keycloak-scim/src/clients/service-account/ServiceAccount.tsx

import React, { useState } from "react";
import { useTranslation } from "react-i18next";
import { AlertVariant } from "@patternfly/react-core";

import type UserRepresentation from "keycloak-admin/lib/defs/userRepresentation";
import type { RoleMappingPayload } from "keycloak-admin/lib/defs/roleRepresentation";
import type ClientRepresentation from "keycloak-admin/lib/defs/clientRepresentation";
import { useAdminClient, useFetch } from "../../context/auth/AdminClient";
import { useAlerts } from "../../components/alert/Alerts";
import {
  mapRoles,
  RoleMapping,
  Row,
} from "../../components/role-mapping/RoleMapping";

type ServiceAccountProps = {
  client: ClientRepresentation;
};

export const ServiceAccount = ({ client }: ServiceAccountProps) => {
  const { t } = useTranslation("clients");
  const adminClient = useAdminClient();
  const { addAlert } = useAlerts();

  const [hide, setHide] = useState(false);
  const [serviceAccount, setServiceAccount] = useState<UserRepresentation>();

  useFetch(
    () =>
      adminClient.clients.getServiceAccountUser({
        id: client.id!,
      }),
    (serviceAccount) => setServiceAccount(serviceAccount),
    []
  );

  const loader = async () => {
    const serviceAccount = await adminClient.clients.getServiceAccountUser({
      id: client.id!,
    });
    const id = serviceAccount.id!;

    const assignedRoles = await adminClient.users.listRealmRoleMappings({ id });
    const effectiveRoles = await adminClient.users.listCompositeRealmRoleMappings(
      { id }
    );

    const clients = await adminClient.clients.find();
    const clientRoles = (
      await Promise.all(
        clients.map(async (client) => {
          const clientAssignedRoles = await adminClient.users.listClientRoleMappings(
            {
              id,
              clientUniqueId: client.id!,
            }
          );
          const clientEffectiveRoles = await adminClient.users.listCompositeClientRoleMappings(
            {
              id,
              clientUniqueId: client.id!,
            }
          );
          return mapRoles(clientAssignedRoles, clientEffectiveRoles, hide);
        })
      )
    ).flat();

    return [...mapRoles(assignedRoles, effectiveRoles, hide), ...clientRoles];
  };

  const assignRoles = async (rows: Row[]) => {
    try {
      const realmRoles = rows
        .filter((row) => row.client === undefined)
        .map((row) => row.role as RoleMappingPayload)
        .flat();
      adminClient.users.addRealmRoleMappings({
        id: serviceAccount?.id!,
        roles: realmRoles,
      });
      await Promise.all(
        rows
          .filter((row) => row.client !== undefined)
          .map((row) =>
            adminClient.users.addClientRoleMappings({
              id: serviceAccount?.id!,
              clientUniqueId: row.client!.id!,
              roles: [row.role as RoleMappingPayload],
            })
          )
      );
      addAlert(t("roleMappingUpdatedSuccess"), AlertVariant.success);
    } catch (error) {
      addAlert(
        t("roleMappingUpdatedError", {
          error: error.response?.data?.errorMessage || error,
        }),
        AlertVariant.danger
      );
    }
  };
  return (
    <>
      {serviceAccount && (
        <RoleMapping
          name={client.clientId!}
          id={serviceAccount.id!}
          type="service-account"
          loader={loader}
          save={assignRoles}
          onHideRolesToggle={() => setHide(!hide)}
        />
      )}
    </>
  );
};
inherited roles disabled instead of non selectable 2021-06-15 06:14:38 +00:00			`import React, { useState } from "react";`
Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00			`import { useTranslation } from "react-i18next";`
Add scope tab to client scope detail page (#514) * initial version of the scope tab * fixed assign * moved form logic added test * added unassign * fixed merge error * fixed labels 2021-04-20 12:10:00 +00:00			`import { AlertVariant } from "@patternfly/react-core";`
Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00
inherited roles disabled instead of non selectable 2021-06-15 06:14:38 +00:00			`import type UserRepresentation from "keycloak-admin/lib/defs/userRepresentation";`
Extend tsconfig from Snowpack and fix type errors 2021-05-04 17:58:18 +00:00			`import type { RoleMappingPayload } from "keycloak-admin/lib/defs/roleRepresentation";`
inherited roles disabled instead of non selectable 2021-06-15 06:14:38 +00:00			`import type ClientRepresentation from "keycloak-admin/lib/defs/clientRepresentation";`
			`import { useAdminClient, useFetch } from "../../context/auth/AdminClient";`
Created add service account roles assign screen (#465) * service account dialog * create test * fixed types * fixed realm roles selection * disable when no rows are selected Co-authored-by: Eugenia <32821331+jenny-s51@users.noreply.github.com> Co-authored-by: Eugenia <32821331+jenny-s51@users.noreply.github.com> 2021-04-01 14:14:19 +00:00			`import { useAlerts } from "../../components/alert/Alerts";`
Add scope tab to client scope detail page (#514) * initial version of the scope tab * fixed assign * moved form logic added test * added unassign * fixed merge error * fixed labels 2021-04-20 12:10:00 +00:00			`import {`
inherited roles disabled instead of non selectable 2021-06-15 06:14:38 +00:00			`mapRoles,`
Add scope tab to client scope detail page (#514) * initial version of the scope tab * fixed assign * moved form logic added test * added unassign * fixed merge error * fixed labels 2021-04-20 12:10:00 +00:00			`RoleMapping,`
			`Row,`
			`} from "../../components/role-mapping/RoleMapping";`
Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00
			`type ServiceAccountProps = {`
inherited roles disabled instead of non selectable 2021-06-15 06:14:38 +00:00			`client: ClientRepresentation;`
Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00			`};`

inherited roles disabled instead of non selectable 2021-06-15 06:14:38 +00:00			`export const ServiceAccount = ({ client }: ServiceAccountProps) => {`
Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00			`const { t } = useTranslation("clients");`
			`const adminClient = useAdminClient();`
Created add service account roles assign screen (#465) * service account dialog * create test * fixed types * fixed realm roles selection * disable when no rows are selected Co-authored-by: Eugenia <32821331+jenny-s51@users.noreply.github.com> Co-authored-by: Eugenia <32821331+jenny-s51@users.noreply.github.com> 2021-04-01 14:14:19 +00:00			`const { addAlert } = useAlerts();`

Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00			`const [hide, setHide] = useState(false);`
inherited roles disabled instead of non selectable 2021-06-15 06:14:38 +00:00			`const [serviceAccount, setServiceAccount] = useState<UserRepresentation>();`

			`useFetch(`
			`() =>`
			`adminClient.clients.getServiceAccountUser({`
			`id: client.id!,`
			`}),`
			`(serviceAccount) => setServiceAccount(serviceAccount),`
			`[]`
			`);`
Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00
			`const loader = async () => {`
			`const serviceAccount = await adminClient.clients.getServiceAccountUser({`
inherited roles disabled instead of non selectable 2021-06-15 06:14:38 +00:00			`id: client.id!,`
Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00			`});`
inherited roles disabled instead of non selectable 2021-06-15 06:14:38 +00:00			`const id = serviceAccount.id!;`

			`const assignedRoles = await adminClient.users.listRealmRoleMappings({ id });`
Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00			`const effectiveRoles = await adminClient.users.listCompositeRealmRoleMappings(`
inherited roles disabled instead of non selectable 2021-06-15 06:14:38 +00:00			`{ id }`
Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00			`);`

			`const clients = await adminClient.clients.find();`
			`const clientRoles = (`
			`await Promise.all(`
			`clients.map(async (client) => {`
inherited roles disabled instead of non selectable 2021-06-15 06:14:38 +00:00			`const clientAssignedRoles = await adminClient.users.listClientRoleMappings(`
			`{`
			`id,`
Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00			`clientUniqueId: client.id!,`
inherited roles disabled instead of non selectable 2021-06-15 06:14:38 +00:00			`}`
			`);`
			`const clientEffectiveRoles = await adminClient.users.listCompositeClientRoleMappings(`
			`{`
			`id,`
			`clientUniqueId: client.id!,`
			`}`
			`);`
			`return mapRoles(clientAssignedRoles, clientEffectiveRoles, hide);`
Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00			`})`
			`)`
inherited roles disabled instead of non selectable 2021-06-15 06:14:38 +00:00			`).flat();`
Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00
inherited roles disabled instead of non selectable 2021-06-15 06:14:38 +00:00			`return [...mapRoles(assignedRoles, effectiveRoles, hide), ...clientRoles];`
Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00			`};`

Created add service account roles assign screen (#465) * service account dialog * create test * fixed types * fixed realm roles selection * disable when no rows are selected Co-authored-by: Eugenia <32821331+jenny-s51@users.noreply.github.com> Co-authored-by: Eugenia <32821331+jenny-s51@users.noreply.github.com> 2021-04-01 14:14:19 +00:00			`const assignRoles = async (rows: Row[]) => {`
			`try {`
			`const realmRoles = rows`
			`.filter((row) => row.client === undefined)`
			`.map((row) => row.role as RoleMappingPayload)`
			`.flat();`
			`adminClient.users.addRealmRoleMappings({`
inherited roles disabled instead of non selectable 2021-06-15 06:14:38 +00:00			`id: serviceAccount?.id!,`
Created add service account roles assign screen (#465) * service account dialog * create test * fixed types * fixed realm roles selection * disable when no rows are selected Co-authored-by: Eugenia <32821331+jenny-s51@users.noreply.github.com> Co-authored-by: Eugenia <32821331+jenny-s51@users.noreply.github.com> 2021-04-01 14:14:19 +00:00			`roles: realmRoles,`
			`});`
			`await Promise.all(`
			`rows`
			`.filter((row) => row.client !== undefined)`
			`.map((row) =>`
			`adminClient.users.addClientRoleMappings({`
inherited roles disabled instead of non selectable 2021-06-15 06:14:38 +00:00			`id: serviceAccount?.id!,`
Created add service account roles assign screen (#465) * service account dialog * create test * fixed types * fixed realm roles selection * disable when no rows are selected Co-authored-by: Eugenia <32821331+jenny-s51@users.noreply.github.com> Co-authored-by: Eugenia <32821331+jenny-s51@users.noreply.github.com> 2021-04-01 14:14:19 +00:00			`clientUniqueId: row.client!.id!,`
			`roles: [row.role as RoleMappingPayload],`
			`})`
			`)`
			`);`
			`addAlert(t("roleMappingUpdatedSuccess"), AlertVariant.success);`
			`} catch (error) {`
			`addAlert(`
			`t("roleMappingUpdatedError", {`
			`error: error.response?.data?.errorMessage \|\| error,`
			`}),`
			`AlertVariant.danger`
			`);`
			`}`
			`};`
			`return (`
inherited roles disabled instead of non selectable 2021-06-15 06:14:38 +00:00			`<>`
			`{serviceAccount && (`
			`<RoleMapping`
			`name={client.clientId!}`
			`id={serviceAccount.id!}`
			`type="service-account"`
			`loader={loader}`
			`save={assignRoles}`
			`onHideRolesToggle={() => setHide(!hide)}`
			`/>`
			`)}`
			`</>`
changed to use the keycloak datatable (#432) * changed to use the keycloak datatable so it will benifid from a general way tables work in the admin console * null check * changed to use any active tab seems sometimes the tab doesn't get set properly so instead of "mappers" it's still "settings" this change makes it work with both 2021-03-19 12:43:32 +00:00			`);`
Initial version of the Service Account tab (#238) * service account tab initial version * added hide inherited function * move empty formatter to util * added the 'assign role' button * only show service account tab when client is saved * changed to toobar items to align checkbox * added missing assignRole and renamed tab 2020-12-07 18:37:36 +00:00			`};`