wiki
/
weseek__growi
зеркало из https://github.com/weseek/growi


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310
							import { useCallback, useEffect } from 'react';
import { pathUtils } from '@growi/core/dist/utils';
import { useTranslation } from 'next-i18next';
import { useForm } from 'react-hook-form';
import urljoin from 'url-join';

import AdminGeneralSecurityContainer from '~/client/services/AdminGeneralSecurityContainer';
import AdminGitHubSecurityContainer from '~/client/services/AdminGitHubSecurityContainer';
import { toastError, toastSuccess } from '~/client/util/toastr';
import { useSiteUrlWithEmptyValueWarn } from '~/states/global';

import { withUnstatedContainers } from '../../UnstatedUtils';

type Props = {
  adminGeneralSecurityContainer: AdminGeneralSecurityContainer;
  adminGitHubSecurityContainer: AdminGitHubSecurityContainer;
};

const GitHubSecurityManagementContents = (props: Props) => {
  const { adminGeneralSecurityContainer, adminGitHubSecurityContainer } = props;

  const { t } = useTranslation('admin');
  const siteUrl = useSiteUrlWithEmptyValueWarn();

  const { isGitHubEnabled } = adminGeneralSecurityContainer.state;
  const { githubClientId, githubClientSecret, retrieveError } =
    adminGitHubSecurityContainer.state;
  const gitHubCallbackUrl = urljoin(
    pathUtils.removeTrailingSlash(siteUrl),
    '/passport/github/callback',
  );

  const { register, handleSubmit, reset } = useForm();

  // Sync form with container state
  useEffect(() => {
    reset({
      githubClientId,
      githubClientSecret,
    });
  }, [reset, githubClientId, githubClientSecret]);

  const onClickSubmit = useCallback(
    async (data) => {
      try {
        await adminGitHubSecurityContainer.updateGitHubSetting({
          githubClientId: data.githubClientId ?? '',
          githubClientSecret: data.githubClientSecret ?? '',
          isSameUsernameTreatedAsIdenticalUser:
            adminGitHubSecurityContainer.state
              .isSameUsernameTreatedAsIdenticalUser,
        });
        await adminGeneralSecurityContainer.retrieveSetupStratedies();
        toastSuccess(t('security_settings.OAuth.GitHub.updated_github'));
      } catch (err) {
        toastError(err);
      }
    },
    [adminGitHubSecurityContainer, adminGeneralSecurityContainer, t],
  );

  return (
    <form onSubmit={handleSubmit(onClickSubmit)}>
      <h2 className="alert-anchor border-bottom">
        {t('security_settings.OAuth.GitHub.name')}
      </h2>

      {retrieveError != null && (
        <div className="alert alert-danger">
          <p>
            {t('Error occurred')} : {retrieveError}
          </p>
        </div>
      )}

      <div className="row my-4">
        <div className="col-6 offset-3">
          <div className="form-check form-switch form-check-success">
            <input
              id="isGitHubEnabled"
              className="form-check-input"
              type="checkbox"
              checked={
                adminGeneralSecurityContainer.state.isGitHubEnabled || false
              }
              onChange={() => {
                adminGeneralSecurityContainer.switchIsGitHubOAuthEnabled();
              }}
            />
            <label
              className="form-label form-check-label"
              htmlFor="isGitHubEnabled"
            >
              {t('security_settings.OAuth.GitHub.enable_github')}
            </label>
          </div>
          {!adminGeneralSecurityContainer.state.setupStrategies.includes(
            'github',
          ) &&
            isGitHubEnabled && (
              <div className="badge text-bg-warning">
                {t('security_settings.setup_is_not_yet_complete')}
              </div>
            )}
        </div>
      </div>

      <div className="row mb-4">
        <label
          className="form-label col-12 col-md-3 text-start text-md-end py-2"
          htmlFor="gitHubCallbackUrl"
        >
          {t('security_settings.callback_URL')}
        </label>
        <div className="col-12 col-md-6">
          <input
            id="gitHubCallbackUrl"
            className="form-control"
            type="text"
            value={gitHubCallbackUrl}
            readOnly
          />
          <p className="form-text text-muted small">
            {t('security_settings.desc_of_callback_URL', {
              AuthName: 'OAuth',
            })}
          </p>
          {(siteUrl == null || siteUrl === '') && (
            <div className="alert alert-danger">
              <span className="material-symbols-outlined">error</span>
              <span
                // biome-ignore lint/security/noDangerouslySetInnerHtml: trusted translation markup
                dangerouslySetInnerHTML={{
                  __html: t('alert.siteUrl_is_not_set', {
                    link: `<a href="/admin/app">${t('headers.app_settings', { ns: 'commons' })}<span class="material-symbols-outlined">login</span></a>`,
                    ns: 'commons',
                  }),
                }}
              />
            </div>
          )}
        </div>
      </div>

      {isGitHubEnabled && (
        <>
          <h3 className="border-bottom mb-4">
            {t('security_settings.configuration')}
          </h3>

          <div className="row mb-4">
            <label
              htmlFor="githubClientId"
              className="col-3 text-end py-2 form-label"
            >
              {t('security_settings.clientID')}
            </label>
            <div className="col-6">
              <input
                className="form-control"
                type="text"
                {...register('githubClientId')}
              />
              <p className="form-text text-muted">
                <small
                  // biome-ignore lint/security/noDangerouslySetInnerHtml: trusted translation markup
                  dangerouslySetInnerHTML={{
                    __html: t('security_settings.Use env var if empty', {
                      env: 'OAUTH_GITHUB_CLIENT_ID',
                    }),
                  }}
                />
              </p>
            </div>
          </div>

          <div className="row mb-3">
            <label
              htmlFor="githubClientSecret"
              className="col-3 text-end py-2 form-label"
            >
              {t('security_settings.client_secret')}
            </label>
            <div className="col-6">
              <input
                className="form-control"
                type="text"
                {...register('githubClientSecret')}
              />
              <p className="form-text text-muted">
                <small
                  // biome-ignore lint/security/noDangerouslySetInnerHtml: trusted translation markup
                  dangerouslySetInnerHTML={{
                    __html: t('security_settings.Use env var if empty', {
                      env: 'OAUTH_GITHUB_CLIENT_SECRET',
                    }),
                  }}
                />
              </p>
            </div>
          </div>

          <div className="row mb-3">
            <div className="offset-3 col-6 text-start">
              <div className="form-check form-check-success">
                <input
                  id="bindByUserNameGitHub"
                  className="form-check-input"
                  type="checkbox"
                  checked={
                    adminGitHubSecurityContainer.state
                      .isSameUsernameTreatedAsIdenticalUser || false
                  }
                  onChange={() => {
                    adminGitHubSecurityContainer.switchIsSameUsernameTreatedAsIdenticalUser();
                  }}
                />
                <label
                  className="form-check-label"
                  htmlFor="bindByUserNameGitHub"
                >
                  <span
                    // biome-ignore lint/security/noDangerouslySetInnerHtml: trusted translation markup
                    dangerouslySetInnerHTML={{
                      __html: t(
                        'security_settings.Treat email matching as identical',
                      ),
                    }}
                  />
                </label>
              </div>
              <p className="form-text text-muted">
                <small
                  // biome-ignore lint/security/noDangerouslySetInnerHtml: trusted translation markup
                  dangerouslySetInnerHTML={{
                    __html: t(
                      'security_settings.Treat email matching as identical_warn',
                    ),
                  }}
                />
              </p>
            </div>
          </div>

          <div className="row mb-4">
            <div className="offset-3 col-5">
              <button
                type="submit"
                className="btn btn-primary"
                disabled={retrieveError != null}
              >
                {t('Update')}
              </button>
            </div>
          </div>
        </>
      )}

      <hr />

      <div style={{ minHeight: '300px' }}>
        <h4>
          <span className="material-symbols-outlined" aria-hidden="true">
            help
          </span>
          <a href="#collapseHelpForGitHubOauth" data-bs-toggle="collapse">
            {' '}
            {t('security_settings.OAuth.how_to.github')}
          </a>
        </h4>
        <div className="card custom-card bg-body-tertiary">
          <ol id="collapseHelpForGitHubOauth" className="collapse mb-0">
            <li
              // biome-ignore lint/security/noDangerouslySetInnerHtml: trusted translation markup
              dangerouslySetInnerHTML={{
                __html: t('security_settings.OAuth.GitHub.register_1', {
                  link: '<a href="https://github.com/settings/developers" target=_blank>GitHub Developer Settings</a>',
                }),
              }}
            />
            <li
              // biome-ignore lint/security/noDangerouslySetInnerHtml: trusted translation markup
              dangerouslySetInnerHTML={{
                __html: t('security_settings.OAuth.GitHub.register_2', {
                  url: gitHubCallbackUrl,
                }),
              }}
            />
            <li
              // biome-ignore lint/security/noDangerouslySetInnerHtml: trusted translation markup
              dangerouslySetInnerHTML={{
                __html: t('security_settings.OAuth.GitHub.register_3'),
              }}
            />
          </ol>
        </div>
      </div>
    </form>
  );
};

/**
 * Wrapper component for using unstated
 */
const GitHubSecurityManagementContentsWrapper = withUnstatedContainers(
  GitHubSecurityManagementContents,
  [AdminGeneralSecurityContainer, AdminGitHubSecurityContainer],
);

export default GitHubSecurityManagementContentsWrapper;