X-Git-Url: https://git.arvados.org/arvados-workbench2.git/blobdiff_plain/8753f89e9f786a12cf72374ffb1c9146b598d285..952bcc8f3ef686a2463931bc3f88457398163df7:/src/store/users/users-actions.ts?ds=sidebyside diff --git a/src/store/users/users-actions.ts b/src/store/users/users-actions.ts index 4780aa72..b553b324 100644 --- a/src/store/users/users-actions.ts +++ b/src/store/users/users-actions.ts @@ -3,29 +3,37 @@ // SPDX-License-Identifier: AGPL-3.0 import { Dispatch } from "redux"; -import { bindDataExplorerActions } from '~/store/data-explorer/data-explorer-action'; -import { RootState } from '~/store/store'; -import { ServiceRepository } from "~/services/services"; -import { dialogActions } from '~/store/dialog/dialog-actions'; -import { startSubmit, reset } from "redux-form"; -import { snackbarActions, SnackbarKind } from '~/store/snackbar/snackbar-actions'; -import { UserResource } from "~/models/user"; -import { getResource } from '~/store/resources/resources'; -import { navigateToProject, navigateToUsers, navigateToRootProject } from "~/store/navigation/navigation-action"; -import { saveApiToken } from '~/store/auth/auth-action'; +import { bindDataExplorerActions } from 'store/data-explorer/data-explorer-action'; +import { RootState } from 'store/store'; +import { getUserUuid } from "common/getuser"; +import { ServiceRepository } from "services/services"; +import { dialogActions } from 'store/dialog/dialog-actions'; +import { startSubmit, reset, stopSubmit } from "redux-form"; +import { snackbarActions, SnackbarKind } from 'store/snackbar/snackbar-actions'; +import { UserResource } from "models/user"; +import { filterResources, getResource } from 'store/resources/resources'; +import { navigateTo, navigateToUsers, navigateToRootProject } from "store/navigation/navigation-action"; +import { authActions } from 'store/auth/auth-action'; +import { getTokenV2 } from "models/api-client-authorization"; +import { VIRTUAL_MACHINE_ADD_LOGIN_GROUPS_FIELD, VIRTUAL_MACHINE_ADD_LOGIN_VM_FIELD } from "store/virtual-machines/virtual-machines-actions"; +import { PermissionLevel } from "models/permission"; +import { updateResources } from "store/resources/resources-actions"; +import { BuiltinGroups, getBuiltinGroupUuid } from "models/group"; +import { LinkClass, LinkResource } from "models/link"; +import { ResourceKind } from "models/resource"; export const USERS_PANEL_ID = 'usersPanel'; export const USER_ATTRIBUTES_DIALOG = 'userAttributesDialog'; export const USER_CREATE_FORM_NAME = 'userCreateFormName'; -export const USER_MANAGEMENT_DIALOG = 'userManageDialog'; -export const SETUP_SHELL_ACCOUNT_DIALOG = 'setupShellAccountDialog'; export interface UserCreateFormDialogData { email: string; - virtualMachineName: string; - groupVirtualMachine: string; + [VIRTUAL_MACHINE_ADD_LOGIN_VM_FIELD]: string; + [VIRTUAL_MACHINE_ADD_LOGIN_GROUPS_FIELD]: string[]; } +export const userBindedActions = bindDataExplorerActions(USERS_PANEL_ID); + export const openUserAttributes = (uuid: string) => (dispatch: Dispatch, getState: () => RootState, services: ServiceRepository) => { const { resources } = getState(); @@ -33,33 +41,44 @@ export const openUserAttributes = (uuid: string) => dispatch(dialogActions.OPEN_DIALOG({ id: USER_ATTRIBUTES_DIALOG, data })); }; -export const openUserManagement = (uuid: string) => - (dispatch: Dispatch, getState: () => RootState, services: ServiceRepository) => { - const { resources } = getState(); - const data = getResource(uuid)(resources); - dispatch(dialogActions.OPEN_DIALOG({ id: USER_MANAGEMENT_DIALOG, data })); - }; - -export const openSetupShellAccount = (uuid: string) => - async (dispatch: Dispatch, getState: () => RootState, services: ServiceRepository) => { - const { resources } = getState(); - const user = getResource(uuid)(resources); - const virtualMachines = await services.virtualMachineService.list(); - dispatch(dialogActions.CLOSE_DIALOG({ id: USER_MANAGEMENT_DIALOG })); - dispatch(dialogActions.OPEN_DIALOG({ id: SETUP_SHELL_ACCOUNT_DIALOG, data: { user, ...virtualMachines } })); - }; - export const loginAs = (uuid: string) => async (dispatch: Dispatch, getState: () => RootState, services: ServiceRepository) => { - const client = await services.apiClientAuthorizationService.get(uuid); - dispatch(saveApiToken(client.apiToken)); - location.reload(); - dispatch(navigateToRootProject); + const userUuid = getUserUuid(getState()); + if (userUuid === uuid) { + dispatch(snackbarActions.OPEN_SNACKBAR({ + message: 'You are already logged in as this user', + kind: SnackbarKind.WARNING + })); + } else { + try { + const { resources } = getState(); + const data = getResource(uuid)(resources); + const client = await services.apiClientAuthorizationService.create({ ownerUuid: uuid }, false); + if (data) { + dispatch(authActions.INIT_USER({ user: data, token: getTokenV2(client) })); + window.location.reload(); + dispatch(navigateToRootProject); + } + } catch (e) { + if (e.status === 403) { + dispatch(snackbarActions.OPEN_SNACKBAR({ + message: 'You do not have permission to login as this user', + kind: SnackbarKind.WARNING + })); + } else { + dispatch(snackbarActions.OPEN_SNACKBAR({ + message: 'Failed to login as this user', + kind: SnackbarKind.ERROR + })); + } + } + } }; export const openUserCreateDialog = () => async (dispatch: Dispatch, getState: () => RootState, services: ServiceRepository) => { - const userUuid = await services.authService.getUuid(); + const userUuid = getUserUuid(getState()); + if (!userUuid) { return; } const user = await services.userService.get(userUuid!); const virtualMachines = await services.virtualMachineService.list(); dispatch(reset(USER_CREATE_FORM_NAME)); @@ -68,15 +87,31 @@ export const openUserCreateDialog = () => export const openUserProjects = (uuid: string) => async (dispatch: Dispatch, getState: () => RootState, services: ServiceRepository) => { - dispatch(navigateToProject(uuid)); + dispatch(navigateTo(uuid)); }; - -export const createUser = (user: UserCreateFormDialogData) => +export const createUser = (data: UserCreateFormDialogData) => async (dispatch: Dispatch, getState: () => RootState, services: ServiceRepository) => { dispatch(startSubmit(USER_CREATE_FORM_NAME)); try { - const newUser = await services.userService.create({ ...user }); + const newUser = await services.userService.create({ + email: data.email, + }); + dispatch(updateResources([newUser])); + + if (data[VIRTUAL_MACHINE_ADD_LOGIN_VM_FIELD]) { + const permission = await services.permissionService.create({ + headUuid: data[VIRTUAL_MACHINE_ADD_LOGIN_VM_FIELD], + tailUuid: newUser.uuid, + name: PermissionLevel.CAN_LOGIN, + properties: { + username: newUser.username, + groups: data.groups, + } + }); + dispatch(updateResources([permission])); + } + dispatch(dialogActions.CLOSE_DIALOG({ id: USER_CREATE_FORM_NAME })); dispatch(reset(USER_CREATE_FORM_NAME)); dispatch(snackbarActions.OPEN_SNACKBAR({ message: "User has been successfully created.", hideDuration: 2000, kind: SnackbarKind.SUCCESS })); @@ -85,6 +120,8 @@ export const createUser = (user: UserCreateFormDialogData) => return newUser; } catch (e) { return; + } finally { + dispatch(stopSubmit(USER_CREATE_FORM_NAME)); } }; @@ -99,34 +136,41 @@ export const openUserPanel = () => } }; -export const toggleIsActive = (uuid: string) => - async (dispatch: Dispatch, getState: () => RootState, services: ServiceRepository) => { - const { resources } = getState(); - const data = getResource(uuid)(resources); - const isActive = data!.isActive; - const newActivity = await services.userService.update(uuid, { ...data, isActive: !isActive }); - dispatch(loadUsersPanel()); - return newActivity; - }; - export const toggleIsAdmin = (uuid: string) => async (dispatch: Dispatch, getState: () => RootState, services: ServiceRepository) => { const { resources } = getState(); const data = getResource(uuid)(resources); const isAdmin = data!.isAdmin; - const newActivity = await services.userService.update(uuid, { ...data, isAdmin: !isAdmin }); + const newActivity = await services.userService.update(uuid, { isAdmin: !isAdmin }); dispatch(loadUsersPanel()); return newActivity; }; -export const userBindedActions = bindDataExplorerActions(USERS_PANEL_ID); - -export const loadUsersData = () => - async (dispatch: Dispatch, getState: () => RootState, services: ServiceRepository) => { - await services.userService.list(); - }; - export const loadUsersPanel = () => (dispatch: Dispatch) => { dispatch(userBindedActions.REQUEST_ITEMS()); - }; \ No newline at end of file + }; + +export enum UserAccountStatus { + ACTIVE = 'Active', + INACTIVE = 'Inactive', + SETUP = 'Setup', + } + +export const getUserAccountStatus = (state: RootState, uuid: string) => { + const user = getResource(uuid)(state.resources); + // Get membership links for all users group + const allUsersGroupUuid = getBuiltinGroupUuid(state.auth.localCluster, BuiltinGroups.ALL); + const permissions = filterResources((resource: LinkResource) => + resource.kind === ResourceKind.LINK && + resource.linkClass === LinkClass.PERMISSION && + resource.headUuid === allUsersGroupUuid && + resource.tailUuid === uuid + )(state.resources); + + return user && user.isActive + ? UserAccountStatus.ACTIVE + : permissions.length > 0 + ? UserAccountStatus.SETUP + : UserAccountStatus.INACTIVE; +}