rancher
/
dashboard
mirror of https://github.com/rancher/dashboard.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
dashboard/shell/components/form/SelectOrCreateAuthSecret.vue

542 lines
13 KiB
Vue
Raw Blame History

<script>
import { _EDIT } from '@shell/config/query-params';
import { LabeledInput } from '@components/Form/LabeledInput';
import LabeledSelect from '@shell/components/form/LabeledSelect';
import { AUTH_TYPE, NORMAN, SECRET } from '@shell/config/types';
import { SECRET_TYPES } from '@shell/config/secret';
import { base64Encode } from '@shell/utils/crypto';
import { addObjects, insertAt } from '@shell/utils/array';
import { sortBy } from '@shell/utils/sort';
export default {
name: 'SelectOrCreateAuthSecret',
components: {
LabeledInput,
LabeledSelect,
},
props: {
mode: {
type: String,
default: _EDIT,
},
preSelect: {
type: Object,
default: null,
},
value: {
type: [String, Object],
default: null,
},
inStore: {
type: String,
default: 'cluster',
},
labelKey: {
type: String,
default: 'selectOrCreateAuthSecret.label',
},
namespace: {
type: String,
required: true,
},
limitToNamespace: {
type: Boolean,
default: true,
},
generateName: {
type: String,
default: 'auth-',
},
allowNone: {
type: Boolean,
default: true,
},
allowSsh: {
type: Boolean,
default: true,
},
allowBasic: {
type: Boolean,
default: true,
},
allowS3: {
type: Boolean,
default: false,
},
allowRke: {
type: Boolean,
default: false,
},
registerBeforeHook: {
type: Function,
required: true,
},
hookName: {
type: String,
default: 'registerAuthSecret'
},
appendUniqueIdToHook: {
type: Boolean,
default: false
},
hookPriority: {
type: Number,
default: 99,
},
vertical: {
type: Boolean,
default: false,
},
/**
* This component is used in MultiStep Priocess
* So when user click through to final step and submit the form
* This component get recreated therefore register `doCreate` as a hook each time
* Also, the parent step component is not aware that credential is created
*
* This property is implement to prevent this issue and delegate it to parent component.
*/
delegateCreateToParent: {
type: Boolean,
default: false
}
},
async fetch() {
if ( (this.allowSsh || this.allowBasic || this.allowRke) && this.$store.getters[`${ this.inStore }/schemaFor`](SECRET) ) {
// Avoid an async call and loading screen if already loaded by someone else
if ( this.$store.getters[`${ this.inStore }/haveAll`](SECRET) ) {
this.allSecrets = this.$store.getters[`${ this.inStore }/all`](SECRET);
} else {
this.allSecrets = await this.$store.dispatch(`${ this.inStore }/findAll`, { type: SECRET });
}
}
if ( this.allowS3 && this.$store.getters['rancher/canList'](NORMAN.CLOUD_CREDENTIAL) ) {
// Avoid an async call and loading screen if already loaded by someone else
if ( this.$store.getters['rancher/haveAll'](NORMAN.CLOUD_CREDENTIAL) ) {
this.allCloudCreds = this.$store.getters['rancher/all'](NORMAN.CLOUD_CREDENTIAL);
} else {
this.allCloudCreds = await this.$store.dispatch('rancher/findAll', { type: NORMAN.CLOUD_CREDENTIAL });
}
} else {
this.allCloudCreds = [];
}
let selected = this.preSelect?.selected || AUTH_TYPE._NONE;
if ( !this.value ) {
this.publicKey = this.preSelect?.publicKey || '';
this.privateKey = this.preSelect?.privateKey || '';
}
if ( this.value ) {
if ( typeof this.value === 'object' ) {
selected = `${ this.value.namespace }/${ this.value.name }`;
} else if ( this.value.includes('/') || this.value.includes(':') ) {
selected = this.value;
} else if ( this.namespace ) {
selected = `${ this.namespace }/${ this.value }`;
} else {
selected = this.value;
}
}
this.selected = selected;
this.update();
},
data(props) {
return {
allCloudCreds: [],
allSecrets: [],
selected: null,
publicKey: '',
privateKey: '',
uniqueId: new Date().getTime() // Allows form state to be individually tracked if the form is in a list
};
},
computed: {
_SSH() {
return AUTH_TYPE._SSH;
},
_BASIC() {
return AUTH_TYPE._BASIC;
},
_S3() {
return AUTH_TYPE._S3;
},
options() {
const types = [];
const keys = [];
if ( this.allowSsh ) {
types.push(SECRET_TYPES.SSH);
}
if ( this.allowBasic ) {
types.push(SECRET_TYPES.BASIC);
}
if ( this.allowRke ) {
types.push(SECRET_TYPES.RKE_AUTH_CONFIG);
}
const out = this.allSecrets
.filter(x => this.namespace && this.limitToNamespace ? x.metadata.namespace === this.namespace : true)
.filter((x) => {
// Must match one of the types if given
if ( types.length && !types.includes(x._type) ) {
return false;
}
// Must match ALL of the keys if given
if ( keys.length ) {
const dataKeys = Object.keys(x.data || {});
if ( !keys.every(key => dataKeys.includes(key)) ) {
return false;
}
}
return true;
}).map((x) => {
return {
label: `${ x.metadata.name } (${ x.subTypeDisplay }: ${ x.dataPreview })`,
group: x.metadata.namespace,
value: x.id,
};
});
if ( this.allowS3 ) {
const more = this.allCloudCreds
.filter(x => ['aws', 's3'].includes(x.provider) )
.map((x) => {
return {
label: `${ x.nameDisplay } (${ x.providerDisplay })`,
group: 'Cloud Credentials',
value: x.id,
};
});
addObjects(out, more);
}
if ( !this.limitToNamespace ) {
sortBy(out, 'group');
if ( out.length ) {
let lastGroup = '';
for ( let i = 0 ; i < out.length ; i++ ) {
if ( out[i].group !== lastGroup ) {
lastGroup = out[i].group;
insertAt(out, i, {
kind: 'title',
label: this.t('selectOrCreateAuthSecret.namespaceGroup', { name: lastGroup }),
disabled: true,
});
i++;
}
}
}
}
if ( out.length ) {
out.unshift({
kind: 'title',
label: this.t('selectOrCreateAuthSecret.chooseExisting'),
disabled: true
});
}
if ( this.allowNone ) {
out.unshift({
label: this.t('generic.none'),
value: AUTH_TYPE._NONE,
});
}
if (this.allowSsh || this.allowS3 || this.allowBasic) {
out.unshift({
label: 'divider',
disabled: true,
kind: 'divider'
});
}
if ( this.allowSsh ) {
out.unshift({
label: this.t('selectOrCreateAuthSecret.createSsh'),
value: AUTH_TYPE._SSH,
kind: 'highlighted'
});
}
if ( this.allowS3 ) {
out.unshift({
label: this.t('selectOrCreateAuthSecret.createS3'),
value: AUTH_TYPE._S3,
kind: 'highlighted'
});
}
if ( this.allowBasic ) {
out.unshift({
label: this.t('selectOrCreateAuthSecret.createBasic'),
value: AUTH_TYPE._BASIC,
kind: 'highlighted'
});
}
return out;
},
firstCol() {
if ( this.vertical ) {
return '';
}
if ( this.selected === AUTH_TYPE._SSH || this.selected === AUTH_TYPE._BASIC || this.selected === AUTH_TYPE._S3 ) {
return 'col span-4';
}
return 'col span-6';
},
moreCols() {
if ( this.vertical ) {
return 'mt-20';
}
return 'col span-4';
}
},
watch: {
selected: 'update',
publicKey: 'updateKeyVal',
privateKey: 'updateKeyVal',
namespace(ns) {
if ( ns && !this.selected.startsWith(`${ ns }/`) ) {
this.selected = AUTH_TYPE._NONE;
}
}
},
created() {
if (this.registerBeforeHook) {
const hookName = this.appendUniqueIdToHook ? this.hookName + this.uniqueId : this.hookName;
if (!this.delegateCreateToParent) {
this.registerBeforeHook(this.doCreate, hookName, this.hookPriority);
}
} else {
throw new Error('Before Hook is missing');
}
},
methods: {
updateKeyVal() {
if ( ![AUTH_TYPE._SSH, AUTH_TYPE._BASIC, AUTH_TYPE._S3].includes(this.selected)) {
this.privateKey = '';
this.publicKey = '';
}
this.$emit('inputauthval', {
selected: this.selected,
privateKey: this.privateKey,
publicKey: this.publicKey
});
},
update() {
if ( (!this.selected || [AUTH_TYPE._SSH, AUTH_TYPE._BASIC, AUTH_TYPE._S3, AUTH_TYPE._NONE].includes(this.selected))) {
this.$emit('input', null);
} else if ( this.selected.includes(':') ) {
// Cloud creds
this.$emit('input', this.selected);
} else {
const split = this.selected.split('/');
if ( this.limitToNamespace ) {
this.$emit('input', split[1]);
} else {
const out = {
namespace: split[0],
name: split[1]
};
this.$emit('input', out);
}
}
this.updateKeyVal();
},
async doCreate() {
if ( ![AUTH_TYPE._SSH, AUTH_TYPE._BASIC, AUTH_TYPE._S3].includes(this.selected) || this.delegateCreateToParent ) {
return;
}
let secret;
if ( this.selected === AUTH_TYPE._S3 ) {
secret = await this.$store.dispatch(`rancher/create`, {
type: NORMAN.CLOUD_CREDENTIAL,
s3credentialConfig: {
accessKey: this.publicKey,
secretKey: this.privateKey,
},
});
} else {
secret = await this.$store.dispatch(`${ this.inStore }/create`, {
type: SECRET,
metadata: {
namespace: this.namespace,
generateName: this.generateName
},
});
let type, publicField, privateField;
switch ( this.selected ) {
case AUTH_TYPE._SSH:
type = SECRET_TYPES.SSH;
publicField = 'ssh-publickey';
privateField = 'ssh-privatekey';
break;
case AUTH_TYPE._BASIC:
type = SECRET_TYPES.BASIC;
publicField = 'username';
privateField = 'password';
break;
default:
throw new Error('Unknown type');
}
secret._type = type;
secret.data = {
[publicField]: base64Encode(this.publicKey),
[privateField]: base64Encode(this.privateKey),
};
}
await secret.save();
await this.$nextTick(() => {
this.selected = secret.id;
});
return secret;
},
},
};
</script>
<template>
<div
class="select-or-create-auth-secret"
>
<div
class="mt-20"
:class="{'row': !vertical}"
>
<div :class="firstCol">
<LabeledSelect
v-model="selected"
:mode="mode"
:label-key="labelKey"
:loading="$fetchState.pending"
:options="options"
:selectable="option => !option.disabled"
/>
</div>
<template v-if="selected === _SSH">
<div :class="moreCols">
<LabeledInput
v-model="publicKey"
:mode="mode"
type="multiline"
label-key="selectOrCreateAuthSecret.ssh.publicKey"
/>
</div>
<div :class="moreCols">
<LabeledInput
v-model="privateKey"
:mode="mode"
type="multiline"
label-key="selectOrCreateAuthSecret.ssh.privateKey"
/>
</div>
</template>
<template v-else-if="selected === _BASIC">
<div :class="moreCols">
<LabeledInput
v-model="publicKey"
:mode="mode"
label-key="selectOrCreateAuthSecret.basic.username"
/>
</div>
<div :class="moreCols">
<LabeledInput
v-model="privateKey"
:mode="mode"
type="password"
label-key="selectOrCreateAuthSecret.basic.password"
/>
</div>
</template>
<template v-else-if="selected === _S3">
<div :class="moreCols">
<LabeledInput
v-model="publicKey"
:mode="mode"
label-key="selectOrCreateAuthSecret.s3.accessKey"
/>
</div>
<div :class="moreCols">
<LabeledInput
v-model="privateKey"
:mode="mode"
type="password"
label-key="selectOrCreateAuthSecret.s3.secretKey"
/>
</div>
</template>
</div>
</div>
</template>
<style lang="scss">
.select-or-create-auth-secret div.labeled-select {
min-height: $input-height;
}
</style>
Reference in New Issue View Git Blame Copy Permalink