rancher
/
dashboard
mirror of https://github.com/rancher/dashboard.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
dashboard/pages/auth/setup.vue

531 lines
15 KiB
Vue
Raw Blame History

<script>
import { randomStr } from '@/utils/string';
import LabeledInput from '@/components/form/LabeledInput';
import CopyCode from '@/components/CopyCode';
import CopyToClipboard from '@/components/CopyToClipboard';
import AsyncButton from '@/components/AsyncButton';
import { SETUP, STEP, _DELETE } from '@/config/query-params';
import { RANCHER } from '@/config/types';
import { open, popupWindowOptions } from '@/utils/window';
import { findBy, filterBy, addObject, removeObject } from '@/utils/array';
export default {
layout: 'plain',
components: {
AsyncButton, CopyCode, LabeledInput, CopyToClipboard,
},
computed: {
passwordSubmitDisabled() {
if ( this.useRandom ) {
return false;
}
if ( !this.password || this.password !== this.confirm ) {
return true;
}
if ( !this.current ) {
return true;
}
return false;
},
githubSubmitDisabled() {
if ( !this.clientId || !this.clientSecret ) {
return true;
}
return false;
},
me() {
const out = findBy(this.prinicipals, 'me', true);
return out;
},
orgs() {
const out = filterBy(this.principals, 'principalType', 'org');
return out;
}
},
async asyncData({ route, req, store }) {
const current = route.query[SETUP] || '';
const password = randomStr();
const telemetrySetting = await store.dispatch('rancher/find', {
type: RANCHER.SETTING,
id: 'telemetry-opt',
opt: { url: '/v3/settings/telemetry-opt' }
});
let githubConfig = await store.dispatch('rancher/find', {
type: RANCHER.AUTH_CONFIG,
id: 'github',
opt: { url: '/v3/authConfigs/github' }
});
githubConfig = await store.dispatch('rancher/clone', { resource: githubConfig });
const principals = await store.dispatch('rancher/findAll', {
type: RANCHER.PRINCIPAL,
opt: { url: '/v3/principals' }
});
let serverUrl;
if ( process.server ) {
serverUrl = req.headers.host;
} else {
serverUrl = window.location.origin;
}
const telemetry = telemetrySetting.value !== 'out';
const kind = githubConfig.hostname && githubConfig.hostname !== 'github.com' ? 'enterprise' : 'public' ;
const clientId = githubConfig.clientId;
/*
const mapping = githubConfig.hostnameToClientId;
if ( mapping && mapping[origin] ) {
}
*/
return {
step: parseInt(route.query.step, 10) || 1,
useRandom: true,
haveCurrent: !!current,
username: 'admin',
current,
password,
confirm: '',
serverUrl,
telemetry,
telemetrySetting,
githubConfig,
kind,
clientId,
clientSecret: githubConfig.clientSecret || '',
hostname: githubConfig.hostname || 'github.com',
tls: kind === 'public' || githubConfig.tls,
githubError: null,
principals
};
},
methods: {
async finishPassword(buttonCb) {
try {
this.telemetrySetting.value = this.telemetry ? 'in' : 'out';
await this.telemetrySetting.save();
await this.$store.dispatch('rancher/request', {
url: '/v3/users?action=changepassword',
method: 'post',
headers: { 'Content-Type': 'application/json' },
data: {
currentPassword: this.current,
newPassword: this.password
},
});
buttonCb(true);
this.step = 2;
this.$router.applyQuery({
[SETUP]: _DELETE,
[STEP]: this.step,
});
} catch (err) {
buttonCb(false);
}
},
manual() {
this.useRandom = false;
this.password = '';
this.$nextTick(() => {
this.$refs.password.focus();
this.$refs.password.select();
});
},
async testGithub(buttonCb) {
try {
this.githubError = null;
const c = this.githubConfig;
c.clientId = this.clientId;
c.clientSecret = this.clientSecret;
c.enabled = true;
c.allowedPrincipalIds = c.allowedPrincipalIds || [];
if ( this.kind === 'public' ) {
c.hostname = 'github.com';
c.tls = true;
c.accessMode = 'restricted';
} else {
c.accessMode = c.accessMode || 'unrestricted';
c.tls = this.tls;
}
const waitForTest = new Promise(async(resolve, reject) => {
window.onAuthTest = (code) => {
resolve(code);
};
window.authTestConfig = c;
const res = await c.doAction('configureTest', c);
const url = await this.$store.dispatch('auth/redirectToGithub', {
redirectUrl: res.redirectUrl,
test: true,
redirect: false
});
const popup = open(url, 'auth-test', popupWindowOptions());
const timer = setInterval(() => {
if ( popup && popup.closed ) {
clearInterval(timer);
return reject(new Error('Access was not authorized'));
} else if ( popup === null || popup === undefined ) {
clearInterval(timer);
return reject(new Error('Please disable your popup blocker for this site'));
}
});
});
const code = await waitForTest;
await c.doAction('testAndApply', {
code,
enabled: true,
githubConfig: c,
description: 'Initial setup session',
});
const githubConfig = await this.$store.dispatch('rancher/find', {
type: RANCHER.AUTH_CONFIG,
id: 'github',
opt: { url: '/v3/authConfigs/github' }
});
this.githubConfig = await this.$store.dispatch('rancher/clone', { resource: githubConfig });
this.githubConfig.allowedPrincipalIds = this.githubConfig.allowedPrincipalIds || [];
if ( this.me ) {
addObject(this.githubConfig.allowedPrincipalIds, this.me.id);
}
this.principals = await this.$store.dispatch('rancher/findAll', {
type: RANCHER.PRINCIPAL,
opt: { url: '/v3/principals' }
});
buttonCb(true);
this.step = 3;
this.$router.applyQuery({ [STEP]: this.step });
} catch (e) {
buttonCb(false);
this.githubError = e;
}
},
togglePrincipal(e) {
const target = e.target;
let ary = this.githubConfig.allowedPrincipalIds;
if ( !ary ) {
ary = [];
this.githubConfig.allowedPrincipalIds = ary;
}
if ( target.checked ) {
addObject(ary, target.value);
} else {
removeObject(ary, target.value);
}
},
async setAuthorized(buttonCb) {
try {
window.z = this.githubConfig;
console.log(this.githubConfig);
await this.githubConfig.save();
buttonCb(true);
this.done();
} catch (e) {
buttonCb(false);
}
},
done() {
this.$router.replace('/');
},
},
};
</script>
<template>
<form class="container setup">
<div v-if="step === 1">
<div class="row">
<div class="col span-6">
<h1>Welcome to Rio!</h1>
<p class="text-muted mb-20 mt-20" style="line-height: 1.2em;">
The first order of business is to set a strong password for the default <code>admin</code> user.
</p>
<p class="text-muted mb-40">
We suggest using this random one generated just for you, but you enter your own if you like.
</p>
<!-- For password managers... -->
<input type="hidden" name="username" autocomplete="username" :value="username" />
<div class="mt-20">
<div>
<LabeledInput
v-if="!haveCurrent"
v-model.trim="current"
autocomplete="current-password"
type="password"
label="Current Password"
/>
</div>
</div>
<div class="mt-20">
<div>
<LabeledInput
ref="password"
v-model.trim="password"
:type="useRandom ? 'text' : 'password'"
:readonly="useRandom"
autocomplete="new-password"
label="New Password"
>
<template v-if="useRandom" #suffix>
<div class="addon" style="padding: 0 0 0 12px;">
<CopyToClipboard :text="password" class="btn-sm" />
</div>
</template>
</LabeledInput>
<div v-if="useRandom" class="mt-5">
<a href="#" @click.prevent.stop="manual">Choose a password manually</a>
</div>
</div>
</div>
<div class="mt-20">
<div>
<LabeledInput
v-show="!useRandom"
v-model.trim="confirm"
autocomplete="new-password"
type="password"
label="Confirm New Password"
/>
</div>
</div>
<div class="checkbox mt-20">
<label>
<input v-model="telemetry" type="checkbox" />
Allow collection of anonymous statistics to help us improve Rio
</label>
<v-popover placement="right">
<i class="icon icon-info" />
<span slot="popover">
Rancher Labs would like to collect a bit of anonymized information<br />
about the configuration of your installation to help make Rio better.<br /><br />
Your data will not be shared with anyone else, and no information about<br />
what specific resources or endpoints you are deploying is included.<br />
Once enabled you can view exactly what data will be sent at <code>/v1-telemetry</code>.<br /><br />
<a href="https://rancher.com/docs/rancher/v2.x/en/faq/telemetry/" target="_blank">More Info</a>
</span>
</v-popover>
</div>
<div class="mt-20">
<AsyncButton key="passwordSubmit" type="submit" mode="continue" :disabled="passwordSubmitDisabled" @click="finishPassword" />
</div>
</div>
<div class="col span-6">
<img src="~/assets/images/setup-step-one.svg" />
</div>
</div>
</div>
<div v-if="step === 2">
<div class="row">
<div class="col span-6">
<h1 class="mb-20">
GitHub Integration
</h1>
<p class="text-muted mb-40">
Rio can optionally integrate with GitHub to read resources from
repositories and automatically update them when code is pushed.
</p>
<div class="mt-20">
<div>
<label class="radio">
<input
v-model="kind"
type="radio"
value="public"
> Use public GitHub.com
</label>
</div>
<div>
<label class="radio">
<input
v-model="kind"
type="radio"
value="enterprise"
> Use a private GitHub Enterprise installation
</label>
</div>
</div>
<div class="mt-20 text-muted">
<p>
1. Create an <a v-if="kind === 'public'" href="https://github.com/settings/developers" target="_blank" rel="nofollow noopener noreferrer">OAuth App</a>
<span v-else>OAuth App</span>
with <CopyCode>{{ serverUrl }}</CopyCode>
as the Homepage and Authorization callback URLs.
</p>
<p>&nbsp;</p>
<p>2. Then copy the Client ID and Client Secret from the new app and fill them in here:</p>
<div v-if="kind === 'enterprise'" class="mt-20">
<LabeledInput
ref="hostname"
v-model.trim="hostname"
autocomplete="off"
label="GitHub Enterprise Hostname"
/>
<div>
<label class="checkbox"><input v-model="tls" type="checkbox" /> Use TLS (https://) connection</label>
</div>
</div>
</div>
<div class="mt-20">
<LabeledInput
ref="clientId"
v-model.trim="clientId"
autocomplete="off"
label="GitHub Client ID"
/>
</div>
<div class="mt-20">
<LabeledInput
ref="clientSecret"
v-model.trim="clientSecret"
type="password"
autocomplete="off"
label="GitHub Client Secret"
/>
</div>
<div v-if="githubError" class="mt-20">
<div class="text-center text-error">
{{ githubError }}
</div>
</div>
<div class="mt-20">
<button type="button" class="btn bg-default mr-20" @click="done">
Skip
</button>
<AsyncButton key="githubSubmit" type="submit" mode="continue" :disabled="githubSubmitDisabled" @click="testGithub" />
</div>
</div>
<div class="col span-6">
<img src="~/assets/images/setup-step-one.svg" />
</div>
</div>
</div>
<div v-if="step === 3">
<div class="row">
<div class="col span-6">
<h1>GitHub Integration, Part Deux</h1>
<p class="text-muted mb-20 mt-20">
Who should be able to login?
</p>
<div>
<label v-if="me" class="principal">
<input type="checkbox" checked disabled />
<img :src="me.avatarSrc" width="40" height="40" />
<div class="login">
{{ me.loginName }}
</div>
<div class="name">
{{ me.name }}
</div>
</label>
<label v-for="org in orgs" :key="org.id" class="principal">
<input :checked="(githubConfig.allowedPrincipalIds || []).includes(org.id)" type="checkbox" :value="org.id" @click="togglePrincipal" />
<img :src="org.avatarSrc" width="40" height="40" />
<span class="login">
Members of <b>{{ org.loginName }}</b>
</span>
</label>
</div>
<div class="mt-20">
<AsyncButton key="githubSubmit" type="submit" mode="done" @click="setAuthorized" />
</div>
</div>
<div class="col span-6">
<img src="~/assets/images/setup-step-one.svg" />
</div>
</div>
</div>
</form>
</template>
<style lang="scss" scoped>
.principal {
display: block;
background: var(--box-bg);
border: 1px solid var(--border);
border-radius: 3px;
margin: 10px 0;
padding: 10px;
line-height: 40px;
img {
vertical-align: middle;
margin: 0 10px;
}
}
.setup {
.row {
align-items: center;
}
code {
background: var(--accent-btn);
padding: 2.5px 5px;
border-radius: 3px;
}
}
</style>
Reference in New Issue View Git Blame Copy Permalink