2011-01-14 11:16:25 -06:00
|
|
|
/*jsl:import ipa.js */
|
|
|
|
|
2010-09-16 09:28:07 -05:00
|
|
|
/* Authors:
|
|
|
|
* Pavel Zuna <pzuna@redhat.com>
|
2011-01-19 20:10:18 -06:00
|
|
|
* Adam Young <ayoung@redhat.com>
|
2010-09-16 09:28:07 -05:00
|
|
|
*
|
|
|
|
* Copyright (C) 2010 Red Hat
|
|
|
|
* see file 'COPYING' for use and warranty information
|
|
|
|
*
|
2010-12-09 06:59:11 -06:00
|
|
|
* This program is free software; you can redistribute it and/or modify
|
|
|
|
* it under the terms of the GNU General Public License as published by
|
|
|
|
* the Free Software Foundation, either version 3 of the License, or
|
|
|
|
* (at your option) any later version.
|
2010-09-16 09:28:07 -05:00
|
|
|
*
|
|
|
|
* This program is distributed in the hope that it will be useful,
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
* GNU General Public License for more details.
|
|
|
|
*
|
|
|
|
* You should have received a copy of the GNU General Public License
|
2010-12-09 06:59:11 -06:00
|
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>.
|
2010-09-16 09:28:07 -05:00
|
|
|
*/
|
|
|
|
|
|
|
|
/* REQUIRES: ipa.js, details.js, search.js, add.js, entity.js */
|
|
|
|
|
2010-12-09 14:20:40 -06:00
|
|
|
|
2011-03-18 15:43:54 -05:00
|
|
|
IPA.entity_factories.user = function() {
|
2011-05-13 20:05:35 -05:00
|
|
|
|
2011-06-13 23:18:57 -05:00
|
|
|
var link = true;
|
|
|
|
if (IPA.nav && IPA.nav.name == 'self-service') {
|
|
|
|
link = false;
|
|
|
|
}
|
|
|
|
|
2011-05-13 20:05:35 -05:00
|
|
|
var builder = IPA.entity_builder();
|
|
|
|
|
2011-03-18 15:43:54 -05:00
|
|
|
builder.
|
|
|
|
entity('user').
|
|
|
|
search_facet({
|
2011-05-13 20:05:35 -05:00
|
|
|
columns: [
|
|
|
|
'uid',
|
|
|
|
'givenname',
|
|
|
|
'sn',
|
|
|
|
'uidnumber',
|
|
|
|
'mail',
|
|
|
|
'telephonenumber',
|
|
|
|
'title'
|
|
|
|
]
|
2011-03-18 15:43:54 -05:00
|
|
|
}).
|
2011-05-13 20:05:35 -05:00
|
|
|
details_facet({ sections: [
|
2011-03-18 15:43:54 -05:00
|
|
|
{
|
2011-03-31 14:32:29 -05:00
|
|
|
name: 'identity',
|
2011-03-18 15:43:54 -05:00
|
|
|
label: IPA.messages.details.identity,
|
2011-05-13 20:05:35 -05:00
|
|
|
fields: [
|
|
|
|
'title',
|
|
|
|
'givenname',
|
|
|
|
'sn',
|
|
|
|
'cn',
|
|
|
|
'displayname',
|
|
|
|
'initials'
|
|
|
|
]
|
2011-03-18 15:43:54 -05:00
|
|
|
},
|
|
|
|
{
|
2011-03-31 14:32:29 -05:00
|
|
|
name: 'account',
|
2011-05-13 20:05:35 -05:00
|
|
|
fields: [
|
2011-06-28 10:59:09 -05:00
|
|
|
{
|
|
|
|
factory: IPA.user_status_widget,
|
|
|
|
name: 'nsaccountlock',
|
|
|
|
label: IPA.messages.objects.user.account_status
|
|
|
|
},
|
2011-05-13 20:05:35 -05:00
|
|
|
'uid',
|
|
|
|
{ factory: IPA.user_password_widget, name: 'userpassword' },
|
|
|
|
'uidnumber',
|
|
|
|
'gidnumber',
|
|
|
|
'loginshell',
|
|
|
|
'homedirectory'
|
|
|
|
]
|
2011-03-18 15:43:54 -05:00
|
|
|
},
|
|
|
|
{
|
2011-03-31 14:32:29 -05:00
|
|
|
name: 'contact',
|
2011-05-13 20:05:35 -05:00
|
|
|
fields: [
|
|
|
|
{ factory: IPA.multivalued_text_widget, name: 'mail' },
|
|
|
|
{ factory: IPA.multivalued_text_widget, name: 'telephonenumber' },
|
|
|
|
{ factory: IPA.multivalued_text_widget, name: 'pager' },
|
|
|
|
{ factory: IPA.multivalued_text_widget, name: 'mobile' },
|
2011-06-18 20:16:58 -05:00
|
|
|
{ factory: IPA.multivalued_text_widget,
|
|
|
|
name: 'facsimiletelephonenumber' }
|
2011-05-13 20:05:35 -05:00
|
|
|
]
|
2011-03-18 15:43:54 -05:00
|
|
|
},
|
|
|
|
{
|
2011-03-31 14:32:29 -05:00
|
|
|
name: 'mailing',
|
2011-05-13 20:05:35 -05:00
|
|
|
fields: ['street', 'l', 'st', 'postalcode']
|
2011-03-18 15:43:54 -05:00
|
|
|
},
|
|
|
|
{
|
2011-03-31 14:32:29 -05:00
|
|
|
name: 'employee',
|
2011-06-18 20:16:58 -05:00
|
|
|
fields:
|
|
|
|
['ou',
|
|
|
|
{
|
|
|
|
factory:IPA.entity_select_widget,
|
|
|
|
name: 'manager', entity: 'user', field_name: 'uid'
|
|
|
|
}
|
|
|
|
]
|
2011-03-18 15:43:54 -05:00
|
|
|
},
|
|
|
|
{
|
2011-03-31 14:32:29 -05:00
|
|
|
name: 'misc',
|
2011-05-13 20:05:35 -05:00
|
|
|
fields: ['carlicense']
|
2011-03-31 14:32:29 -05:00
|
|
|
}]}).
|
2011-03-18 15:43:54 -05:00
|
|
|
association_facet({
|
|
|
|
name: 'memberof_group',
|
2011-06-13 23:18:57 -05:00
|
|
|
associator: IPA.serial_associator,
|
|
|
|
link: link
|
2011-03-18 15:43:54 -05:00
|
|
|
}).
|
|
|
|
association_facet({
|
|
|
|
name: 'memberof_netgroup',
|
2011-06-13 23:18:57 -05:00
|
|
|
associator: IPA.serial_associator,
|
|
|
|
link: link
|
2011-03-18 15:43:54 -05:00
|
|
|
}).
|
|
|
|
association_facet({
|
|
|
|
name: 'memberof_role',
|
2011-06-13 23:18:57 -05:00
|
|
|
associator: IPA.serial_associator,
|
|
|
|
link: link
|
|
|
|
}).
|
2011-07-06 10:03:04 -05:00
|
|
|
association_facet({
|
|
|
|
name: 'memberof_hbacrule',
|
|
|
|
associator: IPA.serial_associator,
|
|
|
|
add_method: 'add_user',
|
|
|
|
remove_method: 'remove_user',
|
|
|
|
link: link
|
|
|
|
}).
|
|
|
|
association_facet({
|
|
|
|
name: 'memberof_sudorule',
|
|
|
|
associator: IPA.serial_associator,
|
|
|
|
add_method: 'add_user',
|
|
|
|
remove_method: 'remove_user',
|
|
|
|
link: link
|
|
|
|
}).
|
2011-06-13 23:18:57 -05:00
|
|
|
standard_association_facets({
|
|
|
|
link: link
|
2011-03-18 15:43:54 -05:00
|
|
|
}).
|
2011-04-18 10:59:50 -05:00
|
|
|
adder_dialog({
|
2011-06-20 20:20:13 -05:00
|
|
|
fields: [
|
|
|
|
{
|
|
|
|
factory : IPA.text_widget,
|
|
|
|
undo: false,
|
|
|
|
optional: true,
|
|
|
|
name:'uid'
|
|
|
|
},
|
|
|
|
'givenname', 'sn']
|
2011-04-18 10:59:50 -05:00
|
|
|
});
|
2011-03-18 15:43:54 -05:00
|
|
|
|
2011-05-13 20:05:35 -05:00
|
|
|
return builder.build();
|
2011-01-14 11:16:25 -06:00
|
|
|
};
|
|
|
|
|
2011-02-03 21:42:50 -06:00
|
|
|
IPA.user_status_widget = function(spec) {
|
2010-11-08 11:57:16 -06:00
|
|
|
|
2010-12-09 14:20:40 -06:00
|
|
|
spec = spec || {};
|
2010-11-18 20:17:14 -06:00
|
|
|
|
2011-01-12 18:51:22 -06:00
|
|
|
var that = IPA.widget(spec);
|
2010-11-16 18:10:40 -06:00
|
|
|
|
2011-06-28 10:59:09 -05:00
|
|
|
that.create = function(container) {
|
|
|
|
|
|
|
|
that.widget_create(container);
|
|
|
|
|
|
|
|
that.status_span = $('<span/>', {
|
|
|
|
name: 'status'
|
|
|
|
}).appendTo(container);
|
|
|
|
|
|
|
|
container.append(': ');
|
|
|
|
|
|
|
|
that.status_link = $('<a/>', {
|
|
|
|
name: 'link',
|
|
|
|
click: function() {
|
|
|
|
|
|
|
|
var entity = IPA.get_entity(that.entity_name);
|
|
|
|
var facet_name = IPA.current_facet(entity);
|
|
|
|
var facet = entity.get_facet(facet_name);
|
|
|
|
|
|
|
|
if (facet.is_dirty()) {
|
|
|
|
var dialog = IPA.dirty_dialog({
|
|
|
|
facet: facet
|
|
|
|
});
|
|
|
|
|
|
|
|
dialog.callback = function() {
|
|
|
|
that.show_activation_dialog();
|
|
|
|
};
|
|
|
|
|
|
|
|
dialog.init();
|
|
|
|
dialog.open(container);
|
|
|
|
|
|
|
|
} else {
|
|
|
|
that.show_activation_dialog();
|
|
|
|
}
|
|
|
|
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
}).appendTo(container);
|
|
|
|
};
|
|
|
|
|
2010-12-09 14:20:40 -06:00
|
|
|
that.update = function() {
|
2010-11-16 18:10:40 -06:00
|
|
|
|
2010-12-09 14:20:40 -06:00
|
|
|
if (!that.record) return;
|
HBAC Details Page
The UI framework has been extended to include a collection of widgets:
- ipa_widget: base class
- ipa_text_widget: text field
- ipa_radio_widget: radio button
- ipa_textarea_widget: textarea
- ipa_button_widget: button
- ipa_column_widget: column for table
- ipa_table_widget: table
These widgets can be used to create input controls. They can also be
extended to create custom controls.
The framework has also been enhanced to support custom layouts. This
can be used to change the look of the application without changing
the code. Initially this is only available in details section.
Layout consists of a collection of HTML templates. Each template is a
complete and valid HTML file representing a portion of a page. The
template will be loaded and initialized by the code, then filled with
the data from the server. The layouts are located in
install/static/layouts/<name> folder.
By default, if no templates are used, the fields in the details page
are rendered vertically using dd/dt/dd tags. For pages that require
different layout, a custom UI needs to be developed. There are two ways
to do that:
- write a custom widget to generate the UI dynamically
- create an HTML template and write the initialization code
For components that are quite complex or used frequently, it's might
be better to use the first method. For simple pages that are used only
in one location or need to support customization, the second method
might be preferable. Other benefits of templates:
- cleaner code and UI separation
- more flexibility in customization
- new pages can be developed quickly and require less coding
- multiple templates can be used with the same initialization code
- easier to maintain
The HBAC details page has been implemented using both methods. By
default it will use custom widgets to generate the page. To use a
custom layout, add the following parameter to the URL, then reload
the page:
&layout=<name>
Currently the only available layout is 'default' which produces the
same look as the custom widgets.
The HBAC details page is usable, but it still needs additional work.
The access time is not working yet. There is no undo button, hint,
or validation yet.
The table in the association facet has also been changed to use
ipa_association_widget which is derived from ipa_table_widget.
The Makefile has been updated to include the layouts. The unit tests
have been updated as well.
2010-11-02 20:16:55 -05:00
|
|
|
|
2010-12-09 14:20:40 -06:00
|
|
|
var lock_field = 'nsaccountlock';
|
Certificate management for services.
This is an initial implementation of certificate management for
services. It addresses the mechanism required to view and update
certificates. The complete UI implementation will be addressed in
subsequent patches.
On the server side, the service.py has been modified to define
usercertificate in the service object's takes_params. This is
needed to generate the proper JSON metadata which is needed by
the UI. It also has been modified to accept null certificate for
deletion.
On the client side, the service details page has been modified to
display the base64-encoded certificate in a text area. When the
page is saved, the action handler will store the base64-encoded
certificate in the proper JSON structure. Also the service name
and service hostname are now displayed in separate fields.
The details configuration has been modified to support displaying
and updating certificates. The structure is changed to use maps
to define sections and fields. A section contains name, label,
and an array of fields. A field contains name, label, setup
function, load function, and save function. This is used to
implement custom interface and behavior for certificates.
All other entities, test cases, and test data have been updated
accordingly. Some functions and variables have been renamed to
improve clarity and consistency.
2010-10-07 14:02:44 -05:00
|
|
|
|
2011-06-28 10:59:09 -05:00
|
|
|
var locked = that.record[lock_field] &&
|
2010-12-09 14:20:40 -06:00
|
|
|
that.record[lock_field][0].toLowerCase() === 'true';
|
2011-06-28 10:59:09 -05:00
|
|
|
|
|
|
|
var status;
|
|
|
|
var action;
|
|
|
|
|
2010-12-09 14:20:40 -06:00
|
|
|
if (locked) {
|
2011-06-28 10:59:09 -05:00
|
|
|
status = IPA.messages.objects.user.inactive;
|
|
|
|
action = 'activate';
|
2010-11-08 11:57:16 -06:00
|
|
|
|
2011-06-28 10:59:09 -05:00
|
|
|
} else {
|
|
|
|
status = IPA.messages.objects.user.active;
|
|
|
|
action = 'deactivate';
|
2010-12-09 14:20:40 -06:00
|
|
|
}
|
2010-08-17 13:28:29 -05:00
|
|
|
|
2011-06-28 10:59:09 -05:00
|
|
|
that.status_span.html(status);
|
|
|
|
that.status_link.attr('href', action);
|
|
|
|
|
|
|
|
var message = IPA.messages.objects.user.activation_link;
|
|
|
|
var action_label = IPA.messages.objects.user[action];
|
|
|
|
message = message.replace('${action}', action_label);
|
|
|
|
|
|
|
|
that.status_link.html(message);
|
|
|
|
};
|
|
|
|
|
|
|
|
that.show_activation_dialog = function() {
|
|
|
|
|
|
|
|
var action = that.status_link.attr('href');
|
|
|
|
|
|
|
|
var message = IPA.messages.objects.user.activation_confirmation;
|
|
|
|
var action_label = IPA.messages.objects.user[action];
|
|
|
|
message = message.replace('${action}', action_label.toLocaleLowerCase());
|
|
|
|
|
|
|
|
var dialog = IPA.dialog({
|
|
|
|
'title': IPA.messages.dialogs.confirmation
|
|
|
|
});
|
|
|
|
|
|
|
|
dialog.create = function() {
|
|
|
|
dialog.container.append(message);
|
|
|
|
};
|
|
|
|
|
|
|
|
dialog.add_button(action_label, function() {
|
|
|
|
that.set_status(
|
|
|
|
action == 'activate',
|
|
|
|
function(data, textStatus, xhr) {
|
|
|
|
var entity = IPA.get_entity(that.entity_name);
|
|
|
|
var facet_name = IPA.current_facet(entity);
|
|
|
|
var facet = entity.get_facet(facet_name);
|
|
|
|
facet.refresh();
|
|
|
|
dialog.close();
|
|
|
|
}
|
|
|
|
);
|
|
|
|
});
|
|
|
|
|
|
|
|
dialog.add_button(IPA.messages.buttons.cancel, function() {
|
|
|
|
dialog.close();
|
|
|
|
});
|
|
|
|
|
|
|
|
dialog.init();
|
|
|
|
|
|
|
|
dialog.open(that.container);
|
|
|
|
};
|
|
|
|
|
|
|
|
that.set_status = function(enabled, on_success, on_error) {
|
|
|
|
|
|
|
|
var pkey = IPA.nav.get_state('user-pkey');
|
|
|
|
var method = enabled ? 'enable' : 'disable';
|
2010-12-09 14:20:40 -06:00
|
|
|
|
2011-06-28 10:59:09 -05:00
|
|
|
IPA.command({
|
|
|
|
entity: 'user',
|
|
|
|
method: method,
|
|
|
|
args: [pkey],
|
|
|
|
on_success: on_success,
|
|
|
|
on_error: on_error
|
|
|
|
}).execute();
|
2010-12-09 14:20:40 -06:00
|
|
|
};
|
2010-10-15 13:06:23 -05:00
|
|
|
|
2010-12-09 14:20:40 -06:00
|
|
|
return that;
|
2011-02-03 21:42:50 -06:00
|
|
|
};
|
2010-10-15 13:06:23 -05:00
|
|
|
|
2011-02-03 21:42:50 -06:00
|
|
|
IPA.user_password_widget = function(spec) {
|
2010-11-18 20:17:14 -06:00
|
|
|
|
2011-02-03 21:42:50 -06:00
|
|
|
spec = spec || {};
|
2010-11-16 18:10:40 -06:00
|
|
|
|
2011-02-03 21:42:50 -06:00
|
|
|
var that = IPA.widget(spec);
|
2010-11-16 18:10:40 -06:00
|
|
|
|
2011-02-03 21:42:50 -06:00
|
|
|
that.create = function(container) {
|
2011-03-04 14:32:50 -06:00
|
|
|
|
2011-02-03 21:42:50 -06:00
|
|
|
$('<a/>', {
|
|
|
|
href: 'jslink',
|
|
|
|
title: 'userpassword',
|
2011-02-16 12:46:59 -06:00
|
|
|
text: IPA.messages.objects.user.reset_password,
|
2011-03-04 14:32:50 -06:00
|
|
|
click: function() {
|
|
|
|
that.show_dialog();
|
|
|
|
return false;
|
|
|
|
}
|
2011-02-03 21:42:50 -06:00
|
|
|
}).appendTo(container);
|
|
|
|
};
|
2010-11-16 18:10:40 -06:00
|
|
|
|
2011-03-04 14:32:50 -06:00
|
|
|
that.show_dialog = function() {
|
2011-02-03 21:42:50 -06:00
|
|
|
|
2011-03-04 14:32:50 -06:00
|
|
|
var dialog = IPA.dialog({
|
|
|
|
title: IPA.messages.objects.user.reset_password,
|
|
|
|
width: 400
|
|
|
|
});
|
2011-02-03 21:42:50 -06:00
|
|
|
|
2011-03-04 14:32:50 -06:00
|
|
|
dialog.create = function() {
|
2011-02-03 21:42:50 -06:00
|
|
|
|
2011-03-04 14:32:50 -06:00
|
|
|
var dl = $('<dl/>', {
|
|
|
|
'class': 'modal'
|
|
|
|
}).appendTo(dialog.container);
|
|
|
|
|
|
|
|
$('<dt/>', {
|
|
|
|
html: IPA.messages.objects.user.new_password
|
|
|
|
}).appendTo(dl);
|
|
|
|
|
|
|
|
var dd = $('<dd/>', {
|
|
|
|
'class': 'first'
|
|
|
|
}).appendTo(dl);
|
|
|
|
|
|
|
|
dialog.password1 = $('<input/>', {
|
|
|
|
type: 'password'
|
|
|
|
}).appendTo(dd);
|
|
|
|
|
|
|
|
$('<dt/>', {
|
|
|
|
html: IPA.messages.objects.user.repeat_password
|
|
|
|
}).appendTo(dl);
|
|
|
|
|
|
|
|
dd = $('<dd/>', {
|
|
|
|
'class': 'first'
|
|
|
|
}).appendTo(dl);
|
2010-11-16 18:10:40 -06:00
|
|
|
|
2011-03-04 14:32:50 -06:00
|
|
|
dialog.password2 = $('<input/>', {
|
|
|
|
type: 'password'
|
|
|
|
}).appendTo(dd);
|
|
|
|
};
|
|
|
|
|
|
|
|
dialog.add_button(IPA.messages.objects.user.reset_password, function() {
|
2011-02-03 21:42:50 -06:00
|
|
|
|
2011-03-04 14:32:50 -06:00
|
|
|
var new_password = dialog.password1.val();
|
|
|
|
var repeat_password = dialog.password2.val();
|
2011-02-21 18:36:42 -06:00
|
|
|
|
2011-03-04 14:32:50 -06:00
|
|
|
if (new_password != repeat_password) {
|
2011-02-21 18:36:42 -06:00
|
|
|
alert(IPA.messages.objects.user.password_must_match);
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
2011-06-28 12:39:10 -05:00
|
|
|
var user_pkey = IPA.nav.get_state('user-pkey');
|
2011-02-21 18:36:42 -06:00
|
|
|
|
2011-03-04 14:32:50 -06:00
|
|
|
var args;
|
|
|
|
if (user_pkey === IPA.whoami.uid[0]) {
|
|
|
|
args = [];
|
|
|
|
} else {
|
|
|
|
args = [user_pkey];
|
|
|
|
}
|
|
|
|
|
|
|
|
var command = IPA.command({
|
|
|
|
method: 'passwd',
|
|
|
|
args: args,
|
|
|
|
options: {
|
|
|
|
password: new_password
|
|
|
|
},
|
|
|
|
on_success: function(data, text_status, xhr) {
|
|
|
|
alert(IPA.messages.objects.user.password_change_complete);
|
|
|
|
dialog.close();
|
|
|
|
},
|
|
|
|
on_error: function(xhr, text_status, error_thrown) {
|
|
|
|
dialog.close();
|
|
|
|
}
|
|
|
|
});
|
|
|
|
|
|
|
|
command.execute();
|
|
|
|
});
|
|
|
|
|
|
|
|
dialog.add_button(IPA.messages.buttons.cancel, function() {
|
|
|
|
dialog.close();
|
2011-02-03 21:42:50 -06:00
|
|
|
});
|
2010-08-17 13:28:29 -05:00
|
|
|
|
2011-03-04 14:32:50 -06:00
|
|
|
dialog.init();
|
|
|
|
|
|
|
|
dialog.open(that.container);
|
|
|
|
};
|
2010-11-16 18:10:40 -06:00
|
|
|
|
2011-02-03 21:42:50 -06:00
|
|
|
return that;
|
|
|
|
};
|