
|
|
success=(action (set-flash-message "Certificate copied!"))
|
|
}}
|
|
Copy Certificate
|
|
{{/copy-button}}
|
|
</div>
|
|
<div class="control">
|
|
<button data-test-back-button {{action "refresh"}} type="button" class="button">
|
|
Back
|
|
</button>
|
|
</div>
|
|
</div>
|
|
{{else}}
|
|
<h2 data-test-title class="title is-3">Sign intermediate</h2>
|
|
<NamespaceReminder @mode="save" @noun="PKI change" />
|
|
{{message-error model=model}}
|
|
<form {{action "saveCA" on="submit"}} data-test-sign-intermediate-form="true">
|
|
{{partial "partials/form-field-groups-loop"}}
|
|
<div class="field is-grouped box is-fullwidth is-bottomless">
|
|
<div class="control">
|
|
<button data-test-submit type="submit" class="button is-primary {{if loading 'is-loading'}}" disabled={{loading}}>
|
|
Save
|
|
</button>
|
|
</div>
|
|
<div class="control">
|
|
<button {{action "toggleVal" "signIntermediate" false}} type="button" class="button">
|
|
Cancel
|
|
</button>
|
|
</div>
|
|
</div>
|
|
</form>
|
|
{{/if}}
|
|
{{else if setSignedIntermediate}}
|
|
<h2 data-test-title class="title is-3">Set signed intermediate</h2>
|
|
<NamespaceReminder @mode="save" @noun="PKI change" />
|
|
{{message-error model=model}}
|
|
<p class="has-text-grey-dark">
|
|
Submit a signed CA certificate corresponding to a generated private key.
|
|
</p>
|
|
<form {{action "saveCA" "setSignedIntermediate" on="submit"}} data-test-set-signed-intermediate-form="true">
|
|
<div class="field">
|
|
<label for="certificate" class="is-label">
|
|
Signed Intermediate Certificate
|
|
</label>
|
|
<div class="control">
|
|
{{textarea data-test-signed-intermediate class="textarea" id="certificate" name="certificate" value=model.certificate}}
|
|
</div>
|
|
</div>
|
|
<div class="field is-grouped box is-fullwidth is-bottomless">
|
|
<div class="control">
|
|
<button data-test-submit type="submit" class="button is-primary {{if loading 'is-loading'}}" disabled={{loading}}>
|
|
Save
|
|
</button>
|
|
</div>
|
|
<div class="control">
|
|
<button data-test-back-button {{action "toggleVal" "setSignedIntermediate" false}} type="button" class="button">
|
|
Cancel
|
|
</button>
|
|
</div>
|
|
</div>
|
|
</form>
|
|
{{else}}
|
|
<p class="has-text-grey-dark">
|
|
This is the default CA certificate used in Vault. It is not used for self-signed certificates or if you have a signed intermediate CA certificate with a generated key.
|
|
</p>
|
|
{{#each downloadHrefs as |dl|}}
|
|
<div class="box is-shadowless is-marginless is-fullwidth has-slim-padding">
|
|
<a data-test-ca-download-link href={{dl.url}} download={{dl.name}}>
|
|
{{dl.display}}
|
|
</a>
|
|
</div>
|
|
{{/each}}
|
|
|
|
<div class="field is-grouped box is-fullwidth is-shadowless">
|
|
<div class="control">
|
|
<button data-test-go-replace-ca type="button" {{action "toggleReplaceCA"}} class="button">
|
|
{{#if needsConfig}}
|
|
Configure CA
|
|
{{else}}
|
|
Replace CA
|
|
{{/if}}
|
|
</button>
|
|
</div>
|
|
{{#if config.pem}}
|
|
<div class="control">
|
|
<button data-test-go-sign-intermediate type="button" {{action "toggleVal" "signIntermediate"}} class="button">
|
|
Sign intermediate
|
|
</button>
|
|
</div>
|
|
{{/if}}
|
|
<div class="control">
|
|
<button data-test-go-set-signed-intermediate type="button" {{action "toggleVal" "setSignedIntermediate"}} class="button">
|
|
Set signed intermediate
|
|
</button>
|
|
</div>
|
|
</div>
|
|
{{/if}}
|