Update with query param functionality
#30537
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
Build Results: |
|
CI Results: |
hellobontempo
commented
May 7, 2025
| @handleTabClick={{this.setAuthType}} | ||
| @selectedAuthMethod={{this.selectedAuthMethod}} | ||
| /> | ||
| {{#if this.showCustomAuthOptions}} |
There was a problem hiding this comment.
does this naming make sense to folks? really struggled with how to make this intuitive...Could also be renderAlternativeLoginView 🫠 oof naming is hard
If there is any sort of login config (like listing visibility) or customization settings, then "Sign in with other methods" appears and houses the full dropdown of methods. Users can toggle between these views.
hellobontempo
commented
May 7, 2025
| @@ -24,18 +24,11 @@ | |||
| </Hds::Form::Select::Field> | |||
| {{else}} | |||
| {{#let (get mounts "0") as |mount|}} | |||
| {{#if (and (eq @selectedAuthMethod "token") mount.description)}} | |||
There was a problem hiding this comment.
Forgot designs didn't include readonly input 🙃
before:
hellobontempo
commented
May 7, 2025
| {{/if}} | ||
| </Hds::Form::TextInput::Field> | ||
| {{/if}} | ||
| <Auth::SingleMount |
hellobontempo
commented
May 7, 2025
Comment on lines
+92
to
+97
| In older versions of Vault, the "with" query param could refer to either the auth mount path or the type | ||
| (which may be the same, since the default mount path *is* the type). | ||
| For backward compatibility, we handle both scenarios. | ||
| → If `authMount` matches a visible auth mount, return its mount data (which includes the type). | ||
| → If it matches a supported auth type instead, return just the type to preselect it in the dropdown. | ||
| */ |
There was a problem hiding this comment.
please let me know if this makes sense 🙏
lane-wetmore
approved these changes
May 7, 2025
Comment on lines
+92
to
+97
| In older versions of Vault, the "with" query param could refer to either the auth mount path or the type | ||
| (which may be the same, since the default mount path *is* the type). | ||
| For backward compatibility, we handle both scenarios. | ||
| → If `authMount` matches a visible auth mount, return its mount data (which includes the type). | ||
| → If it matches a supported auth type instead, return just the type to preselect it in the dropdown. | ||
| */ |
hellobontempo
commented
May 7, 2025
Comment on lines
59
to
62
| if (model?.unwrapResponse) { | ||
| // handles the transition | ||
| return this.controllerFor('vault.cluster.auth').send('authSuccess', model.unwrapResponse); | ||
| } |
There was a problem hiding this comment.
seemed like this made more senes to do in the redirect and will make even MORE sense when the redirects in authSuccess are relocated to the auth service.
zofskeez
approved these changes
May 7, 2025
| @handleTabClick={{this.setAuthType}} | ||
| @selectedAuthMethod={{this.selectedAuthMethod}} | ||
| /> | ||
| {{#if this.showCustomAuthOptions}} |
3a6e8fe
into
VAULT-35470/wire-up-accessible-auth-components
25 checks passed
6 tasks
hellobontempo
added a commit
that referenced
this pull request
May 8, 2025
* UI: Move `wrapped_token` login functionality to route (#30465) * move token unwrap functionality to page component * update mfa test * remove wrapped_token logic from page component * more cleanup to relocate unwrap logic * move wrapped_token to route * move unwrap tests to acceptance * move mfa form back * add some padding * update mfa-form tests * get param from params * wait for auth form on back * run rests * UI: Add MFA support for SSO methods (#30489) * initial implementation of mfa validation for sso methods * update typescript interfaces * add stopgap changes to auth service * switch order backend is defined * update login form for tests even though it will be deleted * attempt to stabilize wrapped_query test * =update login form test why not * Update ui/app/components/auth/form/saml.ts Co-authored-by: lane-wetmore <lane.wetmore@hashicorp.com> --------- Co-authored-by: lane-wetmore <lane.wetmore@hashicorp.com> * Move CSP error to page component (#30492) * initial implementation of mfa validation for sso methods * update typescript interfaces * add stopgap changes to auth service * switch order backend is defined * update login form for tests even though it will be deleted * attempt to stabilize wrapped_query test * =update login form test why not * move csp error to page component * move csp error to page component * Move fetching unauthenticated mounts to the route (#30509) * rename namespace arg to namespaceQueryParam * move fetch mounts to route * add margin to sign in button spacing * update selectors for oidc provider test * add todo delete comments * fix arg typo in test * change method name * fix args handling tab click * remove tests that no longer relate to components functionality * add tests for preselectedAuthType functionality * move typescript interfaces, fix selector * add await * oops * move format method down, make private * move tab formatting to the route * move to page object * fix token unwrap aborting transition * not sure what that is doing there.. * add comments * rename to presetAuthType * use did-insert instead * UI: Implement `Auth::FormTemplate` (#30521) * replace Auth::LoginForm with Auth::FormTemplate * first round of test updates * return null if mounts object is empty * add comment and test for empty sys/internal/mounts data * more test updates * delete listing_visibility test, delete login-form component test * update divs to Hds::Card::Container * add overflow class * remove unused getters * move requesting stored auth type to page component * fix typo * Update ui/app/components/auth/form/oidc-jwt.ts make comment make more sense * small cleanup items, update imports * Delete old auth components (#30527) * delete old components * update codeowners * Update `with` query param functionality (#30537) * update path input to type=hidden * add test coverage * update page test * update auth route * delete login form * update ent test * consolidate logic in getter * add more comments * more comments.. * rename selector * refresh model as well * redirect for invalid query params * move unwrap to redirect * only redirect on invalid query params * add tests for query param * test selector updates * remove todos, update relevant ones with initials * add changelog --------- Co-authored-by: lane-wetmore <lane.wetmore@hashicorp.com>
6 tasks
Erfankam
pushed a commit
to Erfankam/vault
that referenced
this pull request
Sep 1, 2025
* UI: Move `wrapped_token` login functionality to route (hashicorp#30465) * move token unwrap functionality to page component * update mfa test * remove wrapped_token logic from page component * more cleanup to relocate unwrap logic * move wrapped_token to route * move unwrap tests to acceptance * move mfa form back * add some padding * update mfa-form tests * get param from params * wait for auth form on back * run rests * UI: Add MFA support for SSO methods (hashicorp#30489) * initial implementation of mfa validation for sso methods * update typescript interfaces * add stopgap changes to auth service * switch order backend is defined * update login form for tests even though it will be deleted * attempt to stabilize wrapped_query test * =update login form test why not * Update ui/app/components/auth/form/saml.ts Co-authored-by: lane-wetmore <lane.wetmore@hashicorp.com> --------- Co-authored-by: lane-wetmore <lane.wetmore@hashicorp.com> * Move CSP error to page component (hashicorp#30492) * initial implementation of mfa validation for sso methods * update typescript interfaces * add stopgap changes to auth service * switch order backend is defined * update login form for tests even though it will be deleted * attempt to stabilize wrapped_query test * =update login form test why not * move csp error to page component * move csp error to page component * Move fetching unauthenticated mounts to the route (hashicorp#30509) * rename namespace arg to namespaceQueryParam * move fetch mounts to route * add margin to sign in button spacing * update selectors for oidc provider test * add todo delete comments * fix arg typo in test * change method name * fix args handling tab click * remove tests that no longer relate to components functionality * add tests for preselectedAuthType functionality * move typescript interfaces, fix selector * add await * oops * move format method down, make private * move tab formatting to the route * move to page object * fix token unwrap aborting transition * not sure what that is doing there.. * add comments * rename to presetAuthType * use did-insert instead * UI: Implement `Auth::FormTemplate` (hashicorp#30521) * replace Auth::LoginForm with Auth::FormTemplate * first round of test updates * return null if mounts object is empty * add comment and test for empty sys/internal/mounts data * more test updates * delete listing_visibility test, delete login-form component test * update divs to Hds::Card::Container * add overflow class * remove unused getters * move requesting stored auth type to page component * fix typo * Update ui/app/components/auth/form/oidc-jwt.ts make comment make more sense * small cleanup items, update imports * Delete old auth components (hashicorp#30527) * delete old components * update codeowners * Update `with` query param functionality (hashicorp#30537) * update path input to type=hidden * add test coverage * update page test * update auth route * delete login form * update ent test * consolidate logic in getter * add more comments * more comments.. * rename selector * refresh model as well * redirect for invalid query params * move unwrap to redirect * only redirect on invalid query params * add tests for query param * test selector updates * remove todos, update relevant ones with initials * add changelog --------- Co-authored-by: lane-wetmore <lane.wetmore@hashicorp.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description
Previously, the
withquery param could refer to either the auth mount path or type (which could be the same, since the default mount path is the type). For backward compatibility, we handle both scenarios. This way if anyone has bookmarked a URL including thewithquery param, the login form should behavior similarly.Selecting and auth method in the login form no longer updates the query param
New functionality
?with=<mount path>:listing_visibility="unauth", the login form will show the single mount view for that path, with a hidden input for the custom path (hides extra noise for the end user)?with=<auth type>(backward compatibility):Screen.Recording.2025-05-07.at.10.25.46.AM.mov
hidden input renders with custom path value
old behavior
tab tied to query param
selecting new method in dropdown also tied to query param
TODO only if you're a HashiCorp employee
backport/label that matches the desired release branch. Note that in the CE repo, the latest release branch will look likebackport/x.x.x, but older release branches will bebackport/ent/x.x.x+ent.of a public function, even if that change is in a CE file, double check that
applying the patch for this PR to the ENT repo and running tests doesn't
break any tests. Sometimes ENT only tests rely on public functions in CE
files.
in the PR description, commit message, or branch name.
description. Also, make sure the changelog is in this PR, not in your ENT PR.