2023-01-03 16:15:04 +00:00
|
|
|
import type UserRepresentation from "@keycloak/keycloak-admin-client/lib/defs/userRepresentation";
|
|
|
|
import {
|
|
|
|
AlertVariant,
|
|
|
|
ButtonVariant,
|
|
|
|
DropdownItem,
|
|
|
|
PageSection,
|
|
|
|
Tab,
|
|
|
|
TabTitleText,
|
|
|
|
} from "@patternfly/react-core";
|
|
|
|
import { useState } from "react";
|
|
|
|
import { FormProvider, useForm } from "react-hook-form";
|
|
|
|
import { useTranslation } from "react-i18next";
|
2023-01-18 12:09:49 +00:00
|
|
|
import { useNavigate } from "react-router-dom";
|
2023-01-03 16:15:04 +00:00
|
|
|
|
|
|
|
import { useAlerts } from "../components/alert/Alerts";
|
|
|
|
import { useConfirmDialog } from "../components/confirm-dialog/ConfirmDialog";
|
|
|
|
import { KeycloakSpinner } from "../components/keycloak-spinner/KeycloakSpinner";
|
|
|
|
import {
|
|
|
|
RoutableTabs,
|
|
|
|
useRoutableTab,
|
|
|
|
} from "../components/routable-tabs/RoutableTabs";
|
|
|
|
import { ViewHeader } from "../components/view-header/ViewHeader";
|
|
|
|
import { useAccess } from "../context/access/Access";
|
|
|
|
import { useAdminClient, useFetch } from "../context/auth/AdminClient";
|
|
|
|
import { useRealm } from "../context/realm-context/RealmContext";
|
|
|
|
import { UserProfileProvider } from "../realm-settings/user-profile/UserProfileContext";
|
|
|
|
import { useParams } from "../utils/useParams";
|
|
|
|
import { toUser, UserParams, UserTab } from "./routes/User";
|
|
|
|
import { toUsers } from "./routes/Users";
|
|
|
|
import { UserAttributes } from "./UserAttributes";
|
|
|
|
import { UserConsents } from "./UserConsents";
|
|
|
|
import { UserCredentials } from "./UserCredentials";
|
|
|
|
import { BruteForced, UserForm } from "./UserForm";
|
|
|
|
import { UserGroups } from "./UserGroups";
|
|
|
|
import { UserIdentityProviderLinks } from "./UserIdentityProviderLinks";
|
2023-01-18 11:11:34 +00:00
|
|
|
import {
|
|
|
|
isUserProfileError,
|
|
|
|
userProfileErrorToString,
|
|
|
|
} from "./UserProfileFields";
|
2023-01-03 16:15:04 +00:00
|
|
|
import { UserRoleMapping } from "./UserRoleMapping";
|
|
|
|
import { UserSessions } from "./UserSessions";
|
|
|
|
|
|
|
|
import "./user-section.css";
|
|
|
|
|
|
|
|
export default function EditUser() {
|
|
|
|
const { adminClient } = useAdminClient();
|
|
|
|
const { realm } = useRealm();
|
|
|
|
const { id } = useParams<UserParams>();
|
|
|
|
const { t } = useTranslation("users");
|
|
|
|
const [user, setUser] = useState<UserRepresentation>();
|
|
|
|
const [bruteForced, setBruteForced] = useState<BruteForced>();
|
|
|
|
const [refreshCount, setRefreshCount] = useState(0);
|
|
|
|
const refresh = () => setRefreshCount((count) => count + 1);
|
|
|
|
|
|
|
|
useFetch(
|
|
|
|
async () => {
|
|
|
|
const [user, currentRealm, attackDetection] = await Promise.all([
|
|
|
|
adminClient.users.findOne({ id: id! }),
|
|
|
|
adminClient.realms.findOne({ realm }),
|
|
|
|
adminClient.attackDetection.findOne({ id: id! }),
|
|
|
|
]);
|
|
|
|
|
|
|
|
if (!user || !currentRealm || !attackDetection) {
|
|
|
|
throw new Error(t("common:notFound"));
|
|
|
|
}
|
|
|
|
|
|
|
|
const isBruteForceProtected = currentRealm.bruteForceProtected;
|
|
|
|
const isLocked = isBruteForceProtected && attackDetection.disabled;
|
|
|
|
|
|
|
|
return { user, bruteForced: { isBruteForceProtected, isLocked } };
|
|
|
|
},
|
|
|
|
({ user, bruteForced }) => {
|
|
|
|
setUser(user);
|
|
|
|
setBruteForced(bruteForced);
|
|
|
|
},
|
|
|
|
[refreshCount]
|
|
|
|
);
|
|
|
|
|
|
|
|
if (!user || !bruteForced) {
|
|
|
|
return <KeycloakSpinner />;
|
|
|
|
}
|
|
|
|
|
|
|
|
return (
|
|
|
|
<EditUserForm user={user} bruteForced={bruteForced} refresh={refresh} />
|
|
|
|
);
|
|
|
|
}
|
|
|
|
|
|
|
|
type EditUserFormProps = {
|
|
|
|
user: UserRepresentation;
|
|
|
|
bruteForced: BruteForced;
|
|
|
|
refresh: () => void;
|
|
|
|
};
|
|
|
|
|
|
|
|
const EditUserForm = ({ user, bruteForced, refresh }: EditUserFormProps) => {
|
|
|
|
const { t } = useTranslation("users");
|
|
|
|
const { realm } = useRealm();
|
|
|
|
const { adminClient } = useAdminClient();
|
|
|
|
const { addAlert, addError } = useAlerts();
|
|
|
|
const navigate = useNavigate();
|
|
|
|
const { hasAccess } = useAccess();
|
|
|
|
const userForm = useForm<UserRepresentation>({
|
|
|
|
mode: "onChange",
|
|
|
|
defaultValues: user,
|
|
|
|
});
|
|
|
|
|
|
|
|
const toTab = (tab: UserTab) =>
|
|
|
|
toUser({
|
|
|
|
realm,
|
|
|
|
id: user.id!,
|
|
|
|
tab,
|
|
|
|
});
|
|
|
|
|
|
|
|
const useTab = (tab: UserTab) => useRoutableTab(toTab(tab));
|
|
|
|
|
|
|
|
const settingsTab = useTab("settings");
|
|
|
|
const attributesTab = useTab("attributes");
|
|
|
|
const credentialsTab = useTab("credentials");
|
|
|
|
const roleMappingTab = useTab("role-mapping");
|
|
|
|
const groupsTab = useTab("groups");
|
|
|
|
const consentsTab = useTab("consents");
|
|
|
|
const identityProviderLinksTab = useTab("identity-provider-links");
|
|
|
|
const sessionsTab = useTab("sessions");
|
|
|
|
|
|
|
|
const save = async (formUser: UserRepresentation) => {
|
|
|
|
try {
|
|
|
|
await adminClient.users.update(
|
|
|
|
{ id: user.id! },
|
|
|
|
{
|
|
|
|
...formUser,
|
|
|
|
username: formUser.username?.trim(),
|
|
|
|
attributes: { ...user.attributes, ...formUser.attributes },
|
|
|
|
}
|
|
|
|
);
|
|
|
|
addAlert(t("userSaved"), AlertVariant.success);
|
|
|
|
refresh();
|
|
|
|
} catch (error) {
|
2023-01-18 11:11:34 +00:00
|
|
|
if (isUserProfileError(error)) {
|
|
|
|
addError(userProfileErrorToString(error), error);
|
|
|
|
} else {
|
|
|
|
addError("users:userCreateError", error);
|
|
|
|
}
|
2023-01-03 16:15:04 +00:00
|
|
|
}
|
|
|
|
};
|
|
|
|
|
|
|
|
const [toggleDeleteDialog, DeleteConfirm] = useConfirmDialog({
|
|
|
|
titleKey: "users:deleteConfirm",
|
|
|
|
messageKey: "users:deleteConfirmCurrentUser",
|
|
|
|
continueButtonLabel: "common:delete",
|
|
|
|
continueButtonVariant: ButtonVariant.danger,
|
|
|
|
onConfirm: async () => {
|
|
|
|
try {
|
|
|
|
await adminClient.users.del({ id: user.id! });
|
|
|
|
addAlert(t("userDeletedSuccess"), AlertVariant.success);
|
|
|
|
navigate(toUsers({ realm }));
|
|
|
|
} catch (error) {
|
|
|
|
addError("users:userDeletedError", error);
|
|
|
|
}
|
|
|
|
},
|
|
|
|
});
|
|
|
|
|
|
|
|
const [toggleImpersonateDialog, ImpersonateConfirm] = useConfirmDialog({
|
|
|
|
titleKey: "users:impersonateConfirm",
|
|
|
|
messageKey: "users:impersonateConfirmDialog",
|
|
|
|
continueButtonLabel: "users:impersonate",
|
|
|
|
onConfirm: async () => {
|
|
|
|
try {
|
|
|
|
const data = await adminClient.users.impersonation(
|
|
|
|
{ id: user.id! },
|
|
|
|
{ user: user.id!, realm }
|
|
|
|
);
|
|
|
|
if (data.sameRealm) {
|
|
|
|
window.location = data.redirect;
|
|
|
|
} else {
|
|
|
|
window.open(data.redirect, "_blank");
|
|
|
|
}
|
|
|
|
} catch (error) {
|
|
|
|
addError("users:impersonateError", error);
|
|
|
|
}
|
|
|
|
},
|
|
|
|
});
|
|
|
|
|
|
|
|
return (
|
|
|
|
<>
|
|
|
|
<ImpersonateConfirm />
|
|
|
|
<DeleteConfirm />
|
|
|
|
<ViewHeader
|
|
|
|
titleKey={user.username!}
|
|
|
|
className="kc-username-view-header"
|
|
|
|
divider={false}
|
|
|
|
dropdownItems={[
|
|
|
|
<DropdownItem
|
|
|
|
key="impersonate"
|
|
|
|
isDisabled={!user.access?.impersonate}
|
|
|
|
onClick={() => toggleImpersonateDialog()}
|
|
|
|
>
|
|
|
|
{t("impersonate")}
|
|
|
|
</DropdownItem>,
|
|
|
|
<DropdownItem
|
|
|
|
key="delete"
|
|
|
|
isDisabled={!user.access?.manage}
|
|
|
|
onClick={() => toggleDeleteDialog()}
|
|
|
|
>
|
|
|
|
{t("common:delete")}
|
|
|
|
</DropdownItem>,
|
|
|
|
]}
|
2023-01-16 10:37:01 +00:00
|
|
|
onToggle={(value) => save({ ...user, enabled: value })}
|
|
|
|
isEnabled={user.enabled}
|
2023-01-03 16:15:04 +00:00
|
|
|
/>
|
|
|
|
|
|
|
|
<PageSection variant="light" className="pf-u-p-0">
|
|
|
|
<UserProfileProvider>
|
|
|
|
<FormProvider {...userForm}>
|
|
|
|
<RoutableTabs
|
|
|
|
isBox
|
|
|
|
mountOnEnter
|
|
|
|
defaultLocation={toTab("settings")}
|
|
|
|
>
|
|
|
|
<Tab
|
|
|
|
data-testid="user-details-tab"
|
|
|
|
title={<TabTitleText>{t("common:details")}</TabTitleText>}
|
|
|
|
{...settingsTab}
|
|
|
|
>
|
|
|
|
<PageSection variant="light">
|
|
|
|
<UserForm save={save} user={user} bruteForce={bruteForced} />
|
|
|
|
</PageSection>
|
|
|
|
</Tab>
|
|
|
|
<Tab
|
|
|
|
data-testid="attributes"
|
|
|
|
title={<TabTitleText>{t("common:attributes")}</TabTitleText>}
|
|
|
|
{...attributesTab}
|
|
|
|
>
|
|
|
|
<UserAttributes user={user} />
|
|
|
|
</Tab>
|
|
|
|
<Tab
|
|
|
|
data-testid="credentials"
|
2023-04-07 12:13:43 +00:00
|
|
|
isHidden={!user.access?.view}
|
2023-01-03 16:15:04 +00:00
|
|
|
title={<TabTitleText>{t("common:credentials")}</TabTitleText>}
|
|
|
|
{...credentialsTab}
|
|
|
|
>
|
|
|
|
<UserCredentials user={user} />
|
|
|
|
</Tab>
|
|
|
|
<Tab
|
|
|
|
data-testid="role-mapping-tab"
|
|
|
|
isHidden={!user.access?.mapRoles}
|
|
|
|
title={<TabTitleText>{t("roleMapping")}</TabTitleText>}
|
|
|
|
{...roleMappingTab}
|
|
|
|
>
|
|
|
|
<UserRoleMapping id={user.id!} name={user.username!} />
|
|
|
|
</Tab>
|
2023-02-07 11:30:46 +00:00
|
|
|
{hasAccess("query-groups") && (
|
|
|
|
<Tab
|
|
|
|
data-testid="user-groups-tab"
|
|
|
|
title={<TabTitleText>{t("common:groups")}</TabTitleText>}
|
|
|
|
{...groupsTab}
|
|
|
|
>
|
|
|
|
<UserGroups user={user} />
|
|
|
|
</Tab>
|
|
|
|
)}
|
2023-01-03 16:15:04 +00:00
|
|
|
<Tab
|
|
|
|
data-testid="user-consents-tab"
|
|
|
|
title={<TabTitleText>{t("consents")}</TabTitleText>}
|
|
|
|
{...consentsTab}
|
|
|
|
>
|
|
|
|
<UserConsents />
|
|
|
|
</Tab>
|
|
|
|
{hasAccess("view-identity-providers") && (
|
|
|
|
<Tab
|
|
|
|
data-testid="identity-provider-links-tab"
|
|
|
|
title={
|
|
|
|
<TabTitleText>{t("identityProviderLinks")}</TabTitleText>
|
|
|
|
}
|
|
|
|
{...identityProviderLinksTab}
|
|
|
|
>
|
|
|
|
<UserIdentityProviderLinks userId={user.id!} />
|
|
|
|
</Tab>
|
|
|
|
)}
|
|
|
|
<Tab
|
|
|
|
data-testid="user-sessions-tab"
|
|
|
|
title={<TabTitleText>{t("sessions")}</TabTitleText>}
|
|
|
|
{...sessionsTab}
|
|
|
|
>
|
|
|
|
<UserSessions />
|
|
|
|
</Tab>
|
|
|
|
</RoutableTabs>
|
|
|
|
</FormProvider>
|
|
|
|
</UserProfileProvider>
|
|
|
|
</PageSection>
|
|
|
|
</>
|
|
|
|
);
|
|
|
|
};
|