IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity

webui: caacl

Browse Source 
Reviewed-By: Martin Basti <mbasti@redhat.com>
This commit is contained in:
Petr Vobornik 2015-07-08 12:11:02 +02:00 committed by Tomas Babej
parent a3727387ee
commit 927391125c
7 changed files with 414 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
install/ui/doc/categories.json
View File

@ -256,6 +256,7 @@
"topology",
"user",
"plugins.api_browser",
"plugins.caacl",
"plugins.certprofile",
"plugins.load",
"plugins.login",

1
install/ui/src/freeipa/app.js
View File

@ -29,6 +29,7 @@ define([
'./aci',
'./automember',
'./automount',
'./plugins/caacl',
'./plugins/certprofile',
'./dns',
'./group',

3
install/ui/src/freeipa/certificate.js
View File

@ -1024,7 +1024,8 @@ exp.facet_group = {
label: '@i18n:tabs.cert',
facets: {
certificates: 'cert_search',
profiles: 'certprofile_search'
profiles: 'certprofile_search',
acls: 'caacl_search'
}
};

5
install/ui/src/freeipa/navigation/menu_spec.js
View File

@ -137,6 +137,11 @@ var nav = {};
entity: 'cert',
facet: 'search',
hidden: true
},
{
entity: 'caacl',
facet: 'search',
hidden: true
}
]
},

379
install/ui/src/freeipa/plugins/caacl.js Normal file
View File

@ -0,0 +1,379 @@
//
// Copyright (C) 2015 FreeIPA Contributors see COPYING for license
//
define([
'../ipa',
'../jquery',
'../phases',
'../reg',
'../certificate',
'../rule'
],
function(IPA, $, phases, reg, cert) {
/**
* caacl module
* @class plugins.caacl
* @singleton
*/
var caacl = IPA.caacl = {
remove_method_priority: IPA.config.default_priority - 1
};
var make_caacl_spec = function() {
var spec = {
name: 'caacl',
facets: [
{
$type: 'search',
disable_facet_tabs: false,
tabs_in_sidebar: true,
tab_label: '@mo:caacl.label',
facet_groups: [cert.facet_group],
facet_group: 'certificates',
row_enabled_attribute: 'ipaenabledflag',
columns: [
'cn',
{
name: 'ipaenabledflag',
label: '@i18n:status.label',
formatter: 'boolean_status'
},
'description'
],
actions: [
'batch_disable',
'batch_enable'
],
control_buttons: [
{
name: 'disable',
label: '@i18n:buttons.disable',
icon: 'fa-minus'
},
{
name: 'enable',
label: '@i18n:buttons.enable',
icon: 'fa-check'
}
]
},
{
$type: 'details',
$factory: IPA.sudorule_details_facet,
disable_facet_tabs: true,
command_mode: 'info',
actions: [
'enable',
'disable',
'delete'
],
header_actions: ['enable', 'disable', 'delete'],
state: {
evaluators: [
{
$factory: IPA.enable_state_evaluator,
field: 'ipaenabledflag'
}
],
summary_conditions: [
IPA.enabled_summary_cond,
IPA.disabled_summary_cond
]
}
}
],
adder_dialog: {
fields: [
'cn',
{
$type: 'textarea',
name: 'description'
}
]
}
};
add_caacl_details_facet_widgets(spec.facets[1]);
return spec;
};
/**
* @ignore
* @param {Object} facet spec
*/
var add_caacl_details_facet_widgets = function (spec) {
//
// General
//
spec.fields = [
{
name: 'cn',
read_only: true,
widget: 'general.cn'
},
{
$type: 'textarea',
name: 'description',
widget: 'general.description'
}
];
spec.widgets = [
{
$type: 'details_section',
name: 'general',
label: '@i18n:details.general',
widgets: [
{
name: 'cn'
},
{
$type: 'textarea',
name: 'description'
}
]
}
];
//
// Cert Profiles
//
spec.fields.push(
{
$type: 'radio',
name: 'ipacertprofilecategory',
widget: 'certprofile.rule.ipacertprofilecategory'
},
{
$type: 'rule_association_table',
name: 'ipamembercertprofile_certprofile',
widget: 'certprofile.rule.ipamembercertprofile_certprofile',
priority: IPA.caacl.remove_method_priority
}
);
spec.widgets.push(
{
$factory: IPA.section,
name: 'certprofile',
label: '@i18n:objects.caacl.profile',
widgets: [
{
$factory: IPA.rule_details_widget,
name: 'rule',
radio_name: 'ipacertprofilecategory',
options: [
{ value: 'all',
label: '@i18n:objects.caacl.any_profile' },
{ value: '',
label: '@i18n:objects.caacl.specified_profiles' }
],
tables: [
{ name: 'ipamembercertprofile_certprofile' }
],
widgets: [
{
$type: 'rule_association_table',
id: 'caacl-ipamembercertprofile_certprofile',
name: 'ipamembercertprofile_certprofile',
add_method: 'add_profile',
remove_method: 'remove_profile',
add_title: '@i18n:association.add.member',
remove_title: '@i18n:association.remove.member'
}
]
}
]
}
);
//
// Who
//
spec.fields.push(
// users
{
$type: 'radio',
name: 'usercategory',
widget: 'who.user.usercategory'
},
{
$type: 'rule_association_table',
name: 'memberuser_user',
widget: 'who.user.memberuser_user',
priority: IPA.caacl.remove_method_priority
},
{
$type: 'rule_association_table',
name: 'memberuser_group',
widget: 'who.user.memberuser_group',
priority: IPA.caacl.remove_method_priority
},
// hosts
{
$type: 'radio',
name: 'hostcategory',
widget: 'who.host.hostcategory'
},
{
$type: 'rule_association_table',
name: 'memberhost_host',
widget: 'who.host.memberhost_host',
priority: IPA.caacl.remove_method_priority
},
{
$type: 'rule_association_table',
name: 'memberhost_hostgroup',
widget: 'who.host.memberhost_hostgroup',
priority: IPA.caacl.remove_method_priority
},
// services
{
$type: 'radio',
name: 'servicecategory',
widget: 'who.service.servicecategory'
},
{
$type: 'rule_association_table',
name: 'memberservice_service',
widget: 'who.service.memberservice_service',
priority: IPA.caacl.remove_method_priority
}
);
spec.widgets.push(
{
$factory: IPA.section,
name: 'who',
label: '@i18n:objects.caacl.who',
widgets: [
{
$factory: IPA.rule_details_widget,
name: 'user',
radio_name: 'usercategory',
options: [
{ value: 'all',
label: '@i18n:objects.caacl.anyone' },
{ value: '',
label: '@i18n:objects.caacl.specified_users' }
],
tables: [
{ name: 'memberuser_user' },
{ name: 'memberuser_group' }
],
widgets: [
{
$type: 'rule_association_table',
id: 'caacl-memberuser_user',
name: 'memberuser_user',
add_method: 'add_user',
remove_method: 'remove_user',
add_title: '@i18n:association.add.member',
remove_title: '@i18n:association.remove.member'
},
{
$type: 'rule_association_table',
id: 'caacl-memberuser_group',
name: 'memberuser_group',
add_method: 'add_user',
remove_method: 'remove_user',
add_title: '@i18n:association.add.member',
remove_title: '@i18n:association.remove.member'
}
]
},
{
$factory: IPA.rule_details_widget,
name: 'host',
radio_name: 'hostcategory',
options: [
{
'value': 'all',
'label': '@i18n:objects.caacl.any_host'
},
{
'value': '',
'label': '@i18n:objects.caacl.specified_hosts'
}
],
tables: [
{ 'name': 'memberhost_host' },
{ 'name': 'memberhost_hostgroup' }
],
widgets: [
{
$type: 'rule_association_table',
id: 'caacl-memberuser_user',
name: 'memberhost_host',
add_method: 'add_host',
remove_method: 'remove_host',
add_title: '@i18n:association.add.member',
remove_title: '@i18n:association.remove.member'
},
{
$type: 'rule_association_table',
id: 'caacl-memberuser_group',
name: 'memberhost_hostgroup',
add_method: 'add_host',
remove_method: 'remove_host',
add_title: '@i18n:association.add.member',
remove_title: '@i18n:association.remove.member'
}
]
},
{
$factory: IPA.rule_details_widget,
name: 'service',
radio_name: 'servicecategory',
options: [
{ 'value': 'all', 'label': '@i18n:objects.caacl.any_service' },
{ 'value': '', 'label': '@i18n:objects.caacl.specified_services' }
],
tables: [
{ 'name': 'memberservice_service' }
],
widgets: [
{
$type: 'rule_association_table',
id: 'caacl-memberservice_service',
name: 'memberservice_service',
add_method: 'add_service',
remove_method: 'remove_service',
add_title: '@i18n:association.add.member',
remove_title: '@i18n:association.remove.member'
}
]
}
]
}
);
};
/**
* CAACL entity specification object
* @member plugins.caacl
*/
caacl.caacl_spec = make_caacl_spec();
/**
* Register entity
* @member plugins.caacl
*/
caacl.register = function() {
var e = reg.entity;
e.register({type: 'caacl', spec: caacl.caacl_spec});
};
phases.on('registration', caacl.register);
return caacl;
});

13
install/ui/test/data/ipa_init.json
View File

@ -203,6 +203,19 @@
"indirect": "Indirect",
"map_type": "Map Type"
},
"caacl": {
"any_host": "Any Host",
"any_service": "Any Service",
"any_profile": "Any Profile",
"anyone": "Anyone",
"ipaenabledflag": "Rule status",
"profile": "Profiles",
"specified_hosts": "Specified Hosts and Groups",
"specified_profiles": "Specified Profiles",
"specified_services": "Specified Services and Groups",
"specified_users": "Specified Users and Groups",
"who": "Permitted to have certificates issued"
},
"cert": {
"aa_compromise": "AA Compromise",
"affiliation_changed": "Affiliation Changed",

13
ipalib/plugins/internal.py
View File

@ -347,6 +347,19 @@ class i18n_messages(Command):
"direct": _("Direct"),
"indirect": _("Indirect"),
},
"caacl": {
"any_host": _("Any Host"),
"any_service": _("Any Service"),
"any_profile": _("Any Profile"),
"anyone": _("Anyone"),
"ipaenabledflag": _("Rule status"),
"profile": _("Profiles"),
"specified_hosts": _("Specified Hosts and Groups"),
"specified_profiles": _("Specified Profiles"),
"specified_services": _("Specified Services and Groups"),
"specified_users": _("Specified Users and Groups"),
"who": _("Permitted to have certificates issued"),
},
"cert": {
"aa_compromise": _("AA Compromise"),
"affiliation_changed": _("Affiliation Changed"),