IntenseWebs/grafana
3
0
Fork 0
mirror of https://github.com/grafana/grafana.git synced 2025-02-25 18:55:37 -06:00
Code Issues Packages Projects Releases Wiki Activity
eea28172e0
grafana/public/app/features/admin/ldap/LdapSettingsPage.tsx

359 lines
13 KiB
TypeScript
Raw Normal View History

LDAP: SSO Configuration page (#91875) * Init screen for LDAP UI * add ldap drawer * update routes * update definitions * add definitions for ldap configurations * improve readibility * remove whitespace * clean up * Adjust LdapSettingsPage * adjust form autocomplete from backend call
2024-08-20 10:31:13 -05:00
import { css } from '@emotion/css';
import { useEffect, useState } from 'react';
import { FormProvider, useForm } from 'react-hook-form';
import { connect } from 'react-redux';
import { AppEvents, GrafanaTheme2, NavModelItem } from '@grafana/data';
import { getBackendSrv, getAppEvents } from '@grafana/runtime';
SSO LDAP: Add LDAP settings drawer (#92199) * Add LdapDrawer component * Add success message for discarding LDAP settings * Add Use SSL tooltip * Add min tls version field * Change alert error to alert success * Add tls ciphers field * Update i18n * rename ssl for tls * rename ldap to LDAP
2024-08-22 10:16:18 -05:00
import { useStyles2, Alert, Box, Button, Field, Input, Stack, Text, TextLink } from '@grafana/ui';
LDAP: SSO Configuration page (#91875) * Init screen for LDAP UI * add ldap drawer * update routes * update definitions * add definitions for ldap configurations * improve readibility * remove whitespace * clean up * Adjust LdapSettingsPage * adjust form autocomplete from backend call
2024-08-20 10:31:13 -05:00
import { Page } from 'app/core/components/Page/Page';
import config from 'app/core/config';
import { t, Trans } from 'app/core/internationalization';
import { Loader } from 'app/features/plugins/admin/components/Loader';
SSO LDAP: Add configuration for root ca, client key and client certificate (#92866) * Add missing properties with `_value` prefix * Add RadioButtonGrpoup * Add file/value section for certs * Add mapping for keys and certificates * Rename base and file types * Add styles * Add base64 values configuration flags * Add function to render root ca certificate contents * generate i18n files
2024-09-04 05:19:45 -05:00
import { LdapPayload, MapKeyCertConfigured, StoreState } from 'app/types';
LDAP: SSO Configuration page (#91875) * Init screen for LDAP UI * add ldap drawer * update routes * update definitions * add definitions for ldap configurations * improve readibility * remove whitespace * clean up * Adjust LdapSettingsPage * adjust form autocomplete from backend call
2024-08-20 10:31:13 -05:00
SSO LDAP: Add LDAP settings drawer (#92199) * Add LdapDrawer component * Add success message for discarding LDAP settings * Add Use SSL tooltip * Add min tls version field * Change alert error to alert success * Add tls ciphers field * Update i18n * rename ssl for tls * rename ldap to LDAP
2024-08-22 10:16:18 -05:00
import { LdapDrawerComponent } from './LdapDrawer';
LDAP: SSO Configuration page (#91875) * Init screen for LDAP UI * add ldap drawer * update routes * update definitions * add definitions for ldap configurations * improve readibility * remove whitespace * clean up * Adjust LdapSettingsPage * adjust form autocomplete from backend call
2024-08-20 10:31:13 -05:00
const appEvents = getAppEvents();
const mapStateToProps = (state: StoreState) => ({
ldapSsoSettings: state.ldap.ldapSsoSettings,
});
const mapDispatchToProps = {};
const connector = connect(mapStateToProps, mapDispatchToProps);
const pageNav: NavModelItem = {
text: 'LDAP',
icon: 'shield',
id: 'LDAP',
};
const emptySettings: LdapPayload = {
id: '',
provider: '',
source: '',
settings: {
activeSyncEnabled: false,
allowSignUp: false,
config: {
servers: [
{
attributes: {},
bind_dn: '',
bind_password: '',
client_cert: '',
SSO LDAP: Add configuration for root ca, client key and client certificate (#92866) * Add missing properties with `_value` prefix * Add RadioButtonGrpoup * Add file/value section for certs * Add mapping for keys and certificates * Rename base and file types * Add styles * Add base64 values configuration flags * Add function to render root ca certificate contents * generate i18n files
2024-09-04 05:19:45 -05:00
client_cert_value: '',
LDAP: SSO Configuration page (#91875) * Init screen for LDAP UI * add ldap drawer * update routes * update definitions * add definitions for ldap configurations * improve readibility * remove whitespace * clean up * Adjust LdapSettingsPage * adjust form autocomplete from backend call
2024-08-20 10:31:13 -05:00
client_key: '',
SSO LDAP: Add configuration for root ca, client key and client certificate (#92866) * Add missing properties with `_value` prefix * Add RadioButtonGrpoup * Add file/value section for certs * Add mapping for keys and certificates * Rename base and file types * Add styles * Add base64 values configuration flags * Add function to render root ca certificate contents * generate i18n files
2024-09-04 05:19:45 -05:00
client_key_value: '',
LDAP: SSO Configuration page (#91875) * Init screen for LDAP UI * add ldap drawer * update routes * update definitions * add definitions for ldap configurations * improve readibility * remove whitespace * clean up * Adjust LdapSettingsPage * adjust form autocomplete from backend call
2024-08-20 10:31:13 -05:00
group_mappings: [],
group_search_base_dns: [],
group_search_filter: '',
group_search_filter_user_attribute: '',
host: '',
min_tls_version: '',
port: 389,
root_ca_cert: '',
SSO LDAP: Add configuration for root ca, client key and client certificate (#92866) * Add missing properties with `_value` prefix * Add RadioButtonGrpoup * Add file/value section for certs * Add mapping for keys and certificates * Rename base and file types * Add styles * Add base64 values configuration flags * Add function to render root ca certificate contents * generate i18n files
2024-09-04 05:19:45 -05:00
root_ca_cert_value: [],
LDAP: SSO Configuration page (#91875) * Init screen for LDAP UI * add ldap drawer * update routes * update definitions * add definitions for ldap configurations * improve readibility * remove whitespace * clean up * Adjust LdapSettingsPage * adjust form autocomplete from backend call
2024-08-20 10:31:13 -05:00
search_base_dns: [],
search_filter: '',
skip_org_role_sync: false,
ssl_skip_verify: false,
start_tls: false,
timeout: 10,
tls_ciphers: [],
tls_skip_verify: false,
use_ssl: false,
},
],
},
enabled: false,
skipOrgRoleSync: false,
syncCron: '',
},
};
export const LdapSettingsPage = () => {
const [isLoading, setIsLoading] = useState(true);
SSO LDAP: Add LDAP settings drawer (#92199) * Add LdapDrawer component * Add success message for discarding LDAP settings * Add Use SSL tooltip * Add min tls version field * Change alert error to alert success * Add tls ciphers field * Update i18n * rename ssl for tls * rename ldap to LDAP
2024-08-22 10:16:18 -05:00
const [isDrawerOpen, setIsDrawerOpen] = useState(false);
LDAP: SSO Configuration page (#91875) * Init screen for LDAP UI * add ldap drawer * update routes * update definitions * add definitions for ldap configurations * improve readibility * remove whitespace * clean up * Adjust LdapSettingsPage * adjust form autocomplete from backend call
2024-08-20 10:31:13 -05:00
SSO LDAP: Add configuration for root ca, client key and client certificate (#92866) * Add missing properties with `_value` prefix * Add RadioButtonGrpoup * Add file/value section for certs * Add mapping for keys and certificates * Rename base and file types * Add styles * Add base64 values configuration flags * Add function to render root ca certificate contents * generate i18n files
2024-09-04 05:19:45 -05:00
const [mapKeyCertConfigured, setMapKeyCertConfigured] = useState<MapKeyCertConfigured>({
// values
rootCaCertValue: false,
clientCertValue: false,
clientKeyCertValue: false,
// paths
rootCaCertPath: false,
clientCertPath: false,
clientKeyCertPath: false,
});
LDAP: SSO Configuration page (#91875) * Init screen for LDAP UI * add ldap drawer * update routes * update definitions * add definitions for ldap configurations * improve readibility * remove whitespace * clean up * Adjust LdapSettingsPage * adjust form autocomplete from backend call
2024-08-20 10:31:13 -05:00
const methods = useForm<LdapPayload>({ defaultValues: emptySettings });
const { getValues, handleSubmit, register, reset } = methods;
const styles = useStyles2(getStyles);
useEffect(() => {
async function init() {
const payload = await getBackendSrv().get<LdapPayload>('/api/v1/sso-settings/ldap');
if (!payload || !payload.settings || !payload.settings.config) {
appEvents.publish({
type: AppEvents.alertError.name,
payload: [t('ldap-settings-page.alert.error-fetching', 'Error fetching LDAP settings')],
});
return;
}
SSO LDAP: Add configuration for root ca, client key and client certificate (#92866) * Add missing properties with `_value` prefix * Add RadioButtonGrpoup * Add file/value section for certs * Add mapping for keys and certificates * Rename base and file types * Add styles * Add base64 values configuration flags * Add function to render root ca certificate contents * generate i18n files
2024-09-04 05:19:45 -05:00
const serverConfig = payload.settings.config.servers[0];
setMapKeyCertConfigured({
rootCaCertValue: serverConfig.root_ca_cert_value?.length > 0,
clientCertValue: serverConfig.client_cert_value !== '',
clientKeyCertValue: serverConfig.client_key_value !== '',
rootCaCertPath: serverConfig.root_ca_cert !== '',
clientCertPath: serverConfig.client_cert !== '',
clientKeyCertPath: serverConfig.client_key !== '',
});
LDAP: SSO Configuration page (#91875) * Init screen for LDAP UI * add ldap drawer * update routes * update definitions * add definitions for ldap configurations * improve readibility * remove whitespace * clean up * Adjust LdapSettingsPage * adjust form autocomplete from backend call
2024-08-20 10:31:13 -05:00
reset(payload);
setIsLoading(false);
}
init();
}, [reset]);
/**
* Display warning if the feature flag is disabled
*/
if (!config.featureToggles.ssoSettingsLDAP) {
return (
<Alert title="invalid configuration">
<Trans i18nKey="ldap-settings-page.alert.feature-flag-disabled">
This page is only accessible by enabling the <strong>ssoSettingsLDAP</strong> feature flag.
</Trans>
</Alert>
);
}
/**
* Save payload to the backend
* @param payload LdapPayload
*/
const putPayload = async (payload: LdapPayload) => {
try {
const result = await getBackendSrv().put('/api/v1/sso-settings/ldap', payload);
if (result) {
appEvents.publish({
type: AppEvents.alertError.name,
payload: [t('ldap-settings-page.alert.error-saving', 'Error saving LDAP settings')],
});
}
appEvents.publish({
type: AppEvents.alertSuccess.name,
payload: [t('ldap-settings-page.alert.saved', 'LDAP settings saved')],
});
} catch (error) {
appEvents.publish({
type: AppEvents.alertError.name,
payload: [t('ldap-settings-page.alert.error-saving', 'Error saving LDAP settings')],
});
}
};
const onErrors = () => {
appEvents.publish({
type: AppEvents.alertError.name,
payload: [t('ldap-settings-page.alert.error-validate-form', 'Error validating LDAP settings')],
});
};
/**
* Button's Actions
*/
const submitAndEnableLdapSettings = (payload: LdapPayload) => {
payload.settings.enabled = true;
putPayload(payload);
};
const saveForm = () => {
putPayload(getValues());
};
const discardForm = async () => {
try {
setIsLoading(true);
await getBackendSrv().delete('/api/v1/sso-settings/ldap');
const payload = await getBackendSrv().get<LdapPayload>('/api/v1/sso-settings/ldap');
if (!payload || !payload.settings || !payload.settings.config) {
appEvents.publish({
type: AppEvents.alertError.name,
payload: [t('ldap-settings-page.alert.error-update', 'Error updating LDAP settings')],
});
return;
}
SSO LDAP: Add LDAP settings drawer (#92199) * Add LdapDrawer component * Add success message for discarding LDAP settings * Add Use SSL tooltip * Add min tls version field * Change alert error to alert success * Add tls ciphers field * Update i18n * rename ssl for tls * rename ldap to LDAP
2024-08-22 10:16:18 -05:00
appEvents.publish({
type: AppEvents.alertSuccess.name,
payload: [t('ldap-settings-page.alert.discard-success', 'LDAP settings discarded')],
});
LDAP: SSO Configuration page (#91875) * Init screen for LDAP UI * add ldap drawer * update routes * update definitions * add definitions for ldap configurations * improve readibility * remove whitespace * clean up * Adjust LdapSettingsPage * adjust form autocomplete from backend call
2024-08-20 10:31:13 -05:00
reset(payload);
} catch (error) {
appEvents.publish({
type: AppEvents.alertError.name,
payload: [t('ldap-settings-page.alert.error-saving', 'Error saving LDAP settings')],
});
} finally {
setIsLoading(false);
}
};
const subTitle = (
<Trans i18nKey="ldap-settings-page.subtitle">
The LDAP integration in Grafana allows your Grafana users to log in with their LDAP credentials. Find out more in
SSO LDAP: Fix documentation render (#93041) * Fix documentation link render * Add i18n changes
2024-09-09 09:32:23 -05:00
our{' '}
<TextLink
href="https://grafana.com/docs/grafana/latest/setup-grafana/configure-security/configure-authentication/ldap/"
external
>
<Trans i18nKey="ldap-settings-page.documentation">documentation</Trans>
</TextLink>
.
LDAP: SSO Configuration page (#91875) * Init screen for LDAP UI * add ldap drawer * update routes * update definitions * add definitions for ldap configurations * improve readibility * remove whitespace * clean up * Adjust LdapSettingsPage * adjust form autocomplete from backend call
2024-08-20 10:31:13 -05:00
</Trans>
);
SSO LDAP: Add login form alert (#93037) * add alert if login form is disabled * add i18n texts
2024-09-06 08:13:22 -05:00
const disabledFormAlert = (
<Alert title={t('ldap-settings-page.login-form-alert.title', 'Basic login disabled')}>
<Trans i18nKey="ldap-settings-page.login-form-alert.description">
Your LDAP configuration is not working because the basic login form is currently disabled. Please enable the
login form to use LDAP authentication. You can enable it on the Authentication page under Auth settings.
</Trans>
</Alert>
);
LDAP: SSO Configuration page (#91875) * Init screen for LDAP UI * add ldap drawer * update routes * update definitions * add definitions for ldap configurations * improve readibility * remove whitespace * clean up * Adjust LdapSettingsPage * adjust form autocomplete from backend call
2024-08-20 10:31:13 -05:00
return (
<Page navId="authentication" pageNav={pageNav} subTitle={subTitle}>
<Page.Contents>
SSO LDAP: Add login form alert (#93037) * add alert if login form is disabled * add i18n texts
2024-09-06 08:13:22 -05:00
{config.disableLoginForm && disabledFormAlert}
LDAP: SSO Configuration page (#91875) * Init screen for LDAP UI * add ldap drawer * update routes * update definitions * add definitions for ldap configurations * improve readibility * remove whitespace * clean up * Adjust LdapSettingsPage * adjust form autocomplete from backend call
2024-08-20 10:31:13 -05:00
<FormProvider {...methods}>
<form onSubmit={handleSubmit(submitAndEnableLdapSettings, onErrors)}>
{isLoading && <Loader />}
{!isLoading && (
<section className={styles.form}>
<h3>
<Trans i18nKey="ldap-settings-page.title">Basic Settings</Trans>
</h3>
<Field
label={t('ldap-settings-page.host.label', 'Server host')}
description={t(
'ldap-settings-page.host.description',
'Hostname or IP address of the LDAP server you wish to connect to.'
)}
>
<Input
id="host"
placeholder={t('ldap-settings-page.host.placeholder', 'example: 127.0.0.1')}
type="text"
{...register('settings.config.servers.0.host', { required: true })}
/>
</Field>
<Field
label={t('ldap-settings-page.bind-dn.label', 'Bind DN')}
description={t(
'ldap-settings-page.bind-dn.description',
'Distinguished name of the account used to bind and authenticate to the LDAP server.'
)}
>
<Input
id="bind-dn"
placeholder={t('ldap-settings-page.bind-dn.placeholder', 'example: cn=admin,dc=grafana,dc=org')}
type="text"
{...register('settings.config.servers.0.bind_dn')}
/>
</Field>
<Field label={t('ldap-settings-page.bind-password.label', 'Bind password')}>
<Input
id="bind-password"
type="text"
{...register('settings.config.servers.0.bind_password', { required: false })}
/>
</Field>
<Field
label={t('ldap-settings-page.search_filter.label', 'Search filter*')}
description={t(
'ldap-settings-page.search_filter.description',
'LDAP search filter used to locate specific entries within the directory.'
)}
>
<Input
id="search_filter"
placeholder={t('ldap-settings-page.search_filter.placeholder', 'example: cn=%s')}
type="text"
{...register('settings.config.servers.0.search_filter', { required: true })}
/>
</Field>
<Field
label={t('ldap-settings-page.search-base-dns.label', 'Search base DNS *')}
description={t(
'ldap-settings-page.search-base-dns.description',
'An array of base dns to search through; separate by commas or spaces.'
)}
>
<Input
id="search-base-dns"
placeholder={t('ldap-settings-page.search-base-dns.placeholder', 'example: "dc=grafana.dc=org"')}
type="text"
{...register('settings.config.servers.0.search_base_dns', { required: true })}
/>
</Field>
SSO LDAP: Add LDAP settings drawer (#92199) * Add LdapDrawer component * Add success message for discarding LDAP settings * Add Use SSL tooltip * Add min tls version field * Change alert error to alert success * Add tls ciphers field * Update i18n * rename ssl for tls * rename ldap to LDAP
2024-08-22 10:16:18 -05:00
<Box borderColor="strong" borderStyle="solid" padding={2} width={68}>
<Stack alignItems={'center'} direction={'row'} gap={2} justifyContent={'space-between'}>
<Stack alignItems={'start'} direction={'column'}>
<Text element="h2">
<Trans i18nKey="ldap-settings-page.advanced-settings-section.title">Advanced Settings</Trans>
</Text>
<Text>
<Trans i18nKey="ldap-settings-page.advanced-settings-section.subtitle">
Mappings, extra security measures, and more.
</Trans>
</Text>
</Stack>
<Button variant="secondary" onClick={() => setIsDrawerOpen(true)}>
<Trans i18nKey="ldap-settings-page.advanced-settings-section.edit.button">Edit</Trans>
</Button>
</Stack>
</Box>
LDAP: SSO Configuration page (#91875) * Init screen for LDAP UI * add ldap drawer * update routes * update definitions * add definitions for ldap configurations * improve readibility * remove whitespace * clean up * Adjust LdapSettingsPage * adjust form autocomplete from backend call
2024-08-20 10:31:13 -05:00
<Box display={'flex'} gap={2} marginTop={5}>
<Stack alignItems={'center'} gap={2}>
<Button type={'submit'}>
<Trans i18nKey="ldap-settings-page.buttons-section.save-and-enable.button">Save and enable</Trans>
</Button>
<Button variant="secondary" onClick={saveForm}>
<Trans i18nKey="ldap-settings-page.buttons-section.save.button">Save</Trans>
</Button>
<Button variant="secondary" onClick={discardForm}>
<Trans i18nKey="ldap-settings-page.buttons-section.discard.button">Discard</Trans>
</Button>
</Stack>
</Box>
</section>
)}
SSO LDAP: Add configuration for root ca, client key and client certificate (#92866) * Add missing properties with `_value` prefix * Add RadioButtonGrpoup * Add file/value section for certs * Add mapping for keys and certificates * Rename base and file types * Add styles * Add base64 values configuration flags * Add function to render root ca certificate contents * generate i18n files
2024-09-04 05:19:45 -05:00
{isDrawerOpen && (
<LdapDrawerComponent
onClose={() => setIsDrawerOpen(false)}
mapKeyCertConfigured={mapKeyCertConfigured}
setMapKeyCertConfigured={setMapKeyCertConfigured}
/>
)}
LDAP: SSO Configuration page (#91875) * Init screen for LDAP UI * add ldap drawer * update routes * update definitions * add definitions for ldap configurations * improve readibility * remove whitespace * clean up * Adjust LdapSettingsPage * adjust form autocomplete from backend call
2024-08-20 10:31:13 -05:00
</form>
</FormProvider>
</Page.Contents>
</Page>
);
};
function getStyles(theme: GrafanaTheme2) {
return {
form: css({
width: theme.spacing(68),
}),
};
}
export default connector(LdapSettingsPage);
Reference in New Issue Copy Permalink