enterprise/providers/microsoft_entra: initial account sync to microsoft entra (#9632)

* initial Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add entra mappings Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix some stuff Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make API endpoints more consistent Signed-off-by: Jens Langhammer <jens@goauthentik.io> * implement more things Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add user tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix most group tests + fix bugs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * more group tests, fix bugs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix missing __init__ Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add ui for provisioned users Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix a bunch of bugs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add `creating` to property mapping env Signed-off-by: Jens Langhammer <jens@goauthentik.io> * always sync group members Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix stuff Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix group membership Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix some types Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add group member add test Signed-off-by: Jens Langhammer <jens@goauthentik.io> * create sync status component to dedupe Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix discovery tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * get rid of more code and fix more issues Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add error handling for auth and transient Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make sure autoretry is on Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format web Signed-off-by: Jens Langhammer <jens@goauthentik.io> * wait for task in signal Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add squashed google migration Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>
2024-05-09 15:41:23 +02:00
parent ff4ec6f9b4
commit 99ad492951
85 changed files with 6312 additions and 443 deletions
--- a/web/src/admin/providers/google_workspace/GoogleWorkspaceProviderViewPage.ts
+++ b/web/src/admin/providers/google_workspace/GoogleWorkspaceProviderViewPage.ts
@ -1,16 +1,18 @@
-import "@goauthentik/authentik/admin/providers/google_workspace/GoogleWorkspaceProviderForm";
+import "@goauthentik/admin/providers/google_workspace/GoogleWorkspaceProviderForm";
+import "@goauthentik/admin/providers/google_workspace/GoogleWorkspaceProviderGroupList";
+import "@goauthentik/admin/providers/google_workspace/GoogleWorkspaceProviderUserList";
 import { DEFAULT_CONFIG } from "@goauthentik/common/api/config";
 import { EVENT_REFRESH } from "@goauthentik/common/constants";
 import "@goauthentik/components/events/ObjectChangelog";
 import { AKElement } from "@goauthentik/elements/Base";
 import "@goauthentik/elements/Markdown";
+import "@goauthentik/elements/SyncStatusCard";
 import "@goauthentik/elements/Tabs";
 import "@goauthentik/elements/buttons/ActionButton";
 import "@goauthentik/elements/buttons/ModalButton";
-import "@goauthentik/elements/events/LogViewer";
 import "@goauthentik/elements/rbac/ObjectPermissionsPage";

-import { msg, str } from "@lit/localize";
+import { msg } from "@lit/localize";
 import { CSSResult, PropertyValues, TemplateResult, html } from "lit";
 import { customElement, property, state } from "lit/decorators.js";

@ -28,11 +30,10 @@ import PFStack from "@patternfly/patternfly/layouts/Stack/stack.css";
 import PFBase from "@patternfly/patternfly/patternfly-base.css";

 import {
-    GoogleProvider,
+    GoogleWorkspaceProvider,
    ProvidersApi,
    RbacPermissionsAssignedByUsersListModelEnum,
    SyncStatus,
-    SystemTaskStatusEnum,
 } from "@goauthentik/api";

@customElement("ak-provider-google-workspace-view")
@ -41,7 +42,7 @@ export class GoogleWorkspaceProviderViewPage extends AKElement {
    providerID?: number;

    @state()
-    provider?: GoogleProvider;
+    provider?: GoogleWorkspaceProvider;

    @state()
    syncState?: SyncStatus;
@ -121,6 +122,28 @@ export class GoogleWorkspaceProviderViewPage extends AKElement {
                    </div>
                </div>
            </section>
+            <section
+                slot="page-users"
+                data-tab-title="${msg("Provisioned Users")}"
+                class="pf-c-page__main-section pf-m-no-padding-mobile"
+            >
+                <div class="pf-l-grid pf-m-gutter">
+                    <ak-provider-google-workspace-users-list
+                        providerId=${this.provider.pk}
+                    ></ak-provider-google-workspace-users-list>
+                </div>
+            </section>
+            <section
+                slot="page-groups"
+                data-tab-title="${msg("Provisioned Groups")}"
+                class="pf-c-page__main-section pf-m-no-padding-mobile"
+            >
+                <div class="pf-l-grid pf-m-gutter">
+                    <ak-provider-google-workspace-groups-list
+                        providerId=${this.provider.pk}
+                    ></ak-provider-google-workspace-groups-list>
+                </div>
+            </section>
            <ak-rbac-object-permission-page
                slot="page-permissions"
                data-tab-title="${msg("Permissions")}"
@ -130,39 +153,6 @@ export class GoogleWorkspaceProviderViewPage extends AKElement {
        </ak-tabs>`;
    }

-    renderSyncStatus(): TemplateResult {
-        if (!this.syncState) {
-            return html`${msg("No sync status.")}`;
-        }
-        if (this.syncState.isRunning) {
-            return html`${msg("Sync currently running.")}`;
-        }
-        if (this.syncState.tasks.length < 1) {
-            return html`${msg("Not synced yet.")}`;
-        }
-        return html`
-            <ul class="pf-c-list">
-                ${this.syncState.tasks.map((task) => {
-                    let header = "";
-                    if (task.status === SystemTaskStatusEnum.Warning) {
-                        header = msg("Task finished with warnings");
-                    } else if (task.status === SystemTaskStatusEnum.Error) {
-                        header = msg("Task finished with errors");
-                    } else {
-                        header = msg(str`Last sync: ${task.finishTimestamp.toLocaleString()}`);
-                    }
-                    return html`<li>
-                        <p>${task.name}</p>
-                        <ul class="pf-c-list">
-                            <li>${header}</li>
-                            <ak-log-viewer .logs=${task?.messages}></ak-log-viewer>
-                        </ul>
-                    </li> `;
-                })}
-            </ul>
-        `;
-    }
-
    renderTabOverview(): TemplateResult {
        if (!this.provider) {
            return html``;
@ -197,7 +187,7 @@ export class GoogleWorkspaceProviderViewPage extends AKElement {
                    <div class="pf-c-card__footer">
                        <ak-forms-modal>
                            <span slot="submit"> ${msg("Update")} </span>
-                            <span slot="header"> ${msg("Update Google Provider")} </span>
+                            <span slot="header"> ${msg("Update Google Workspace Provider")} </span>
                            <ak-provider-google-workspace-form
                                slot="form"
                                .instancePk=${this.provider.pk}
@ -209,33 +199,24 @@ export class GoogleWorkspaceProviderViewPage extends AKElement {
                        </ak-forms-modal>
                    </div>
                </div>
-                <div class="pf-c-card pf-l-grid__item pf-m-12-col pf-l-stack__item">
-                    <div class="pf-c-card__title">
-                        <p>${msg("Sync status")}</p>
-                    </div>
-                    <div class="pf-c-card__body">${this.renderSyncStatus()}</div>
-                    <div class="pf-c-card__footer">
-                        <ak-action-button
-                            class="pf-m-secondary"
-                            .apiRequest=${() => {
-                                return new ProvidersApi(DEFAULT_CONFIG)
-                                    .providersGoogleWorkspacePartialUpdate({
-                                        id: this.provider?.pk || 0,
-                                        patchedGoogleProviderRequest: this.provider,
-                                    })
-                                    .then(() => {
-                                        this.dispatchEvent(
-                                            new CustomEvent(EVENT_REFRESH, {
-                                                bubbles: true,
-                                                composed: true,
-                                            }),
-                                        );
-                                    });
-                            }}
-                        >
-                            ${msg("Run sync again")}
-                        </ak-action-button>
-                    </div>
+                <div class="pf-l-grid__item pf-m-12-col pf-l-stack__item">
+                    <ak-sync-status-card
+                        .fetch=${() => {
+                            return new ProvidersApi(
+                                DEFAULT_CONFIG,
+                            ).providersGoogleWorkspaceSyncStatusRetrieve({
+                                id: this.provider?.pk || 0,
+                            });
+                        }}
+                        .triggerSync=${() => {
+                            return new ProvidersApi(
+                                DEFAULT_CONFIG,
+                            ).providersGoogleWorkspacePartialUpdate({
+                                id: this.provider?.pk || 0,
+                                patchedGoogleWorkspaceProviderRequest: {},
+                            });
+                        }}
+                    ></ak-sync-status-card>
                </div>
            </div>`;
    }