[pve-manager.git] / www / manager6 / dc / UserView.js

Ext.define('PVE.dc.UserView', {
    extend: 'Ext.grid.GridPanel',

    alias: ['widget.pveUserView'],

    onlineHelp: 'pveum_users',

    stateful: true,
    stateId: 'grid-users',

    initComponent: function() {
	var me = this;

	var caps = Ext.state.Manager.get('GuiCap');

	var store = new Ext.data.Store({
            id: "users",
	    model: 'pmx-users',
	    sorters: {
		property: 'userid',
		direction: 'ASC',
	    },
	});
	let reload = () => store.load();

	let sm = Ext.create('Ext.selection.RowModel', {});

	let remove_btn = Ext.create('Proxmox.button.StdRemoveButton', {
	    selModel: sm,
	    baseurl: '/access/users/',
	    dangerous: true,
	    enableFn: rec => caps.access['User.Modify'] && rec.data.userid !== 'root@pam',
	    callback: () => reload(),
	});
	let run_editor = function() {
	    var rec = sm.getSelection()[0];
	    if (!rec || !caps.access['User.Modify']) {
		return;
	    }
	    Ext.create('PVE.dc.UserEdit', {
		userid: rec.data.userid,
		autoShow: true,
		listeners: {
		    destroy: () => reload(),
		},
	    });
	};
	let edit_btn = new Proxmox.button.Button({
	    text: gettext('Edit'),
	    disabled: true,
	    enableFn: function(rec) {
		return !!caps.access['User.Modify'];
	    },
	    selModel: sm,
	    handler: run_editor,
	});
	let pwchange_btn = new Proxmox.button.Button({
	    text: gettext('Password'),
	    disabled: true,
	    selModel: sm,
	    enableFn: function(record) {
		let type = record.data['realm-type'];
		if (type) {
		    if (PVE.Utils.authSchema[type]) {
			return !!PVE.Utils.authSchema[type].pwchange;
		    }
		}
		return false;
	    },
	    handler: function(btn, event, rec) {
		Ext.create('Proxmox.window.PasswordEdit', {
		    userid: rec.data.userid,
		    autoShow: true,
		    listeners: {
			destroy: () => reload(),
		    },
		});
	    },
	});

	var perm_btn = new Proxmox.button.Button({
	    text: gettext('Permissions'),
	    disabled: true,
	    selModel: sm,
	    handler: function(btn, event, rec) {
		Ext.create('PVE.dc.PermissionView', {
		    userid: rec.data.userid,
		    autoShow: true,
		    listeners: {
			destroy: () => reload(),
		    },
		});
	    },
	});

	let unlock_btn = new Proxmox.button.Button({
	    text: gettext('Unlock TFA'),
	    disabled: true,
	    selModel: sm,
	    enableFn: rec => !!(caps.access['User.Modify'] &&
	        (rec.data['totp-locked'] || rec.data['tfa-locked-until'])),
	    handler: function(btn, event, rec) {
		Ext.Msg.confirm(
		    gettext(Ext.String.format('Unlock TFA authentication for {0}', rec.data.userid)),
		    gettext("Locked 2nd factors can happen if the user's password was leaked. Are you sure you want to unlock the user?"),
		    function(btn_response) {
			if (btn_response === 'yes') {
			    Proxmox.Utils.API2Request({
				url: `/access/users/${rec.data.userid}/unlock-tfa`,
				waitMsgTarget: me,
				method: 'PUT',
				failure: function(response, options) {
				    Ext.Msg.alert(gettext('Error'), response.htmlStatus);
				},
				success: function(response, options) {
				    reload();
				},
			    });
			}
		    },
		);
	    },
	});

	Ext.apply(me, {
	    store: store,
	    selModel: sm,
	    tbar: [
		{
		    text: gettext('Add'),
		    disabled: !caps.access['User.Modify'],
		    handler: function() {
			Ext.create('PVE.dc.UserEdit', {
			    autoShow: true,
			    listeners: {
				destroy: () => reload(),
			    },
			});
		    },
		},
		'-',
		edit_btn,
		remove_btn,
		'-',
		pwchange_btn,
		'-',
		perm_btn,
		'-',
		unlock_btn,
	    ],
	    viewConfig: {
		trackOver: false,
	    },
	    columns: [
		{
		    header: gettext('User name'),
		    width: 200,
		    sortable: true,
		    renderer: Proxmox.Utils.render_username,
		    dataIndex: 'userid',
		},
		{
		    header: gettext('Realm'),
		    width: 100,
		    sortable: true,
		    renderer: Proxmox.Utils.render_realm,
		    dataIndex: 'userid',
		},
		{
		    header: gettext('Enabled'),
		    width: 80,
		    sortable: true,
		    renderer: Proxmox.Utils.format_boolean,
		    dataIndex: 'enable',
		},
		{
		    header: gettext('Expire'),
		    width: 80,
		    sortable: true,
		    renderer: Proxmox.Utils.format_expire,
		    dataIndex: 'expire',
		},
		{
		    header: gettext('Name'),
		    width: 150,
		    sortable: true,
		    renderer: PVE.Utils.render_full_name,
		    dataIndex: 'firstname',
		},
		{
		    header: 'TFA',
		    width: 120,
		    sortable: true,
		    renderer: function(v, metaData, record) {
			let tfa_type = PVE.Parser.parseTfaType(v);
			if (tfa_type === undefined) {
			    return Proxmox.Utils.noText;
			}

			if (tfa_type !== 1) {
			    return tfa_type;
			}

			let locked_until = record.data['tfa-locked-until'];
			if (locked_until !== undefined) {
			    let now = new Date().getTime() / 1000;
			    if (locked_until > now) {
				return gettext('Locked');
			    }
			}

			if (record.data['totp-locked']) {
			    return gettext('TOTP Locked');
			}

			return Proxmox.Utils.yesText;
		    },
		    dataIndex: 'keys',
		},
		{
		    header: gettext('Comment'),
		    sortable: false,
		    renderer: Ext.String.htmlEncode,
		    dataIndex: 'comment',
		    flex: 1,
		},
	    ],
	    listeners: {
		activate: reload,
		itemdblclick: run_editor,
	    },
	});

	me.callParent();

	Proxmox.Utils.monStoreErrors(me, store);
    },
});
Commit	Line	Data
ee7a4dad DM	1	Ext.define('PVE.dc.UserView', {
	2	extend: 'Ext.grid.GridPanel',
	3
	4	alias: ['widget.pveUserView'],
	5
ba93a9c6 DC	6	onlineHelp: 'pveum_users',
ba93a9c6 DC	7
3ac2a964 DC	8	stateful: true,
	9	stateId: 'grid-users',
	10
8058410f	11	initComponent: function() {
ee7a4dad DM	12	var me = this;
	13
	14	var caps = Ext.state.Manager.get('GuiCap');
	15
	16	var store = new Ext.data.Store({
	17	id: "users",
69c33cff	18	model: 'pmx-users',
2a4971d8 TL	19	sorters: {
2a4971d8 TL	20	property: 'userid',
392e3cf1	21	direction: 'ASC',
f6710aac	22	},
ee7a4dad	23	});
42d48022	24	let reload = () => store.load();
ee7a4dad	25
42d48022	26	let sm = Ext.create('Ext.selection.RowModel', {});
ee7a4dad	27
42d48022	28	let remove_btn = Ext.create('Proxmox.button.StdRemoveButton', {
ee7a4dad	29	selModel: sm,
3b1ca3ff	30	baseurl: '/access/users/',
42a8a0b4	31	dangerous: true,
42d48022 TL	32	enableFn: rec => caps.access['User.Modify'] && rec.data.userid !== 'root@pam',
	33	callback: () => reload(),
	34	});
	35	let run_editor = function() {
ee7a4dad DM	36	var rec = sm.getSelection()[0];
	37	if (!rec \|\| !caps.access['User.Modify']) {
	38	return;
	39	}
42d48022 TL	40	Ext.create('PVE.dc.UserEdit', {
	41	userid: rec.data.userid,
	42	autoShow: true,
	43	listeners: {
	44	destroy: () => reload(),
	45	},
	46	});
ee7a4dad	47	};
42d48022	48	let edit_btn = new Proxmox.button.Button({
ee7a4dad DM	49	text: gettext('Edit'),
	50	disabled: true,
	51	enableFn: function(rec) {
	52	return !!caps.access['User.Modify'];
	53	},
	54	selModel: sm,
f6710aac	55	handler: run_editor,
ee7a4dad	56	});
42d48022	57	let pwchange_btn = new Proxmox.button.Button({
ee7a4dad DM	58	text: gettext('Password'),
	59	disabled: true,
	60	selModel: sm,
60265958	61	enableFn: function(record) {
c0e3df11 TL	62	let type = record.data['realm-type'];
c0e3df11 TL	63	if (type) {
60265958 DC	64	if (PVE.Utils.authSchema[type]) {
	65	return !!PVE.Utils.authSchema[type].pwchange;
	66	}
	67	}
	68	return false;
	69	},
ee7a4dad	70	handler: function(btn, event, rec) {
42d48022 TL	71	Ext.create('Proxmox.window.PasswordEdit', {
	72	userid: rec.data.userid,
	73	autoShow: true,
	74	listeners: {
	75	destroy: () => reload(),
	76	},
ee7a4dad	77	});
f6710aac	78	},
ee7a4dad	79	});
24d2ed8c	80
98d48570 FG	81	var perm_btn = new Proxmox.button.Button({
98d48570 FG	82	text: gettext('Permissions'),
42d48022	83	disabled: true,
98d48570 FG	84	selModel: sm,
98d48570 FG	85	handler: function(btn, event, rec) {
42d48022 TL	86	Ext.create('PVE.dc.PermissionView', {
	87	userid: rec.data.userid,
	88	autoShow: true,
	89	listeners: {
	90	destroy: () => reload(),
	91	},
98d48570	92	});
f6710aac	93	},
98d48570 FG	94	});
98d48570 FG	95
59706074 WB	96	let unlock_btn = new Proxmox.button.Button({
	97	text: gettext('Unlock TFA'),
	98	disabled: true,
	99	selModel: sm,
	100	enableFn: rec => !!(caps.access['User.Modify'] &&
	101	(rec.data['totp-locked'] \|\| rec.data['tfa-locked-until'])),
	102	handler: function(btn, event, rec) {
	103	Ext.Msg.confirm(
	104	gettext(Ext.String.format('Unlock TFA authentication for {0}', rec.data.userid)),
	105	gettext("Locked 2nd factors can happen if the user's password was leaked. Are you sure you want to unlock the user?"),
	106	function(btn_response) {
	107	if (btn_response === 'yes') {
	108	Proxmox.Utils.API2Request({
	109	url: `/access/users/${rec.data.userid}/unlock-tfa`,
	110	waitMsgTarget: me,
	111	method: 'PUT',
	112	failure: function(response, options) {
	113	Ext.Msg.alert(gettext('Error'), response.htmlStatus);
	114	},
	115	success: function(response, options) {
	116	reload();
	117	},
	118	});
	119	}
	120	},
	121	);
	122	},
	123	});
	124
ee7a4dad DM	125	Ext.apply(me, {
	126	store: store,
	127	selModel: sm,
42d48022 TL	128	tbar: [
	129	{
	130	text: gettext('Add'),
	131	disabled: !caps.access['User.Modify'],
	132	handler: function() {
	133	Ext.create('PVE.dc.UserEdit', {
	134	autoShow: true,
	135	listeners: {
	136	destroy: () => reload(),
	137	},
	138	});
	139	},
	140	},
	141	'-',
	142	edit_btn,
	143	remove_btn,
	144	'-',
	145	pwchange_btn,
42d48022 TL	146	'-',
42d48022 TL	147	perm_btn,
59706074 WB	148	'-',
59706074 WB	149	unlock_btn,
42d48022	150	],
ee7a4dad	151	viewConfig: {
f6710aac	152	trackOver: false,
ee7a4dad DM	153	},
	154	columns: [
	155	{
	156	header: gettext('User name'),
	157	width: 200,
	158	sortable: true,
b8dcc6d3	159	renderer: Proxmox.Utils.render_username,
f6710aac	160	dataIndex: 'userid',
ee7a4dad DM	161	},
	162	{
	163	header: gettext('Realm'),
	164	width: 100,
	165	sortable: true,
b8dcc6d3	166	renderer: Proxmox.Utils.render_realm,
f6710aac	167	dataIndex: 'userid',
ee7a4dad DM	168	},
	169	{
	170	header: gettext('Enabled'),
	171	width: 80,
	172	sortable: true,
e7ade592	173	renderer: Proxmox.Utils.format_boolean,
f6710aac	174	dataIndex: 'enable',
ee7a4dad DM	175	},
	176	{
	177	header: gettext('Expire'),
	178	width: 80,
	179	sortable: true,
2a4971d8	180	renderer: Proxmox.Utils.format_expire,
f6710aac	181	dataIndex: 'expire',
ee7a4dad DM	182	},
	183	{
	184	header: gettext('Name'),
	185	width: 150,
	186	sortable: true,
6ad4be69	187	renderer: PVE.Utils.render_full_name,
f6710aac	188	dataIndex: 'firstname',
ee7a4dad	189	},
bf0754fd TL	190	{
bf0754fd TL	191	header: 'TFA',
2387c194	192	width: 120,
bf0754fd	193	sortable: true,
2387c194	194	renderer: function(v, metaData, record) {
42d48022	195	let tfa_type = PVE.Parser.parseTfaType(v);
da898810 WB	196	if (tfa_type === undefined) {
da898810 WB	197	return Proxmox.Utils.noText;
2387c194 WB	198	}
	199
	200	if (tfa_type !== 1) {
da898810 WB	201	return tfa_type;
da898810 WB	202	}
2387c194 WB	203
	204	let locked_until = record.data['tfa-locked-until'];
	205	if (locked_until !== undefined) {
	206	let now = new Date().getTime() / 1000;
	207	if (locked_until > now) {
	208	return gettext('Locked');
	209	}
	210	}
	211
	212	if (record.data['totp-locked']) {
	213	return gettext('TOTP Locked');
	214	}
	215
	216	return Proxmox.Utils.yesText;
bf0754fd	217	},
f6710aac	218	dataIndex: 'keys',
bf0754fd	219	},
ee7a4dad	220	{
ee7a4dad DM	221	header: gettext('Comment'),
ee7a4dad DM	222	sortable: false,
2eb0767b	223	renderer: Ext.String.htmlEncode,
ee7a4dad	224	dataIndex: 'comment',
f6710aac TL	225	flex: 1,
f6710aac TL	226	},
ee7a4dad DM	227	],
ee7a4dad DM	228	listeners: {
c0b3df6e	229	activate: reload,
f6710aac TL	230	itemdblclick: run_editor,
f6710aac TL	231	},
ee7a4dad DM	232	});
	233
	234	me.callParent();
f3c90a1d DC	235
f3c90a1d DC	236	Proxmox.Utils.monStoreErrors(me, store);
f6710aac	237	},
ee7a4dad	238	});