scottk/vault
1
0
Fork 0
mirror of https://github.com/optim-enterprises-bv/vault.git synced 2025-10-31 18:48:08 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
ade75bcf00898b378b77778d2d5ea0ed76c1d35c
vault/ui/app/models/ldap/library.js
Steven Clark ade75bcf00 Update licensing across various source files (#24672)
2024-01-04 12:59:46 -05:00

111 lines
3.6 KiB
JavaScript
Raw Blame History

/**
* Copyright (c) HashiCorp, Inc.
* SPDX-License-Identifier: BUSL-1.1
*/
import Model, { attr } from '@ember-data/model';
import { withFormFields } from 'vault/decorators/model-form-fields';
import { withModelValidations } from 'vault/decorators/model-validations';
import lazyCapabilities, { apiPath } from 'vault/macros/lazy-capabilities';
const validations = {
name: [{ type: 'presence', message: 'Library name is required.' }],
service_account_names: [{ type: 'presence', message: 'At least one service account is required.' }],
};
const formFields = ['name', 'service_account_names', 'ttl', 'max_ttl', 'disable_check_in_enforcement'];
@withModelValidations(validations)
@withFormFields(formFields)
export default class LdapLibraryModel extends Model {
@attr('string') backend; // dynamic path of secret -- set on response from value passed to queryRecord
@attr('string', {
label: 'Library name',
editDisabled: true,
})
name;
@attr('string', {
editType: 'stringArray',
label: 'Accounts',
subText:
'The names of all the accounts that can be checked out from this set. These accounts must only be used by Vault, and may only be in one set.',
})
service_account_names;
@attr({
editType: 'ttl',
label: 'Default lease TTL',
detailsLabel: 'TTL',
helperTextDisabled: 'Vault will use the default lease duration.',
defaultValue: '24h',
defaultShown: 'Engine default',
})
ttl;
@attr({
editType: 'ttl',
label: 'Max lease TTL',
detailsLabel: 'Max TTL',
helperTextDisabled: 'Vault will use the default lease duration.',
defaultValue: '24h',
defaultShown: 'Engine default',
})
max_ttl;
// this is a boolean from the server but is transformed in the serializer to display as Disabled or Enabled
@attr('string', {
editType: 'radio',
label: 'Check-in enforcement',
subText:
'When enabled, accounts must be checked in by the entity or client token that checked them out. If disabled, anyone with the right permission can check the account back in.',
possibleValues: ['Disabled', 'Enabled'],
defaultValue: 'Enabled',
})
disable_check_in_enforcement;
get displayFields() {
return this.formFields.filter((field) => field.name !== 'service_account_names');
}
@lazyCapabilities(apiPath`${'backend'}/library/${'name'}`, 'backend', 'name') libraryPath;
@lazyCapabilities(apiPath`${'backend'}/library/${'name'}/status`, 'backend', 'name') statusPath;
@lazyCapabilities(apiPath`${'backend'}/library/${'name'}/check-out`, 'backend', 'name') checkOutPath;
@lazyCapabilities(apiPath`${'backend'}/library/${'name'}/check-in`, 'backend', 'name') checkInPath;
get canCreate() {
return this.libraryPath.get('canCreate') !== false;
}
get canDelete() {
return this.libraryPath.get('canDelete') !== false;
}
get canEdit() {
return this.libraryPath.get('canUpdate') !== false;
}
get canRead() {
return this.libraryPath.get('canRead') !== false;
}
get canList() {
return this.libraryPath.get('canList') !== false;
}
get canReadStatus() {
return this.statusPath.get('canRead') !== false;
}
get canCheckOut() {
return this.checkOutPath.get('canUpdate') !== false;
}
get canCheckIn() {
return this.checkInPath.get('canUpdate') !== false;
}
fetchStatus() {
return this.store.adapterFor('ldap/library').fetchStatus(this.backend, this.name);
}
checkOutAccount(ttl) {
return this.store.adapterFor('ldap/library').checkOutAccount(this.backend, this.name, ttl);
}
checkInAccount(account) {
return this.store.adapterFor('ldap/library').checkInAccount(this.backend, this.name, [account]);
}
}
Reference in New Issue View Git Blame Copy Permalink