diff options
| author | Petr Vobornik <pvoborni@redhat.com> | 2014-10-17 15:30:34 +0200 |
|---|---|---|
| committer | Petr Vobornik <pvoborni@redhat.com> | 2014-10-20 10:13:47 +0200 |
| commit | d8f05d88414217c57aba0abbd43d1623fba477f8 (patch) | |
| tree | 914a2efa089cfe4f8b167034aa4a91e65f185bff /install | |
| parent | 41bf0ba9403962140a75b28e0b279248ec101a0a (diff) | |
| download | freeipa-d8f05d88414217c57aba0abbd43d1623fba477f8.tar.gz freeipa-d8f05d88414217c57aba0abbd43d1623fba477f8.tar.xz freeipa-d8f05d88414217c57aba0abbd43d1623fba477f8.zip | |
webui: management of keytab permissions
https://fedorahosted.org/freeipa/ticket/4419
Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
Diffstat (limited to 'install')
| -rw-r--r-- | install/ui/src/freeipa/association.js | 12 | ||||
| -rw-r--r-- | install/ui/src/freeipa/host.js | 84 | ||||
| -rw-r--r-- | install/ui/src/freeipa/service.js | 84 | ||||
| -rw-r--r-- | install/ui/test/data/ipa_init.json | 8 |
4 files changed, 185 insertions, 3 deletions
diff --git a/install/ui/src/freeipa/association.js b/install/ui/src/freeipa/association.js index 64a2926d9..03a358c60 100644 --- a/install/ui/src/freeipa/association.js +++ b/install/ui/src/freeipa/association.js @@ -406,7 +406,7 @@ IPA.association_table_widget = function (spec) { spec = spec || {}; - var index = spec.name.indexOf('_'); + var index = spec.name.lastIndexOf('_'); spec.attribute_member = spec.attribute_member || spec.name.substring(0, index); spec.other_entity = spec.other_entity || spec.name.substring(index+1); @@ -589,7 +589,7 @@ IPA.association_table_widget = function (spec) { var i; var columns = that.columns.values; if (columns.length == 1) { // show pkey only - var name = columns[0].name; + var name = columns[0].param; for (i=0; i<that.values.length; i++) { var record = {}; record[name] = that.values[i]; @@ -774,6 +774,12 @@ IPA.association_table_field = function (spec) { var that = IPA.field(spec); + that.load = function(data) { + that.values = that.adapter.load(data); + that.widget.update(that.values); + that.widget.unselect_all(); + }; + that.refresh = function() { function on_success(data, text_status, xhr) { @@ -821,7 +827,7 @@ exp.association_facet_pre_op = function(spec, context) { su.context_entity(spec, context); spec.entity = entity; - var index = spec.name.indexOf('_'); + var index = spec.name.lastIndexOf('_'); spec.attribute_member = spec.attribute_member || spec.name.substring(0, index); spec.other_entity = spec.other_entity || diff --git a/install/ui/src/freeipa/host.js b/install/ui/src/freeipa/host.js index 5b886b639..455ff8f50 100644 --- a/install/ui/src/freeipa/host.js +++ b/install/ui/src/freeipa/host.js @@ -146,6 +146,90 @@ return { label: '@i18n:objects.host.status' } ] + }, + { + $factory: IPA.section, + name: 'divider', + layout_css_class: 'col-sm-12', + fields: [] + }, + { + name: 'read', + label: '@i18n:keytab.allowed_to_retrieve', + $factory: IPA.section, + fields: [ + { + $type: 'association_table', + id: 'host_ipaallowedtoperform_read_keys_user', + name: 'ipaallowedtoperform_read_keys_user', + add_method: 'allow_retrieve_keytab', + remove_method: 'disallow_retrieve_keytab', + add_title: '@i18n:keytab.add_retrive', + remove_title: '@i18n:keytab.remove_retrieve', + columns: [ + { + name: 'ipaallowedtoperform_read_keys_user', + label: '@mo:user.label_singular', + link: true + } + ] + }, + { + $type: 'association_table', + id: 'host_ipaallowedtoperform_read_keys_group', + name: 'ipaallowedtoperform_read_keys_group', + add_method: 'allow_retrieve_keytab', + remove_method: 'disallow_retrieve_keytab', + add_title: '@i18n:keytab.add_retrive', + remove_title: '@i18n:keytab.remove_retrieve', + columns: [ + { + name: 'ipaallowedtoperform_read_keys_group', + label: '@mo:group.label_singular', + link: true + } + ] + } + ] + }, + { + name: 'write', + label: '@i18n:keytab.allowed_to_create', + $factory: IPA.section, + fields: [ + { + $type: 'association_table', + id: 'host_ipaallowedtoperform_write_keys_user', + name: 'ipaallowedtoperform_write_keys_user', + add_method: 'allow_create_keytab', + remove_method: 'disallow_create_keytab', + add_title: '@i18n:keytab.add_create', + remove_title: '@i18n:keytab.remove_create', + columns: [ + { + name: 'ipaallowedtoperform_write_keys_user', + label: '@mo:user.label_singular', + link: true + } + ] + }, + { + $type: 'association_table', + id: 'host_ipaallowedtoperform_write_keys_group', + name: 'ipaallowedtoperform_write_keys_group', + add_method: 'allow_create_keytab', + remove_method: 'disallow_create_keytab', + add_title: '@i18n:keytab.add_create', + remove_title: '@i18n:keytab.remove_create', + columns: [ + { + name: 'ipaallowedtoperform_write_keys_group', + label: '@mo:group.label_singular', + link: true + } + ] + } + ] } ], actions: [ diff --git a/install/ui/src/freeipa/service.js b/install/ui/src/freeipa/service.js index ee71e7af3..3e47981bd 100644 --- a/install/ui/src/freeipa/service.js +++ b/install/ui/src/freeipa/service.js @@ -134,6 +134,90 @@ return { label: '@i18n:objects.service.status' } ] + }, + { + $factory: IPA.section, + name: 'divider', + layout_css_class: 'col-sm-12', + fields: [] + }, + { + name: 'read', + label: '@i18n:keytab.allowed_to_retrieve', + $factory: IPA.section, + fields: [ + { + $type: 'association_table', + id: 'service_ipaallowedtoperform_read_keys_user', + name: 'ipaallowedtoperform_read_keys_user', + add_method: 'allow_retrieve_keytab', + remove_method: 'disallow_retrieve_keytab', + add_title: '@i18n:keytab.add_retrive', + remove_title: '@i18n:keytab.remove_retrieve', + columns: [ + { + name: 'ipaallowedtoperform_read_keys_user', + label: '@mo:user.label_singular', + link: true + } + ] + }, + { + $type: 'association_table', + id: 'service_ipaallowedtoperform_read_keys_group', + name: 'ipaallowedtoperform_read_keys_group', + add_method: 'allow_retrieve_keytab', + remove_method: 'disallow_retrieve_keytab', + add_title: '@i18n:keytab.add_retrive', + remove_title: '@i18n:keytab.remove_retrieve', + columns: [ + { + name: 'ipaallowedtoperform_read_keys_group', + label: '@mo:group.label_singular', + link: true + } + ] + } + ] + }, + { + name: 'write', + label: '@i18n:keytab.allowed_to_create', + $factory: IPA.section, + fields: [ + { + $type: 'association_table', + id: 'service_ipaallowedtoperform_write_keys_user', + name: 'ipaallowedtoperform_write_keys_user', + add_method: 'allow_create_keytab', + remove_method: 'disallow_create_keytab', + add_title: '@i18n:keytab.add_create', + remove_title: '@i18n:keytab.remove_create', + columns: [ + { + name: 'ipaallowedtoperform_write_keys_user', + label: '@mo:user.label_singular', + link: true + } + ] + }, + { + $type: 'association_table', + id: 'service_ipaallowedtoperform_write_keys_group', + name: 'ipaallowedtoperform_write_keys_group', + add_method: 'allow_create_keytab', + remove_method: 'disallow_create_keytab', + add_title: '@i18n:keytab.add_create', + remove_title: '@i18n:keytab.remove_create', + columns: [ + { + name: 'ipaallowedtoperform_write_keys_group', + label: '@mo:group.label_singular', + link: true + } + ] + } + ] } ], actions: [ diff --git a/install/ui/test/data/ipa_init.json b/install/ui/test/data/ipa_init.json index c0e17947a..ad9449d28 100644 --- a/install/ui/test/data/ipa_init.json +++ b/install/ui/test/data/ipa_init.json @@ -143,6 +143,14 @@ "search": "Search" }, "false": "False", + "keytab": { + "add_create": "Allow ${other_entity} to create keytab of ${primary_key}", + "add_retrive": "Allow ${other_entity} to retrieve keytab of ${primary_key}", + "allowed_to_create": "Allowed to create keytab", + "allowed_to_retrieve": "Allowed to retrieve keytab", + "remove_create": "Disallow ${other_entity} to create keytab of ${primary_key}", + "remove_retrieve": "Disallow ${other_entity} to retrieve keytab of ${primary_key}" + }, "krbauthzdata": { "inherited": "Inherited from server configuration", "mspac": "MS-PAC", |