X-Git-Url: https://git.arvados.org/arvados-workbench2.git/blobdiff_plain/96a705a50db3d742fd897c12a236b8a44bbcaffb..4fd42aef3c07c9e4c43bf873afe45e0043755ba0:/src/store/users/users-actions.ts diff --git a/src/store/users/users-actions.ts b/src/store/users/users-actions.ts index 425a2d56..b553b324 100644 --- a/src/store/users/users-actions.ts +++ b/src/store/users/users-actions.ts @@ -8,22 +8,23 @@ import { RootState } from 'store/store'; import { getUserUuid } from "common/getuser"; import { ServiceRepository } from "services/services"; import { dialogActions } from 'store/dialog/dialog-actions'; -import { startSubmit, reset, initialize, stopSubmit } from "redux-form"; +import { startSubmit, reset, stopSubmit } from "redux-form"; import { snackbarActions, SnackbarKind } from 'store/snackbar/snackbar-actions'; import { UserResource } from "models/user"; -import { getResource } from 'store/resources/resources'; +import { filterResources, getResource } from 'store/resources/resources'; import { navigateTo, navigateToUsers, navigateToRootProject } from "store/navigation/navigation-action"; import { authActions } from 'store/auth/auth-action'; import { getTokenV2 } from "models/api-client-authorization"; -import { AddLoginFormData, VIRTUAL_MACHINE_ADD_LOGIN_GROUPS_FIELD, VIRTUAL_MACHINE_ADD_LOGIN_USER_FIELD, VIRTUAL_MACHINE_ADD_LOGIN_VM_FIELD } from "store/virtual-machines/virtual-machines-actions"; +import { VIRTUAL_MACHINE_ADD_LOGIN_GROUPS_FIELD, VIRTUAL_MACHINE_ADD_LOGIN_VM_FIELD } from "store/virtual-machines/virtual-machines-actions"; import { PermissionLevel } from "models/permission"; import { updateResources } from "store/resources/resources-actions"; +import { BuiltinGroups, getBuiltinGroupUuid } from "models/group"; +import { LinkClass, LinkResource } from "models/link"; +import { ResourceKind } from "models/resource"; export const USERS_PANEL_ID = 'usersPanel'; export const USER_ATTRIBUTES_DIALOG = 'userAttributesDialog'; export const USER_CREATE_FORM_NAME = 'userCreateFormName'; -export const USER_MANAGEMENT_DIALOG = 'userManageDialog'; -export const SETUP_SHELL_ACCOUNT_DIALOG = 'setupShellAccountDialog'; export interface UserCreateFormDialogData { email: string; @@ -40,31 +41,37 @@ export const openUserAttributes = (uuid: string) => dispatch(dialogActions.OPEN_DIALOG({ id: USER_ATTRIBUTES_DIALOG, data })); }; -export const openUserManagement = (uuid: string) => - async (dispatch: Dispatch, getState: () => RootState, services: ServiceRepository) => { - const { resources } = getState(); - const data = getResource(uuid)(resources); - dispatch(dialogActions.OPEN_DIALOG({ id: USER_MANAGEMENT_DIALOG, data })); - }; - -export const openSetupShellAccount = (uuid: string) => - async (dispatch: Dispatch, getState: () => RootState, services: ServiceRepository) => { - const { resources } = getState(); - const user = getResource(uuid)(resources); - const virtualMachines = await services.virtualMachineService.list(); - dispatch(initialize(SETUP_SHELL_ACCOUNT_DIALOG, {[VIRTUAL_MACHINE_ADD_LOGIN_USER_FIELD]: user, [VIRTUAL_MACHINE_ADD_LOGIN_GROUPS_FIELD]: []})); - dispatch(dialogActions.OPEN_DIALOG({ id: SETUP_SHELL_ACCOUNT_DIALOG, data: virtualMachines })); - }; - export const loginAs = (uuid: string) => async (dispatch: Dispatch, getState: () => RootState, services: ServiceRepository) => { - const { resources } = getState(); - const data = getResource(uuid)(resources); - const client = await services.apiClientAuthorizationService.create({ ownerUuid: uuid }); - if (data) { - dispatch(authActions.INIT_USER({ user: data, token: getTokenV2(client) })); - window.location.reload(); - dispatch(navigateToRootProject); + const userUuid = getUserUuid(getState()); + if (userUuid === uuid) { + dispatch(snackbarActions.OPEN_SNACKBAR({ + message: 'You are already logged in as this user', + kind: SnackbarKind.WARNING + })); + } else { + try { + const { resources } = getState(); + const data = getResource(uuid)(resources); + const client = await services.apiClientAuthorizationService.create({ ownerUuid: uuid }, false); + if (data) { + dispatch(authActions.INIT_USER({ user: data, token: getTokenV2(client) })); + window.location.reload(); + dispatch(navigateToRootProject); + } + } catch (e) { + if (e.status === 403) { + dispatch(snackbarActions.OPEN_SNACKBAR({ + message: 'You do not have permission to login as this user', + kind: SnackbarKind.WARNING + })); + } else { + dispatch(snackbarActions.OPEN_SNACKBAR({ + message: 'Failed to login as this user', + kind: SnackbarKind.ERROR + })); + } + } } }; @@ -118,35 +125,6 @@ export const createUser = (data: UserCreateFormDialogData) => } }; -export const setupUserVM = (setupData: AddLoginFormData) => - async (dispatch: Dispatch, getState: () => RootState, services: ServiceRepository) => { - dispatch(startSubmit(SETUP_SHELL_ACCOUNT_DIALOG)); - try { - const userResource = await services.userService.get(setupData.user.uuid); - - const resources = await services.userService.setup(setupData.user.uuid); - dispatch(updateResources(resources.items)); - - const permission = await services.permissionService.create({ - headUuid: setupData.vmUuid, - tailUuid: userResource.uuid, - name: PermissionLevel.CAN_LOGIN, - properties: { - username: userResource.username, - groups: setupData.groups, - } - }); - dispatch(updateResources([permission])); - - dispatch(dialogActions.CLOSE_DIALOG({ id: SETUP_SHELL_ACCOUNT_DIALOG })); - dispatch(reset(SETUP_SHELL_ACCOUNT_DIALOG)); - dispatch(snackbarActions.OPEN_SNACKBAR({ message: "User has been added to VM.", hideDuration: 2000, kind: SnackbarKind.SUCCESS })); - } catch (e) { - dispatch(stopSubmit(SETUP_SHELL_ACCOUNT_DIALOG)); - dispatch(snackbarActions.OPEN_SNACKBAR({ message: e.message, hideDuration: 2000, kind: SnackbarKind.ERROR })); - } - }; - export const openUserPanel = () => async (dispatch: Dispatch, getState: () => RootState, services: ServiceRepository) => { const user = getState().auth.user; @@ -158,21 +136,6 @@ export const openUserPanel = () => } }; -export const toggleIsActive = (uuid: string) => - async (dispatch: Dispatch, getState: () => RootState, services: ServiceRepository) => { - const { resources } = getState(); - const data = getResource(uuid)(resources); - const isActive = data!.isActive; - let newActivity; - if (isActive) { - newActivity = await services.userService.unsetup(uuid); - } else { - newActivity = await services.userService.update(uuid, { isActive: true }); - } - dispatch(loadUsersPanel()); - return newActivity; - }; - export const toggleIsAdmin = (uuid: string) => async (dispatch: Dispatch, getState: () => RootState, services: ServiceRepository) => { const { resources } = getState(); @@ -187,3 +150,27 @@ export const loadUsersPanel = () => (dispatch: Dispatch) => { dispatch(userBindedActions.REQUEST_ITEMS()); }; + +export enum UserAccountStatus { + ACTIVE = 'Active', + INACTIVE = 'Inactive', + SETUP = 'Setup', + } + +export const getUserAccountStatus = (state: RootState, uuid: string) => { + const user = getResource(uuid)(state.resources); + // Get membership links for all users group + const allUsersGroupUuid = getBuiltinGroupUuid(state.auth.localCluster, BuiltinGroups.ALL); + const permissions = filterResources((resource: LinkResource) => + resource.kind === ResourceKind.LINK && + resource.linkClass === LinkClass.PERMISSION && + resource.headUuid === allUsersGroupUuid && + resource.tailUuid === uuid + )(state.resources); + + return user && user.isActive + ? UserAccountStatus.ACTIVE + : permissions.length > 0 + ? UserAccountStatus.SETUP + : UserAccountStatus.INACTIVE; +}