Table skeletons & improved loading in security page

Author: jvorcak

frontend/src/components/misc/query-result.tsx

@@ -0,0 +1,48 @@
+/**
+ * Copyright 2022 Redpanda Data, Inc.
+ *
+ * Use of this software is governed by the Business Source License
+ * included in the file https://github.com/redpanda-data/redpanda/blob/dev/licenses/bsl.md
+ *
+ * As of the Change Date specified in that file, in accordance with
+ * the Business Source License, use of this software will be governed
+ * by the Apache License, Version 2.0
+ */
+
+import type { ReactNode } from 'react';
+import { DefaultSkeleton } from 'utils/tsx-utils';
+
+import { Alert, AlertDescription, AlertTitle } from '../redpanda-ui/components/alert';
+
+type Props = {
+  isLoading: boolean;
+  isError: boolean;
+  error?: { message?: string } | null;
+  errorTitle?: string;
+  children: ReactNode;
+  skeleton?: ReactNode;
+};
+
+export const QueryResult = ({
+  isLoading,
+  isError,
+  error,
+  errorTitle = 'Failed to load data',
+  children,
+  skeleton = DefaultSkeleton,
+}: Props) => {
+  if (isLoading) {
+    return skeleton;
+  }
+
+  if (isError) {
+    return (
+      <Alert variant="destructive">
+        <AlertTitle>{errorTitle}</AlertTitle>
+        <AlertDescription>{error?.message ?? 'An unexpected error occurred.'}</AlertDescription>
+      </Alert>
+    );
+  }
+
+  return <>{children}</>;
+};

frontend/src/components/pages/security/security-page.tsx

@@ -78,10 +78,14 @@ export function SecurityPage({ tab }: SecurityPageProps) {
     ];
   }, [activeTab, activeTabData.label]);
 
-  const setActiveTab = (newTab: SecurityTab) => {
-    if (newTab === 'users') navigate({ to: '/security/users', replace: true });
-    else if (newTab === 'roles') navigate({ to: '/security/roles', replace: true });
-    else navigate({ to: '/security/permissions-list', replace: true });
+  const routes: Record<SecurityTab, string> = {
+    users: '/security/users',
+    roles: '/security/roles',
+    permissions: '/security/permissions-list',
+  };
+
+  const setActiveTab = (securityTab: SecurityTab) => {
+    navigate({ to: routes[securityTab], replace: true });
   };
 
   const visibleTabs = tabs.filter((t) => !t.requiresFeature || t.requiresFeature());

frontend/src/components/pages/security/shared/create-user-button-props.ts

@@ -0,0 +1,29 @@
+/**
+ * Copyright 2022 Redpanda Data, Inc.
+ *
+ * Use of this software is governed by the Business Source License
+ * included in the file https://github.com/redpanda-data/redpanda/blob/dev/licenses/bsl.md
+ *
+ * As of the Change Date specified in that file, in accordance with
+ * the Business Source License, use of this software will be governed
+ * by the Apache License, Version 2.0
+ */
+
+export const getCreateUserButtonProps = (
+  isAdminApiConfigured: boolean,
+  featureCreateUser: boolean,
+  canManageUsers: boolean | undefined
+) => {
+  const hasRBAC = canManageUsers !== undefined;
+
+  return {
+    disabled: !(isAdminApiConfigured && featureCreateUser) || (hasRBAC && canManageUsers === false),
+    tooltip: [
+      !isAdminApiConfigured && 'The Redpanda Admin API is not configured.',
+      !featureCreateUser && "Your cluster doesn't support this feature.",
+      hasRBAC && canManageUsers === false && 'You need RedpandaCapability.MANAGE_REDPANDA_USERS permission.',
+    ]
+      .filter(Boolean)
+      .join(' '),
+  };
+};

frontend/src/components/pages/security/shared/table-skeleton.tsx

@@ -0,0 +1,38 @@
+/**
+ * Copyright 2022 Redpanda Data, Inc.
+ *
+ * Use of this software is governed by the Business Source License
+ * included in the file https://github.com/redpanda-data/redpanda/blob/dev/licenses/bsl.md
+ *
+ * As of the Change Date specified in that file, in accordance with
+ * the Business Source License, use of this software will be governed
+ * by the Apache License, Version 2.0
+ */
+
+import { Skeleton } from 'components/redpanda-ui/components/skeleton';
+
+/**
+ * Skeleton that mimics the 3-column user table:
+ * [name] [role tags ...] [action icon]
+ */
+export const TableSkeleton = () => (
+  <div className="my-4 rounded-md border p-4">
+    {/* Header */}
+    <div className="flex items-center gap-4 px-4 py-3">
+      <Skeleton className="flex-1" size="sm" variant="text" />
+      <Skeleton size="sm" variant="text" width="md" />
+      <Skeleton size="sm" variant="text" width="xs" />
+    </div>
+    {/* Rows */}
+    {Array.from({ length: 4 }).map((_, i) => (
+      <div className="flex items-center gap-4 px-4 py-3" key={i}>
+        <Skeleton className="flex-1" size="sm" variant="text" width="sm" />
+        <div className="flex items-center gap-2">
+          <Skeleton className="h-5 w-20 rounded-full" />
+          <Skeleton className="h-5 w-16 rounded-full" />
+        </div>
+        <Skeleton className="h-6 w-6 rounded" />
+      </div>
+    ))}
+  </div>
+);

frontend/src/components/pages/security/tabs/acls-tab.tsx

@@ -95,7 +95,7 @@ export const AclsTab: FC = () => {
     principalGroups?.filter((g) => g.principalType === 'User' || g.principalType === 'Group') || [];
   const groups = filterByName(aclPrincipalGroups, searchQuery, (g) => g.principalName);
 
-  if (isError && error) {
+  if (isError) {
     return <ErrorResult error={error} />;
   }
 
@@ -105,30 +105,29 @@ export const AclsTab: FC = () => {
 
   return (
     <div className="flex flex-col gap-4">
-      <div>
+      <p>
         This tab displays all access control lists (ACLs), grouped by principal and host. A principal represents any
         entity that can be authenticated, such as a user, service, or system (for example, a SASL-SCRAM user, OIDC
         identity, or mTLS client). The ACLs tab shows only the permissions directly granted to each principal. For a
         complete view of all permissions, including permissions granted through roles, see the Permissions List tab.
-      </div>
+      </p>
       {Boolean(featureRolesApi) && (
-        <Alert icon={<InfoIcon />} variant="warning">
+        <Alert icon={<InfoIcon />} variant="info">
           <AlertDescription>
             Roles are a more flexible and efficient way to manage user permissions, especially with complex
             organizational hierarchies or large numbers of users.
           </AlertDescription>
         </Alert>
       )}
-      <SearchField
-        placeholderText="Filter by name"
-        searchText={searchQuery ?? ''}
-        setSearchText={(x) => setSearchQuery(x)}
-        width="300px"
-      />
-      <Section>
-        <AlertDeleteFailed aclFailed={aclFailed} onClose={() => setAclFailed(null)} />
-
+      <div className="flex items-center justify-between gap-4">
+        <SearchField
+          placeholderText="Filter by name or regex..."
+          searchText={searchQuery ?? ''}
+          setSearchText={(x) => setSearchQuery(x)}
+          width="300px"
+        />
         <Button
+          aria-label="Create ACL"
           data-testid="create-acls"
           onClick={() => {
             navigate({
@@ -137,8 +136,11 @@ export const AclsTab: FC = () => {
             });
           }}
         >
-          Create ACLs
+          Create ACL
         </Button>
+      </div>
+      <Section>
+        <AlertDeleteFailed aclFailed={aclFailed} onClose={() => setAclFailed(null)} />
 
         <div className="py-4">
           <DataTable<{
@@ -263,6 +265,7 @@ export const AclsTab: FC = () => {
               },
             ]}
             data={groups}
+            emptyText={searchQuery ? 'No ACLs match your search' : 'No ACLs yet'}
             pagination
             sorting
           />

frontend/src/components/pages/security/tabs/permissions-list-tab.tsx

@@ -12,7 +12,7 @@
 import { create } from '@bufbuild/protobuf';
 import { DataTable, SearchField } from '@redpanda-data/ui';
 import { Link } from '@tanstack/react-router';
-import { TrashIcon } from 'components/icons';
+import { InfoIcon, TrashIcon } from 'components/icons';
 import { parseAsString } from 'nuqs';
 import {
   ACL_Operation,
@@ -48,29 +48,11 @@ import { Tooltip, TooltipContent, TooltipProvider, TooltipTrigger } from '../../
 import { type PrincipalEntry, usePrincipalList } from '../hooks/use-principal-list';
 import { useSecurityBreadcrumbs } from '../hooks/use-security-breadcrumbs';
 import { AlertDeleteFailed } from '../shared/alert-delete-failed';
+import { getCreateUserButtonProps } from '../shared/create-user-button-props';
 import { DeleteUserConfirmModal } from '../shared/delete-user-confirm-modal';
 import { filterByName } from '../shared/filter-by-name';
 import { UserRoleTags } from '../shared/user-role-tags';
 
-const getCreateUserButtonProps = (
-  isAdminApiConfigured: boolean,
-  featureCreateUser: boolean,
-  canManageUsers: boolean | undefined
-) => {
-  const hasRBAC = canManageUsers !== undefined;
-
-  return {
-    disabled: !(isAdminApiConfigured && featureCreateUser) || (hasRBAC && canManageUsers === false),
-    tooltip: [
-      !isAdminApiConfigured && 'The Redpanda Admin API is not configured.',
-      !featureCreateUser && "Your cluster doesn't support this feature.",
-      hasRBAC && canManageUsers === false && 'You need RedpandaCapability.MANAGE_REDPANDA_USERS permission.',
-    ]
-      .filter(Boolean)
-      .join(' '),
-  };
-};
-
 const PermissionsListActions = ({
   entry,
   canDeleteUser,
@@ -221,12 +203,27 @@ export const PermissionsListTab: FC = () => {
 
   return (
     <div className="flex flex-col gap-4">
-      <div>
+      <p>
         This page provides a detailed overview of all effective permissions for each principal, including those derived
         from assigned roles. While the ACLs tab shows permissions directly granted to principals, this tab also
         incorporates roles that may assign additional permissions to a principal. This gives you a complete picture of
         what each principal can do within your cluster.
-      </div>
+      </p>
+      <Alert icon={<InfoIcon />} variant="info">
+        <AlertDescription>
+          <p>
+            To grant permissions, use the{' '}
+            <Link className="font-medium underline" to="/security/acls">
+              ACLs
+            </Link>{' '}
+            or{' '}
+            <Link className="font-medium underline" to="/security/roles">
+              Roles
+            </Link>{' '}
+            tabs.
+          </p>
+        </AlertDescription>
+      </Alert>
 
       <SearchField
         placeholderText="Filter by name"
@@ -296,6 +293,7 @@ export const PermissionsListTab: FC = () => {
             ]}
             data={usersFiltered}
             emptyAction={(() => {
+              if (searchQuery) return;
               const { disabled, tooltip } = getCreateUserButtonProps(
                 isAdminApiConfigured,
                 featureCreateUser,
@@ -313,12 +311,12 @@ export const PermissionsListTab: FC = () => {
                         Create user
                       </Button>
                     </TooltipTrigger>
-                    {tooltip && <TooltipContent>{tooltip}</TooltipContent>}
+                    {Boolean(tooltip) && <TooltipContent>{tooltip}</TooltipContent>}
                   </Tooltip>
                 </TooltipProvider>
               );
             })()}
-            emptyText="No principals yet"
+            emptyText={searchQuery ? 'No principals match your search' : 'No principals yet'}
             pagination
             sorting
           />