proxmox-mirrors/proxmox-backup
1
0
Fork 1
mirror of https://git.proxmox.com/git/proxmox-backup synced 2025-04-29 02:33:35 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
4c0a8bc054
proxmox-backup/www/config/UserView.js
Christoph Heiss 4c0a8bc054 ui: user view: disable 'Unlock TFA' button by default 
Without this, the button is enabled if no entry at all is selected (e.g.
when switching to the 'User Management' tab), with the button then
(obviously) being a noop.

Signed-off-by: Christoph Heiss <c.heiss@proxmox.com>
2024-08-29 14:11:46 +02:00

265 lines
5.7 KiB
JavaScript
Raw Blame History

Ext.define('pmx-users', {
extend: 'Ext.data.Model',
fields: [
'userid', 'firstname', 'lastname', 'email', 'comment', 'totp-locked',
{ type: 'boolean', name: 'enable', defaultValue: true },
{ type: 'date', dateFormat: 'timestamp', name: 'expire' },
],
idProperty: 'userid',
proxy: {
type: 'proxmox',
url: '/api2/json/access/users',
},
});
Ext.define('PBS.config.UserView', {
extend: 'Ext.grid.GridPanel',
alias: 'widget.pbsUserView',
stateful: true,
stateId: 'grid-users',
title: gettext('Users'),
controller: {
xclass: 'Ext.app.ViewController',
addUser: function() {
let me = this;
Ext.create('PBS.window.UserEdit', {
listeners: {
destroy: function() {
me.reload();
},
},
}).show();
},
editUser: function() {
let me = this;
let view = me.getView();
let selection = view.getSelection();
if (selection.length < 1) return;
Ext.create('PBS.window.UserEdit', {
userid: selection[0].data.userid,
listeners: {
destroy: function() {
me.reload();
},
},
}).show();
},
setPassword: function() {
let me = this;
let view = me.getView();
let selection = view.getSelection();
if (selection.length < 1) return;
Ext.create('Proxmox.window.PasswordEdit', {
userid: selection[0].data.userid,
confirmCurrentPassword: Proxmox.UserName !== 'root@pam',
}).show();
},
showPermissions: function() {
let me = this;
let view = me.getView();
let selection = view.getSelection();
if (selection.length < 1) return;
Ext.create('Proxmox.PermissionView', {
auth_id: selection[0].data.userid,
auth_id_name: 'auth-id',
}).show();
},
renderName: function(val, cell, rec) {
let name = [];
if (rec.data.firstname) {
name.push(rec.data.firstname);
}
if (rec.data.lastname) {
name.push(rec.data.lastname);
}
return name.join(' ');
},
renderUsername: function(userid) {
return Ext.String.htmlEncode(userid.match(/^(.+)@([^@]+)$/)[1]);
},
renderRealm: function(userid) {
return Ext.String.htmlEncode(userid.match(/^(.+)@([^@]+)$/)[2]);
},
reload: function() { this.getView().getStore().rstore.load(); },
init: function(view) {
Proxmox.Utils.monStoreErrors(view, view.getStore().rstore);
},
unlockTfa: function(btn, event, rec) {
let me = this;
let view = me.getView();
Ext.Msg.confirm(
Ext.String.format(gettext('Unlock TFA authentication for {0}'), rec.data.userid),
gettext("Locked 2nd factors can happen if the user's password was leaked. Are you sure you want to unlock the user?"),
function(btn_response) {
if (btn_response === 'yes') {
Proxmox.Utils.API2Request({
url: `/access/users/${rec.data.userid}/unlock-tfa`,
waitMsgTarget: view,
method: 'PUT',
failure: function(response, options) {
Ext.Msg.alert(gettext('Error'), response.htmlStatus);
},
success: function(response, options) {
me.reload();
},
});
}
},
);
},
},
listeners: {
activate: 'reload',
itemdblclick: 'editUser',
},
store: {
type: 'diff',
autoDestroy: true,
autoDestroyRstore: true,
sorters: 'userid',
rstore: {
type: 'update',
storeid: 'pmx-users',
model: 'pmx-users',
autoStart: true,
interval: 5000,
},
},
tbar: [
{
xtype: 'proxmoxButton',
text: gettext('Add'),
handler: 'addUser',
selModel: false,
},
'-',
{
xtype: 'proxmoxButton',
text: gettext('Edit'),
handler: 'editUser',
disabled: true,
},
{
xtype: 'proxmoxStdRemoveButton',
baseurl: '/access/users/',
enableFn: (rec) => rec.data.userid !== 'root@pam',
getUrl: (rec) =>
`/access/users/${encodeURIComponent(rec.getId())}`,
callback: 'reload',
},
'-',
{
xtype: 'proxmoxButton',
text: gettext('Change Password'),
handler: 'setPassword',
disabled: true,
},
{
xtype: 'proxmoxButton',
text: gettext('Show Permissions'),
handler: 'showPermissions',
disabled: true,
},
'-',
{
xtype: 'proxmoxButton',
text: gettext('Unlock TFA'),
handler: 'unlockTfa',
disabled: true,
enableFn: ({ data }) =>
data['totp-locked'] || (data['tfa-locked-until'] > (new Date().getTime() / 1000)),
},
],
viewConfig: {
trackOver: false,
},
columns: [
{
header: gettext('User name'),
width: 200,
sortable: true,
renderer: 'renderUsername',
dataIndex: 'userid',
},
{
header: gettext('Realm'),
width: 100,
sortable: true,
renderer: 'renderRealm',
dataIndex: 'userid',
},
{
header: gettext('Enabled'),
width: 80,
sortable: true,
renderer: Proxmox.Utils.format_boolean,
dataIndex: 'enable',
},
{
header: gettext('Expire'),
width: 80,
sortable: true,
renderer: Proxmox.Utils.format_expire,
dataIndex: 'expire',
},
{
header: gettext('Name'),
width: 150,
sortable: true,
dataIndex: 'firstname',
renderer: 'renderName',
},
{
header: gettext('TFA Lock'),
width: 120,
sortable: true,
dataIndex: 'totp-locked',
renderer: function(v, metaData, record) {
let locked_until = record.data['tfa-locked-until'];
if (locked_until !== undefined) {
let now = new Date().getTime() / 1000;
if (locked_until > now) {
return gettext('Locked');
}
}
if (record.data['totp-locked']) {
return gettext('TOTP Locked');
}
return Proxmox.Utils.noText;
},
},
{
header: gettext('Comment'),
sortable: false,
renderer: Ext.String.htmlEncode,
dataIndex: 'comment',
flex: 1,
},
],
});
Reference in New Issue View Git Blame Copy Permalink