keycloak-scim/src/clients/service-account/ServiceAccount.tsx

import React, { useContext, useState } from "react";
import { useTranslation } from "react-i18next";
import { AlertVariant } from "@patternfly/react-core";

import type RoleRepresentation from "keycloak-admin/lib/defs/roleRepresentation";
import type { RoleMappingPayload } from "keycloak-admin/lib/defs/roleRepresentation";
import { useAdminClient } from "../../context/auth/AdminClient";
import { RealmContext } from "../../context/realm-context/RealmContext";
import { useAlerts } from "../../components/alert/Alerts";
import {
  CompositeRole,
  RoleMapping,
  Row,
} from "../../components/role-mapping/RoleMapping";

type ServiceAccountProps = {
  clientId: string;
};

export const ServiceAccount = ({ clientId }: ServiceAccountProps) => {
  const { t } = useTranslation("clients");
  const adminClient = useAdminClient();
  const { realm } = useContext(RealmContext);
  const { addAlert } = useAlerts();

  const [hide, setHide] = useState(false);
  const [serviceAccountId, setServiceAccountId] = useState("");
  const [name, setName] = useState("");

  const loader = async () => {
    const serviceAccount = await adminClient.clients.getServiceAccountUser({
      id: clientId,
    });
    setServiceAccountId(serviceAccount.id!);
    const effectiveRoles = await adminClient.users.listCompositeRealmRoleMappings(
      { id: serviceAccount.id! }
    );
    const assignedRoles = await adminClient.users.listRealmRoleMappings({
      id: serviceAccount.id!,
    });

    const clients = await adminClient.clients.find();
    setName(clients.find((c) => c.id === clientId)?.clientId!);
    const clientRoles = (
      await Promise.all(
        clients.map(async (client) => {
          return {
            client,
            roles: await adminClient.users.listClientRoleMappings({
              id: serviceAccount.id!,
              clientUniqueId: client.id!,
            }),
          };
        })
      )
    ).filter((rows) => rows.roles.length > 0);

    const findClient = (role: RoleRepresentation) => {
      const row = clientRoles.filter((row) =>
        row.roles.find((r) => r.id === role.id)
      )[0];
      return row ? row.client : undefined;
    };

    const clientRolesFlat = clientRoles.map((row) => row.roles).flat();

    const addInherentData = await (async () =>
      Promise.all(
        effectiveRoles.map(async (role) => {
          const compositeRoles = await adminClient.roles.getCompositeRolesForRealm(
            { realm, id: role.id! }
          );
          return compositeRoles.length > 0
            ? compositeRoles.map((r) => {
                return { ...r, parent: role };
              })
            : { ...role, parent: undefined };
        })
      ))();
    const uniqueRolesWithParent = addInherentData
      .flat()
      .filter(
        (role, index, array) =>
          array.findIndex((r) => r.id === role.id) === index
      );
    return ([
      ...(hide ? assignedRoles : uniqueRolesWithParent),
      ...clientRolesFlat,
    ] as CompositeRole[])
      .sort((r1, r2) => r1.name!.localeCompare(r2.name!))
      .map((role) => {
        return {
          client: findClient(role),
          role,
        } as Row;
      });
  };

  const assignRoles = async (rows: Row[]) => {
    try {
      const realmRoles = rows
        .filter((row) => row.client === undefined)
        .map((row) => row.role as RoleMappingPayload)
        .flat();
      adminClient.users.addRealmRoleMappings({
        id: serviceAccountId,
        roles: realmRoles,
      });
      await Promise.all(
        rows
          .filter((row) => row.client !== undefined)
          .map((row) =>
            adminClient.users.addClientRoleMappings({
              id: serviceAccountId,
              clientUniqueId: row.client!.id!,
              roles: [row.role as RoleMappingPayload],
            })
          )
      );
      addAlert(t("roleMappingUpdatedSuccess"), AlertVariant.success);
    } catch (error) {
      addAlert(
        t("roleMappingUpdatedError", {
          error: error.response?.data?.errorMessage || error,
        }),
        AlertVariant.danger
      );
    }
  };
  return (
    <RoleMapping
      name={name}
      id={serviceAccountId}
      type={"service-account"}
      loader={loader}
      save={assignRoles}
      onHideRolesToggle={() => setHide(!hide)}
    />
  );
};
changed to use the keycloak datatable (#432) * changed to use the keycloak datatable so it will benifid from a general way tables work in the admin console * null check * changed to use any active tab seems sometimes the tab doesn't get set properly so instead of "mappers" it's still "settings" this change makes it work with both 2021-03-19 12:43:32 +00:00			`import React, { useContext, useState } from "react";`
Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00			`import { useTranslation } from "react-i18next";`
Add scope tab to client scope detail page (#514) * initial version of the scope tab * fixed assign * moved form logic added test * added unassign * fixed merge error * fixed labels 2021-04-20 12:10:00 +00:00			`import { AlertVariant } from "@patternfly/react-core";`
Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00
Extend tsconfig from Snowpack and fix type errors 2021-05-04 17:58:18 +00:00			`import type RoleRepresentation from "keycloak-admin/lib/defs/roleRepresentation";`
			`import type { RoleMappingPayload } from "keycloak-admin/lib/defs/roleRepresentation";`
Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00			`import { useAdminClient } from "../../context/auth/AdminClient";`
			`import { RealmContext } from "../../context/realm-context/RealmContext";`
Created add service account roles assign screen (#465) * service account dialog * create test * fixed types * fixed realm roles selection * disable when no rows are selected Co-authored-by: Eugenia <32821331+jenny-s51@users.noreply.github.com> Co-authored-by: Eugenia <32821331+jenny-s51@users.noreply.github.com> 2021-04-01 14:14:19 +00:00			`import { useAlerts } from "../../components/alert/Alerts";`
Add scope tab to client scope detail page (#514) * initial version of the scope tab * fixed assign * moved form logic added test * added unassign * fixed merge error * fixed labels 2021-04-20 12:10:00 +00:00			`import {`
			`CompositeRole,`
			`RoleMapping,`
			`Row,`
			`} from "../../components/role-mapping/RoleMapping";`
Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00
			`type ServiceAccountProps = {`
			`clientId: string;`
			`};`

			`export const ServiceAccount = ({ clientId }: ServiceAccountProps) => {`
			`const { t } = useTranslation("clients");`
			`const adminClient = useAdminClient();`
			`const { realm } = useContext(RealmContext);`
Created add service account roles assign screen (#465) * service account dialog * create test * fixed types * fixed realm roles selection * disable when no rows are selected Co-authored-by: Eugenia <32821331+jenny-s51@users.noreply.github.com> Co-authored-by: Eugenia <32821331+jenny-s51@users.noreply.github.com> 2021-04-01 14:14:19 +00:00			`const { addAlert } = useAlerts();`

Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00			`const [hide, setHide] = useState(false);`
Created add service account roles assign screen (#465) * service account dialog * create test * fixed types * fixed realm roles selection * disable when no rows are selected Co-authored-by: Eugenia <32821331+jenny-s51@users.noreply.github.com> Co-authored-by: Eugenia <32821331+jenny-s51@users.noreply.github.com> 2021-04-01 14:14:19 +00:00			`const [serviceAccountId, setServiceAccountId] = useState("");`
Add scope tab to client scope detail page (#514) * initial version of the scope tab * fixed assign * moved form logic added test * added unassign * fixed merge error * fixed labels 2021-04-20 12:10:00 +00:00			`const [name, setName] = useState("");`
Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00
			`const loader = async () => {`
			`const serviceAccount = await adminClient.clients.getServiceAccountUser({`
			`id: clientId,`
			`});`
Created add service account roles assign screen (#465) * service account dialog * create test * fixed types * fixed realm roles selection * disable when no rows are selected Co-authored-by: Eugenia <32821331+jenny-s51@users.noreply.github.com> Co-authored-by: Eugenia <32821331+jenny-s51@users.noreply.github.com> 2021-04-01 14:14:19 +00:00			`setServiceAccountId(serviceAccount.id!);`
Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00			`const effectiveRoles = await adminClient.users.listCompositeRealmRoleMappings(`
			`{ id: serviceAccount.id! }`
			`);`
			`const assignedRoles = await adminClient.users.listRealmRoleMappings({`
			`id: serviceAccount.id!,`
			`});`

			`const clients = await adminClient.clients.find();`
Add scope tab to client scope detail page (#514) * initial version of the scope tab * fixed assign * moved form logic added test * added unassign * fixed merge error * fixed labels 2021-04-20 12:10:00 +00:00			`setName(clients.find((c) => c.id === clientId)?.clientId!);`
Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00			`const clientRoles = (`
			`await Promise.all(`
			`clients.map(async (client) => {`
			`return {`
			`client,`
			`roles: await adminClient.users.listClientRoleMappings({`
			`id: serviceAccount.id!,`
			`clientUniqueId: client.id!,`
			`}),`
			`};`
			`})`
			`)`
			`).filter((rows) => rows.roles.length > 0);`

			`const findClient = (role: RoleRepresentation) => {`
			`const row = clientRoles.filter((row) =>`
			`row.roles.find((r) => r.id === role.id)`
			`)[0];`
			`return row ? row.client : undefined;`
			`};`

			`const clientRolesFlat = clientRoles.map((row) => row.roles).flat();`

			`const addInherentData = await (async () =>`
			`Promise.all(`
			`effectiveRoles.map(async (role) => {`
			`const compositeRoles = await adminClient.roles.getCompositeRolesForRealm(`
			`{ realm, id: role.id! }`
			`);`
			`return compositeRoles.length > 0`
			`? compositeRoles.map((r) => {`
			`return { ...r, parent: role };`
			`})`
			`: { ...role, parent: undefined };`
			`})`
			`))();`
			`const uniqueRolesWithParent = addInherentData`
			`.flat()`
			`.filter(`
			`(role, index, array) =>`
			`array.findIndex((r) => r.id === role.id) === index`
			`);`
			`return ([`
			`...(hide ? assignedRoles : uniqueRolesWithParent),`
			`...clientRolesFlat,`
			`] as CompositeRole[])`
			`.sort((r1, r2) => r1.name!.localeCompare(r2.name!))`
			`.map((role) => {`
			`return {`
changed to use the keycloak datatable (#432) * changed to use the keycloak datatable so it will benifid from a general way tables work in the admin console * null check * changed to use any active tab seems sometimes the tab doesn't get set properly so instead of "mappers" it's still "settings" this change makes it work with both 2021-03-19 12:43:32 +00:00			`client: findClient(role),`
			`role,`
			`} as Row;`
Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00			`});`
			`};`

Created add service account roles assign screen (#465) * service account dialog * create test * fixed types * fixed realm roles selection * disable when no rows are selected Co-authored-by: Eugenia <32821331+jenny-s51@users.noreply.github.com> Co-authored-by: Eugenia <32821331+jenny-s51@users.noreply.github.com> 2021-04-01 14:14:19 +00:00			`const assignRoles = async (rows: Row[]) => {`
			`try {`
			`const realmRoles = rows`
			`.filter((row) => row.client === undefined)`
			`.map((row) => row.role as RoleMappingPayload)`
			`.flat();`
			`adminClient.users.addRealmRoleMappings({`
			`id: serviceAccountId,`
			`roles: realmRoles,`
			`});`
			`await Promise.all(`
			`rows`
			`.filter((row) => row.client !== undefined)`
			`.map((row) =>`
			`adminClient.users.addClientRoleMappings({`
			`id: serviceAccountId,`
			`clientUniqueId: row.client!.id!,`
			`roles: [row.role as RoleMappingPayload],`
			`})`
			`)`
			`);`
			`addAlert(t("roleMappingUpdatedSuccess"), AlertVariant.success);`
			`} catch (error) {`
			`addAlert(`
			`t("roleMappingUpdatedError", {`
			`error: error.response?.data?.errorMessage \|\| error,`
			`}),`
			`AlertVariant.danger`
			`);`
			`}`
			`};`
			`return (`
Add scope tab to client scope detail page (#514) * initial version of the scope tab * fixed assign * moved form logic added test * added unassign * fixed merge error * fixed labels 2021-04-20 12:10:00 +00:00			`<RoleMapping`
			`name={name}`
			`id={serviceAccountId}`
			`type={"service-account"}`
			`loader={loader}`
			`save={assignRoles}`
			`onHideRolesToggle={() => setHide(!hide)}`
			`/>`
changed to use the keycloak datatable (#432) * changed to use the keycloak datatable so it will benifid from a general way tables work in the admin console * null check * changed to use any active tab seems sometimes the tab doesn't get set properly so instead of "mappers" it's still "settings" this change makes it work with both 2021-03-19 12:43:32 +00:00			`);`
Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00			`};`