f5921f8480
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
95 lines
4.1 KiB
TypeScript
95 lines
4.1 KiB
TypeScript
import { HaveIBeenPwendPolicy, PoliciesApi } from "authentik-api";
|
|
import { t } from "@lingui/macro";
|
|
import { customElement, property } from "lit-element";
|
|
import { html, TemplateResult } from "lit-html";
|
|
import { DEFAULT_CONFIG } from "../../../api/Config";
|
|
import { Form } from "../../../elements/forms/Form";
|
|
import { ifDefined } from "lit-html/directives/if-defined";
|
|
import "../../../elements/forms/HorizontalFormElement";
|
|
import "../../../elements/forms/FormGroup";
|
|
import { first } from "../../../utils";
|
|
|
|
@customElement("ak-policy-hibp-form")
|
|
export class HaveIBeenPwnedPolicyForm extends Form<HaveIBeenPwendPolicy> {
|
|
|
|
set policyUUID(value: string) {
|
|
new PoliciesApi(DEFAULT_CONFIG).policiesHaveibeenpwnedRead({
|
|
policyUuid: value,
|
|
}).then(policy => {
|
|
this.policy = policy;
|
|
});
|
|
}
|
|
|
|
@property({attribute: false})
|
|
policy?: HaveIBeenPwendPolicy;
|
|
|
|
getSuccessMessage(): string {
|
|
if (this.policy) {
|
|
return t`Successfully updated policy.`;
|
|
} else {
|
|
return t`Successfully created policy.`;
|
|
}
|
|
}
|
|
|
|
send = (data: HaveIBeenPwendPolicy): Promise<HaveIBeenPwendPolicy> => {
|
|
if (this.policy) {
|
|
return new PoliciesApi(DEFAULT_CONFIG).policiesHaveibeenpwnedUpdate({
|
|
policyUuid: this.policy.pk || "",
|
|
data: data
|
|
});
|
|
} else {
|
|
return new PoliciesApi(DEFAULT_CONFIG).policiesHaveibeenpwnedCreate({
|
|
data: data
|
|
});
|
|
}
|
|
};
|
|
|
|
renderForm(): TemplateResult {
|
|
return html`<form class="pf-c-form pf-m-horizontal">
|
|
<div class="form-help-text">
|
|
${t`Checks a value from the policy request against the Have I been Pwned API, and denys the request based upon that.
|
|
Note that only a part of the hash of the password is sent, the full comparison is done clientside.`}
|
|
</div>
|
|
<ak-form-element-horizontal
|
|
label=${t`Name`}
|
|
?required=${true}
|
|
name="name">
|
|
<input type="text" value="${ifDefined(this.policy?.name || "")}" class="pf-c-form-control" required>
|
|
</ak-form-element-horizontal>
|
|
<ak-form-element-horizontal name="executionLogging">
|
|
<div class="pf-c-check">
|
|
<input type="checkbox" class="pf-c-check__input" ?checked=${first(this.policy?.executionLogging, false)}>
|
|
<label class="pf-c-check__label">
|
|
${t`Execution logging`}
|
|
</label>
|
|
</div>
|
|
<p class="pf-c-form__helper-text">
|
|
${t`When this option is enabled, all executions of this policy will be logged. By default, only execution errors are logged.`}
|
|
</p>
|
|
</ak-form-element-horizontal>
|
|
<ak-form-group .expanded=${true}>
|
|
<span slot="header">
|
|
${t`Policy-specific settings`}
|
|
</span>
|
|
<div slot="body" class="pf-c-form">
|
|
<ak-form-element-horizontal
|
|
label=${t`Password field`}
|
|
?required=${true}
|
|
name="passwordField">
|
|
<input type="text" value="${ifDefined(this.policy?.passwordField || "password")}" class="pf-c-form-control" required>
|
|
<p class="pf-c-form__helper-text">${t`Field key to check, field keys defined in Prompt stages are available.`}</p>
|
|
</ak-form-element-horizontal>
|
|
<ak-form-element-horizontal
|
|
label=${t`Allowed count`}
|
|
?required=${true}
|
|
name="allowedCount">
|
|
<input type="number" value="${first(this.policy?.allowedCount, 0)}" class="pf-c-form-control" required>
|
|
<p class="pf-c-form__helper-text">${t`Allow up to N occurrences in the HIBP database.`}</p>
|
|
</ak-form-element-horizontal>
|
|
</div>
|
|
</ak-form-group>
|
|
</form>`;
|
|
}
|
|
|
|
}
|