WIP for IdP policies

Author: oharsta

client/src/locale/en.js

@@ -1141,6 +1141,9 @@ const en = {
         title: "Whoops, error!!!",
         unexpected: "An unexpected error occurred. Please contact <a href='mailto:support@surfconext.nl'>support@surfconext.nl</a> for support.",
         jiraDown: "Momentarily the backend could not process your request. Please contact <a href='mailto:support@surfconext.nl'>support@surfconext.nl</a> for support."
+    },
+    policies: {
+        title: "Policies for {{name}}"
     }
 
 }

client/src/pages/ApplicationDetail.jsx

@@ -1,4 +1,5 @@
 import "./ApplicationDetail.scss";
+import "../styles/access_card.scss";
 import React, {useEffect, useState} from "react";
 import {
     connectServiceProviderToIdentityProvider,

client/src/pages/ApplicationDetail.scss

@@ -337,56 +337,6 @@ div.application-detail-container {
             }
         }
 
-        .access-card {
-            background: white;
-            margin: 10px 0;
-            border: 1px solid var(--sl-color-secondary-400);
-            border-radius: 10px;
-            display: flex;
-            align-items: center;
-            padding: 8px;
-            width: 100%;
-
-            &.grey {
-                background-color: var(--sds--color--gray--background);
-                font-style: italic;
-            }
-
-            &.border {
-                border: 1px solid var(--sl-color-neutral-400);
-
-            }
-
-            &.large {
-                font-size: 18px;
-            }
-
-            h4 {
-                font-size: 18px;
-            }
-
-            img, svg {
-                margin-left: auto;
-                width: 42px;
-                height: 42px;
-            }
-
-            .chip {
-                margin-left: auto;
-                border-radius: 38px;
-                padding: 2px 12px;
-                font-size: 16px;
-                background-color: var(--sl-color-neutral-100);
-                color: var(--sl-color-neutral-500);
-                min-width: 100px;
-                text-align: center;
-
-                &.blue {
-                    background-color: var(--sds--color--blue--400);
-                    color: white;
-                }
-            }
-        }
     }
 
 }

client/src/pages/Policies.jsx

@@ -0,0 +1,130 @@
+import React, {useEffect, useMemo, useState} from "react";
+import {useAppStore} from "../stores/AppStore";
+import {Navigate, useNavigate, useParams} from "react-router-dom";
+import {getPolicyByIdentityProvider} from "../api/index.js";
+import {isEmpty} from "../utils/Utils.js";
+import "./Policies.scss";
+import I18n from "../locale/I18n";
+import DOMPurify from "dompurify";
+import {authorities} from "../utils/Permissions.js";
+import {Loader} from "@surfnet/sds";
+import {useShallow} from "zustand/react/shallow";
+import {groupByValues, policyTemplate} from "../utils/Policy.js";
+import {PolicyForm} from "../policies/PolicyForm.jsx";
+import {PolicyOverview} from "../policies/PolicyOverview.jsx";
+
+
+const Policies = () => {
+
+    const {user, currentOrganization} = useAppStore(useShallow(state => ({
+        user: state.user,
+        currentOrganization: state.currentOrganization
+    })));
+    const {page, policyId} = useParams();
+
+    const [loading, setLoading] = useState(true);
+    const [policies, setPolicies] = useState({});
+    const [showPolicyOverview, setShowPolicyOverview] = useState(true);
+    const [showPolicyDetails, setShowPolicyDetails] = useState(false);
+    const [currentPolicy, setCurrentPolicy] = useState(null);
+
+    const navigate = useNavigate();
+
+    const adminUser = useMemo(() => {
+        return user.superUser || (user.organizationMemberships
+                .some(om => om.authority === authorities.ADMIN && om.organization.id === currentOrganization.id)
+            && !isEmpty(currentOrganization.manageIdentifier));
+    }, [user, currentOrganization]);
+
+    const toPolicyDetail = (policyIdentifier, allPolicies = policies) => {
+        setShowPolicyOverview(false);
+        let newCurrentPolicy;
+        if (policyIdentifier === "new") {
+            newCurrentPolicy = policyTemplate(user.identityProvider.data.entityid);
+        } else {
+            newCurrentPolicy = allPolicies.find(policy => policy.id === policyIdentifier);
+            if (isEmpty(newCurrentPolicy)) {
+                navigate("/404");
+                return;
+            }
+            newCurrentPolicy.data.attributes = groupByValues([...newCurrentPolicy.data.attributes]);
+        }
+        window.scrollTo({top: 0, behavior: "smooth"});
+        setCurrentPolicy(newCurrentPolicy);
+        setShowPolicyDetails(true);
+        navigate(`/policies/details/${policyIdentifier}`);
+    }
+
+    useEffect(() => {
+        getPolicyByIdentityProvider()
+            .then(res => {
+                setPolicies(res);
+                if (page === "details" && !isEmpty(policyId)) {
+                    toPolicyDetail(policyId, res);
+                }
+                setLoading(false);
+            }).catch(() => {
+            navigate("/home")
+        });
+
+    }, []);// eslint-disable-line react-hooks/exhaustive-deps
+
+    if (!adminUser) {
+        return <Navigate to={"/404"} replace/>;
+    }
+
+    if (loading) {
+        return <Loader/>
+    }
+
+    const refreshPolicies = () => {
+        setLoading(true);
+        getPolicyByIdentityProvider()
+            .then(res => {
+                setPolicies(res);
+                navigate("/policies/overview");
+                setShowPolicyOverview(true);
+                setShowPolicyDetails(false);
+                setLoading(false);
+            });
+    }
+
+    return (
+        <div
+            className="policies-outer-container">
+            <div className="policies-header-container">
+                <div className="top-header">
+                    <h1>{I18n.t("policies.title", {name: currentOrganization.name})}</h1>
+                </div>
+                <p dangerouslySetInnerHTML={{
+                    __html: DOMPurify.sanitize(I18n.t("myOrganization.info"),
+                        {ADD_ATTR: ['target'], ADD_TAGS: ['rel']})
+                }}/>
+            </div>
+            <div className="policies">
+                <div className="app-policies">
+                    {showPolicyDetails &&
+                        <PolicyForm policy={currentPolicy}
+                                    setPolicy={setCurrentPolicy}
+                                    isExistingPolicy={!isEmpty(currentPolicy.id)}
+                                    originalName={currentPolicy.originalName}
+                                    refreshPolicies={refreshPolicies}
+                        />
+                    }
+                    {showPolicyOverview &&
+                        <PolicyOverview
+                            policies={policies}
+                            policyDetails={toPolicyDetail}
+                            refreshPolicies={refreshPolicies}
+                        />
+                    }
+
+                </div>
+
+            </div>
+        </div>
+
+    )
+
+};
+export default Policies;

client/src/pages/Policies.scss

@@ -0,0 +1,36 @@
+@use "../index";
+@use "../styles/vars" as *;
+
+div.policies-outer-container {
+    width: 100%;
+    display: flex;
+    flex-direction: column;
+    height: 100%;
+
+    .policies-header-container {
+        background-color: var(--sds--color--gray--background);
+        padding: 25px 50px 25px 50px;
+
+        .top-header {
+            margin-bottom: 15px;
+        }
+    }
+
+    div.policies {
+        padding: 25px 50px;
+        background-color: white;
+    }
+
+    .app-policies {
+        display: flex;
+        width: 75%;
+        gap: 25px;
+        @media (max-width: $medium) {
+            width: 100%;
+            flex-direction: column;
+        }
+
+    }
+
+
+}

client/src/policies/PolicyOverview.jsx

@@ -1,4 +1,5 @@
 import "./PolicyOverview.scss";
+import "../styles/access_card.scss";
 import React, {useState} from "react";
 import {Button, ButtonType, Chip, Tooltip} from "@surfnet/sds";
 import I18n from "../locale/I18n.js";
@@ -78,7 +79,7 @@ export const PolicyOverview = ({policies, backToAccess, policyDetails, refreshPo
                                          question={question}
             />}
             <div className="policy-overview">
-                <a href="/#" onClick={e => backToAccess(e)}>{I18n.t("appAccess.backToAccess")}</a>
+                {backToAccess && <a href="/#" onClick={e => backToAccess(e)}>{I18n.t("appAccess.backToAccess")}</a>}
                 <div className="grouped">
                     <h2>{I18n.t("appAccess.authorizationRules")}</h2>
                     <Button type={ButtonType.Primary}

client/src/styles/access_card.scss

@@ -0,0 +1,50 @@
+.access-card {
+    background: white;
+    margin: 10px 0;
+    border: 1px solid var(--sl-color-secondary-400);
+    border-radius: 10px;
+    display: flex;
+    align-items: center;
+    padding: 8px;
+    width: 100%;
+
+    &.grey {
+        background-color: var(--sds--color--gray--background);
+        font-style: italic;
+    }
+
+    &.border {
+        border: 1px solid var(--sl-color-neutral-400);
+
+    }
+
+    &.large {
+        font-size: 18px;
+    }
+
+    h4 {
+        font-size: 18px;
+    }
+
+    img, svg {
+        margin-left: auto;
+        width: 42px;
+        height: 42px;
+    }
+
+    .chip {
+        margin-left: auto;
+        border-radius: 38px;
+        padding: 2px 12px;
+        font-size: 16px;
+        background-color: var(--sl-color-neutral-100);
+        color: var(--sl-color-neutral-500);
+        min-width: 100px;
+        text-align: center;
+
+        &.blue {
+            background-color: var(--sds--color--blue--400);
+            color: white;
+        }
+    }
+}

server/src/main/java/access/manage/RemoteManage.java

@@ -24,6 +24,7 @@
 import org.springframework.web.client.RestTemplate;
 
 import java.io.IOException;
+import java.lang.reflect.Type;
 import java.net.URI;
 import java.util.HashMap;
 import java.util.List;
@@ -37,6 +38,8 @@
 public class RemoteManage implements Manage {
 
     private static final Log LOG = LogFactory.getLog(RemoteManage.class);
+    private static final ParameterizedTypeReference<Map<String, Object>> PARAMETERIZED_TYPE_REFERENCE = new ParameterizedTypeReference<>() {
+    };
 
     //Because of the custom error handling, we need to use Buffering
     private final Map<Environment, RestTemplate> restTemplates;
@@ -113,14 +116,9 @@ public Map<String, Object> saveIdentityProvider(Organization organization) {
 
         RestTemplate restTemplate = environmentRestTemplate(Environment.PROD);
         String url = environmentUrl(Environment.PROD);
-        ResponseEntity<Map> responseEntity = restTemplate.exchange(String.format("%s/manage/api/internal/metadata", url),
-                HttpMethod.PUT, new HttpEntity<>(provider), Map.class);
-        Map body = responseEntity.getBody();
-        if (ResilientErrorHandler.ignoreError(body)) {
-            //See ResilientErrorHandler#handleError. Any no-data-changed error is thrown there
-            return provider;
-        }
-        return body;
+        ResponseEntity<Map<String, Object>> responseEntity = restTemplate.exchange(String.format("%s/manage/api/internal/metadata", url),
+                HttpMethod.PUT, new HttpEntity<>(provider), PARAMETERIZED_TYPE_REFERENCE);
+        return checkNoChangeResponse(responseEntity, provider);
     }
 
     @SneakyThrows
@@ -136,14 +134,9 @@ public Map<String, Object> saveProvider(Connection connection) {
         RestTemplate restTemplate = environmentRestTemplate(connection.getEnvironment());
         String url = environmentUrl(connection.getEnvironment());
         HttpMethod httpMethod = StringUtils.hasText(connection.getManageIdentifier()) ? HttpMethod.PUT : HttpMethod.POST;
-        ResponseEntity<Map> responseEntity = restTemplate.exchange(String.format("%s/manage/api/internal/metadata", url),
-                httpMethod, new HttpEntity<>(provider), Map.class);
-        Map body = responseEntity.getBody();
-        if (ResilientErrorHandler.ignoreError(body)) {
-            //See ResilientErrorHandler#handleError. Any no-data-changed error is thrown there
-            return provider;
-        }
-        return body;
+        ResponseEntity<Map<String ,Object>> responseEntity = restTemplate.exchange(String.format("%s/manage/api/internal/metadata", url),
+                httpMethod, new HttpEntity<>(provider), PARAMETERIZED_TYPE_REFERENCE);
+        return checkNoChangeResponse(responseEntity, provider);
     }
 
     @Override
@@ -179,8 +172,7 @@ public Map<String, Object> createChangeRequest(Environment environment, ChangeRe
         String url = String.format("%s/manage/api/internal/change-requests", environmentUrl(environment));
         HttpEntity<ChangeRequest> requestEntity = new HttpEntity<>(changeRequest);
         ResponseEntity<Map<String, Object>> responseEntity = restTemplate.exchange(url, HttpMethod.POST, requestEntity,
-                new ParameterizedTypeReference<>() {
-                });
+                PARAMETERIZED_TYPE_REFERENCE);
         return responseEntity.getBody();
     }
 
@@ -399,7 +391,8 @@ public Map<String, Object> updatePolicy(Map<String, Object> policy) {
         RestTemplate restTemplate = environmentRestTemplate(Environment.PROD);
         String url = String.format("%s/manage/api/internal/metadata",
                 environmentUrl(Environment.PROD));
-        return restTemplate.exchange(url, HttpMethod.PUT, new HttpEntity<>(policy), Map.class).getBody();
+        ResponseEntity<Map<String, Object>> responseEntity = restTemplate.exchange(url, HttpMethod.PUT, new HttpEntity<>(policy), PARAMETERIZED_TYPE_REFERENCE);
+        return checkNoChangeResponse(responseEntity, policy);
     }
 
     @Override
@@ -466,5 +459,14 @@ private RestTemplate environmentRestTemplate(Environment environment) {
         return restTemplates.get(environment);
     }
 
+    private Map<String, Object> checkNoChangeResponse(ResponseEntity<Map<String, Object>> responseEntity, Map<String, Object> provider) {
+        Map<String, Object> body = responseEntity.getBody();
+        if (body == null || ResilientErrorHandler.ignoreError(body)) {
+            //See ResilientErrorHandler#handleError. Any no-data-changed error is thrown there
+            return provider;
+        }
+        return body;
+
+    }
 
 }