web/admin: revamped rbac and user settings tabs (#8299)

* web/admin: fix duplicate RBAC preview banner on permission modal Signed-off-by: Jens Langhammer <jens@goauthentik.io> * switch non-embedded permission page to use vertical tabs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix some leftover html? Signed-off-by: Jens Langhammer <jens@goauthentik.io> * move stuff into vertical subtab Signed-off-by: Jens Langhammer <jens@goauthentik.io> * show all of users permission tabs on one main tab Signed-off-by: Jens Langhammer <jens@goauthentik.io> * rework role page to match user page Signed-off-by: Jens Langhammer <jens@goauthentik.io> * use separate tabs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * rename role permission tables to match user tables Signed-off-by: Jens Langhammer <jens@goauthentik.io> * rename to credentials and tokens Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add country icon to session list Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add oauth access token list Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add helper to get relative time Signed-off-by: Jens Langhammer <jens@goauthentik.io> * use pfdivider Signed-off-by: Jens Langhammer <jens@goauthentik.io> * replace plain hr with pf-c-divider Signed-off-by: Jens Langhammer <jens@goauthentik.io> * use new logic for showing relative time in charts Signed-off-by: Jens Langhammer <jens@goauthentik.io> * use consistent relative time for event display Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove more leftovers Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix some alignment issues on the admin dashboard Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update storybook map Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add sanity check to event app lookup Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make api drawer header fixed Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix table padding for toggle Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix notification drawer for user interface Signed-off-by: Jens Langhammer <jens@goauthentik.io> * enable system task search Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix formatting, exclude generated script from formatting Signed-off-by: Jens Langhammer <jens@goauthentik.io> * web: minor fixes There's a renderer (it's not a component, not yet) for producing definition lists without the risk of missing a class or tag. Breaking conditionally rendered components out to make their use easier to identify. * fix prettier Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix outpost form Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix more flaky tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * re-create locale Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add some description for different permission views Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix system task search Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Ken Sternberg <ken@goauthentik.io>
2024-01-26 18:01:03 +01:00
parent 85a8768424
commit 11ca358242
48 changed files with 838 additions and 456 deletions
--- a/web/src/elements/oauth/UserAccessTokenList.ts
+++ b/web/src/elements/oauth/UserAccessTokenList.ts
@ -0,0 +1,93 @@
+import { DEFAULT_CONFIG } from "@goauthentik/common/api/config";
+import { uiConfig } from "@goauthentik/common/ui/config";
+import "@goauthentik/components/ak-status-label";
+import "@goauthentik/elements/forms/DeleteBulkForm";
+import { PaginatedResponse } from "@goauthentik/elements/table/Table";
+import { Table, TableColumn } from "@goauthentik/elements/table/Table";
+
+import { msg } from "@lit/localize";
+import { CSSResult, TemplateResult, html } from "lit";
+import { customElement, property } from "lit/decorators.js";
+
+import PFFlex from "@patternfly/patternfly/layouts/Flex/flex.css";
+
+import { ExpiringBaseGrantModel, Oauth2Api, TokenModel } from "@goauthentik/api";
+
+@customElement("ak-user-oauth-access-token-list")
+export class UserOAuthAccessTokenList extends Table<TokenModel> {
+    expandable = true;
+
+    @property({ type: Number })
+    userId?: number;
+
+    static get styles(): CSSResult[] {
+        return super.styles.concat(PFFlex);
+    }
+
+    async apiEndpoint(page: number): Promise<PaginatedResponse<TokenModel>> {
+        return new Oauth2Api(DEFAULT_CONFIG).oauth2AccessTokensList({
+            user: this.userId,
+            ordering: "expires",
+            page: page,
+            pageSize: (await uiConfig()).pagination.perPage,
+        });
+    }
+
+    checkbox = true;
+    order = "-expires";
+
+    columns(): TableColumn[] {
+        return [
+            new TableColumn(msg("Provider"), "provider"),
+            new TableColumn(msg("Revoked?"), "revoked"),
+            new TableColumn(msg("Expires"), "expires"),
+            new TableColumn(msg("Scopes"), "scope"),
+        ];
+    }
+
+    renderExpanded(item: TokenModel): TemplateResult {
+        return html` <td role="cell" colspan="4">
+                <div class="pf-c-table__expandable-row-content">
+                    <div class="pf-l-flex">
+                        <div class="pf-l-flex__item">
+                            <h3>${msg("ID Token")}</h3>
+                            <pre>${item.idToken}</pre>
+                        </div>
+                    </div>
+                </div>
+            </td>
+            <td></td>
+            <td></td>`;
+    }
+
+    renderToolbarSelected(): TemplateResult {
+        const disabled = this.selectedElements.length < 1;
+        return html`<ak-forms-delete-bulk
+            objectLabel=${msg("Refresh Tokens(s)")}
+            .objects=${this.selectedElements}
+            .usedBy=${(item: ExpiringBaseGrantModel) => {
+                return new Oauth2Api(DEFAULT_CONFIG).oauth2RefreshTokensUsedByList({
+                    id: item.pk,
+                });
+            }}
+            .delete=${(item: ExpiringBaseGrantModel) => {
+                return new Oauth2Api(DEFAULT_CONFIG).oauth2RefreshTokensDestroy({
+                    id: item.pk,
+                });
+            }}
+        >
+            <button ?disabled=${disabled} slot="trigger" class="pf-c-button pf-m-danger">
+                ${msg("Delete")}
+            </button>
+        </ak-forms-delete-bulk>`;
+    }
+
+    row(item: TokenModel): TemplateResult[] {
+        return [
+            html`<a href="#/core/providers/${item.provider?.pk}"> ${item.provider?.name} </a>`,
+            html`<ak-status-label type="warning" ?good=${item.revoked}></ak-status-label>`,
+            html`${item.expires?.toLocaleString()}`,
+            html`${item.scope.join(", ")}`,
+        ];
+    }
+}