2021-04-02 14:57:55 +00:00
|
|
|
import { HaveIBeenPwendPolicy, PoliciesApi } from "authentik-api";
|
2021-04-03 17:26:43 +00:00
|
|
|
import { t } from "@lingui/macro";
|
2021-05-11 10:19:35 +00:00
|
|
|
import { customElement } from "lit-element";
|
2021-04-02 14:57:55 +00:00
|
|
|
import { html, TemplateResult } from "lit-html";
|
|
|
|
import { DEFAULT_CONFIG } from "../../../api/Config";
|
|
|
|
import { ifDefined } from "lit-html/directives/if-defined";
|
|
|
|
import "../../../elements/forms/HorizontalFormElement";
|
|
|
|
import "../../../elements/forms/FormGroup";
|
2021-04-03 09:41:11 +00:00
|
|
|
import { first } from "../../../utils";
|
2021-05-11 10:19:35 +00:00
|
|
|
import { ModelForm } from "../../../elements/forms/ModelForm";
|
2021-04-02 14:57:55 +00:00
|
|
|
|
|
|
|
@customElement("ak-policy-hibp-form")
|
2021-05-11 10:19:35 +00:00
|
|
|
export class HaveIBeenPwnedPolicyForm extends ModelForm<HaveIBeenPwendPolicy, string> {
|
|
|
|
loadInstance(pk: string): Promise<HaveIBeenPwendPolicy> {
|
2021-05-16 12:43:42 +00:00
|
|
|
return new PoliciesApi(DEFAULT_CONFIG).policiesHaveibeenpwnedRetrieve({
|
2021-05-11 10:19:35 +00:00
|
|
|
policyUuid: pk,
|
2021-04-02 14:57:55 +00:00
|
|
|
});
|
|
|
|
}
|
|
|
|
|
|
|
|
getSuccessMessage(): string {
|
2021-05-11 10:19:35 +00:00
|
|
|
if (this.instance) {
|
2021-04-03 17:26:43 +00:00
|
|
|
return t`Successfully updated policy.`;
|
2021-04-02 14:57:55 +00:00
|
|
|
} else {
|
2021-04-03 17:26:43 +00:00
|
|
|
return t`Successfully created policy.`;
|
2021-04-02 14:57:55 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
send = (data: HaveIBeenPwendPolicy): Promise<HaveIBeenPwendPolicy> => {
|
2021-05-11 10:19:35 +00:00
|
|
|
if (this.instance) {
|
2021-04-02 14:57:55 +00:00
|
|
|
return new PoliciesApi(DEFAULT_CONFIG).policiesHaveibeenpwnedUpdate({
|
2021-05-11 10:19:35 +00:00
|
|
|
policyUuid: this.instance.pk || "",
|
2021-08-03 15:52:21 +00:00
|
|
|
haveIBeenPwendPolicyRequest: data,
|
2021-04-02 14:57:55 +00:00
|
|
|
});
|
|
|
|
} else {
|
|
|
|
return new PoliciesApi(DEFAULT_CONFIG).policiesHaveibeenpwnedCreate({
|
2021-08-03 15:52:21 +00:00
|
|
|
haveIBeenPwendPolicyRequest: data,
|
2021-04-02 14:57:55 +00:00
|
|
|
});
|
|
|
|
}
|
|
|
|
};
|
|
|
|
|
|
|
|
renderForm(): TemplateResult {
|
|
|
|
return html`<form class="pf-c-form pf-m-horizontal">
|
2021-04-10 10:37:08 +00:00
|
|
|
<div class="form-help-text">
|
|
|
|
${t`Checks a value from the policy request against the Have I been Pwned API, and denys the request based upon that.
|
|
|
|
Note that only a part of the hash of the password is sent, the full comparison is done clientside.`}
|
|
|
|
</div>
|
2021-08-03 15:52:21 +00:00
|
|
|
<ak-form-element-horizontal label=${t`Name`} ?required=${true} name="name">
|
|
|
|
<input
|
|
|
|
type="text"
|
|
|
|
value="${ifDefined(this.instance?.name || "")}"
|
|
|
|
class="pf-c-form-control"
|
|
|
|
required
|
|
|
|
/>
|
2021-04-02 14:57:55 +00:00
|
|
|
</ak-form-element-horizontal>
|
|
|
|
<ak-form-element-horizontal name="executionLogging">
|
|
|
|
<div class="pf-c-check">
|
2021-08-03 15:52:21 +00:00
|
|
|
<input
|
|
|
|
type="checkbox"
|
|
|
|
class="pf-c-check__input"
|
|
|
|
?checked=${first(this.instance?.executionLogging, false)}
|
|
|
|
/>
|
|
|
|
<label class="pf-c-check__label"> ${t`Execution logging`} </label>
|
2021-04-02 14:57:55 +00:00
|
|
|
</div>
|
2021-04-10 10:37:08 +00:00
|
|
|
<p class="pf-c-form__helper-text">
|
|
|
|
${t`When this option is enabled, all executions of this policy will be logged. By default, only execution errors are logged.`}
|
|
|
|
</p>
|
2021-04-02 14:57:55 +00:00
|
|
|
</ak-form-element-horizontal>
|
|
|
|
<ak-form-group .expanded=${true}>
|
2021-08-03 15:52:21 +00:00
|
|
|
<span slot="header"> ${t`Policy-specific settings`} </span>
|
2021-04-02 14:57:55 +00:00
|
|
|
<div slot="body" class="pf-c-form">
|
|
|
|
<ak-form-element-horizontal
|
2021-04-03 17:26:43 +00:00
|
|
|
label=${t`Password field`}
|
2021-04-02 14:57:55 +00:00
|
|
|
?required=${true}
|
2021-08-03 15:52:21 +00:00
|
|
|
name="passwordField"
|
|
|
|
>
|
|
|
|
<input
|
|
|
|
type="text"
|
|
|
|
value="${ifDefined(this.instance?.passwordField || "password")}"
|
|
|
|
class="pf-c-form-control"
|
|
|
|
required
|
|
|
|
/>
|
|
|
|
<p class="pf-c-form__helper-text">
|
|
|
|
${t`Field key to check, field keys defined in Prompt stages are available.`}
|
|
|
|
</p>
|
2021-04-02 14:57:55 +00:00
|
|
|
</ak-form-element-horizontal>
|
|
|
|
<ak-form-element-horizontal
|
2021-04-03 17:26:43 +00:00
|
|
|
label=${t`Allowed count`}
|
2021-04-02 14:57:55 +00:00
|
|
|
?required=${true}
|
2021-08-03 15:52:21 +00:00
|
|
|
name="allowedCount"
|
|
|
|
>
|
|
|
|
<input
|
|
|
|
type="number"
|
|
|
|
value="${first(this.instance?.allowedCount, 0)}"
|
|
|
|
class="pf-c-form-control"
|
|
|
|
required
|
|
|
|
/>
|
|
|
|
<p class="pf-c-form__helper-text">
|
|
|
|
${t`Allow up to N occurrences in the HIBP database.`}
|
|
|
|
</p>
|
2021-04-02 14:57:55 +00:00
|
|
|
</ak-form-element-horizontal>
|
|
|
|
</div>
|
|
|
|
</ak-form-group>
|
|
|
|
</form>`;
|
|
|
|
}
|
|
|
|
}
|