3cb921b0f9
rbac: fix RoleObjectPermissionTable not showing `add_user_to_group` (#14312) fix RoleObjectPermissionTable not showing `add_user_to_group` Co-authored-by: Simonyi Gergő <28359278+gergosimonyi@users.noreply.github.com>
119 lines
4.1 KiB
TypeScript
119 lines
4.1 KiB
TypeScript
import { DEFAULT_CONFIG } from "@goauthentik/common/api/config";
|
|
import "@goauthentik/components/ak-toggle-group";
|
|
import "@goauthentik/elements/forms/HorizontalFormElement";
|
|
import { ModelForm } from "@goauthentik/elements/forms/ModelForm";
|
|
import "@goauthentik/elements/forms/Radio";
|
|
import "@goauthentik/elements/forms/SearchSelect";
|
|
|
|
import { msg } from "@lit/localize";
|
|
import { TemplateResult, html } from "lit";
|
|
import { customElement, property, state } from "lit/decorators.js";
|
|
|
|
import {
|
|
ModelEnum,
|
|
PaginatedPermissionList,
|
|
RbacApi,
|
|
RbacRolesListRequest,
|
|
Role,
|
|
} from "@goauthentik/api";
|
|
|
|
interface RoleAssignData {
|
|
role: string;
|
|
permissions: {
|
|
[key: string]: boolean;
|
|
};
|
|
}
|
|
|
|
@customElement("ak-rbac-role-object-permission-form")
|
|
export class RoleObjectPermissionForm extends ModelForm<RoleAssignData, number> {
|
|
@property()
|
|
model?: ModelEnum;
|
|
|
|
@property()
|
|
objectPk?: string;
|
|
|
|
@state()
|
|
modelPermissions?: PaginatedPermissionList;
|
|
|
|
async load(): Promise<void> {
|
|
const [appLabel, modelName] = (this.model || "").split(".");
|
|
this.modelPermissions = await new RbacApi(DEFAULT_CONFIG).rbacPermissionsList({
|
|
contentTypeModel: modelName,
|
|
contentTypeAppLabel: appLabel,
|
|
ordering: "codename",
|
|
});
|
|
}
|
|
|
|
loadInstance(): Promise<RoleAssignData> {
|
|
throw new Error("Method not implemented.");
|
|
}
|
|
|
|
getSuccessMessage(): string {
|
|
return msg("Successfully assigned permission.");
|
|
}
|
|
|
|
send(data: RoleAssignData): Promise<unknown> {
|
|
return new RbacApi(DEFAULT_CONFIG).rbacPermissionsAssignedByRolesAssign({
|
|
uuid: data.role,
|
|
permissionAssignRequest: {
|
|
permissions: Object.keys(data.permissions).filter((key) => data.permissions[key]),
|
|
model: this.model!,
|
|
objectPk: this.objectPk,
|
|
},
|
|
});
|
|
}
|
|
|
|
renderForm(): TemplateResult {
|
|
if (!this.modelPermissions) {
|
|
return html``;
|
|
}
|
|
return html`<form class="pf-c-form pf-m-horizontal">
|
|
<ak-form-element-horizontal label=${msg("Role")} name="role">
|
|
<ak-search-select
|
|
.fetchObjects=${async (query?: string): Promise<Role[]> => {
|
|
const args: RbacRolesListRequest = {
|
|
ordering: "name",
|
|
};
|
|
if (query !== undefined) {
|
|
args.search = query;
|
|
}
|
|
const roles = await new RbacApi(DEFAULT_CONFIG).rbacRolesList(args);
|
|
return roles.results;
|
|
}}
|
|
.renderElement=${(role: Role): string => {
|
|
return role.name;
|
|
}}
|
|
.value=${(role: Role | undefined): string | undefined => {
|
|
return role?.pk;
|
|
}}
|
|
>
|
|
</ak-search-select>
|
|
</ak-form-element-horizontal>
|
|
${this.modelPermissions?.results
|
|
.filter((perm) => {
|
|
const [_app, model] = this.model?.split(".") || "";
|
|
return perm.codename !== `add_${model}`;
|
|
})
|
|
.map((perm) => {
|
|
return html` <ak-form-element-horizontal name="permissions.${perm.codename}">
|
|
<label class="pf-c-switch">
|
|
<input class="pf-c-switch__input" type="checkbox" />
|
|
<span class="pf-c-switch__toggle">
|
|
<span class="pf-c-switch__toggle-icon">
|
|
<i class="fas fa-check" aria-hidden="true"></i>
|
|
</span>
|
|
</span>
|
|
<span class="pf-c-switch__label">${perm.name}</span>
|
|
</label>
|
|
</ak-form-element-horizontal>`;
|
|
})}
|
|
</form>`;
|
|
}
|
|
}
|
|
|
|
declare global {
|
|
interface HTMLElementTagNameMap {
|
|
"ak-rbac-role-object-permission-form": RoleObjectPermissionForm;
|
|
}
|
|
}
|