[Enhancement #431] Link to auth service from user administration and …

…user profile.

.env

@@ -4,3 +4,5 @@ REACT_APP_DEPLOYMENT_NAME=
 REACT_APP_AUTHENTICATION=
 REACT_APP_AUTH_SERVER_URL=
 REACT_APP_AUTH_CLIENT_ID=
+REACT_APP_AUTH_SERVER_MANAGEMENT=
+REACT_APP_AUTH_SERVER_USER_PROFILE=

public/config.js.template

@@ -6,5 +6,7 @@ window.__config__ = {
   SHOW_PUBLIC_VIEW_ON_UNAUTHORIZED: '${SHOW_PUBLIC_VIEW_ON_UNAUTHORIZED}',
   AUTHENTICATION: '${AUTHENTICATION}',
   AUTH_SERVER_URL: '${AUTH_SERVER_URL}',
-  AUTH_CLIENT_ID: '${AUTH_CLIENT_ID}'
+  AUTH_CLIENT_ID: '${AUTH_CLIENT_ID}',
+  AUTH_SERVER_MANAGEMENT: '${AUTH_SERVER_MANAGEMENT}',
+  AUTH_SERVER_USER_PROFILE: '${AUTH_SERVER_USER_PROFILE}'
 }

src/component/administration/user/Users.tsx

@@ -23,6 +23,11 @@ import { useI18n } from "../../hook/useI18n";
 import PromiseTrackingMask from "../../misc/PromiseTrackingMask";
 import { trackPromise } from "react-promise-tracker";
 import IfInternalAuth from "../../misc/oidc/IfInternalAuth";
+import { isUsingOidcAuth } from "../../../util/OidcUtils";
+import IfOidcAuth from "../../misc/oidc/IfOidcAuth";
+import { getEnv } from "../../../util/Constants";
+import ConfigParam from "../../../util/ConfigParam";
+import OutgoingLink from "../../misc/OutgoingLink";
 
 const Users: React.FC = () => {
   const { i18n } = useI18n();
@@ -88,13 +93,23 @@ const Users: React.FC = () => {
           onSubmit={onUserRoleSubmit}
           onCancel={() => setEditedUser(EMPTY_USER)}
         />
+        <IfOidcAuth>
+          <p id="oidc-notice" className="italics">
+            <OutgoingLink
+              iri={getEnv(ConfigParam.AUTH_SERVER_MANAGEMENT_URL, "")}
+              label={i18n("administration.users.oidc")}
+              showLink={true}
+            />
+          </p>
+        </IfOidcAuth>
         <UsersTable
           users={users}
           currentUser={currentUser}
           disable={onDisableUser}
           enable={onEnableUser}
           unlock={(user) => setUserToUnlock(user)}
           changeRole={(user) => setEditedUser(user)}
+          readOnly={isUsingOidcAuth()}
         />
       </PanelWithActions>
     </>

src/component/administration/user/UsersTable.tsx

@@ -20,10 +20,12 @@ import classNames from "classnames";
 interface UsersTableProps extends UserActions {
   users: User[];
   currentUser: User;
+  readOnly?: boolean;
 }
 
 const UsersTable: React.FC<UsersTableProps> = (props) => {
-  const { users, currentUser, disable, enable, unlock, changeRole } = props;
+  const { users, currentUser, disable, enable, unlock, changeRole, readOnly } =
+    props;
   const { i18n } = useI18n();
   const data = React.useMemo(() => users, [users]);
   const columns: Column<User>[] = React.useMemo(
@@ -77,20 +79,21 @@ const UsersTable: React.FC<UsersTableProps> = (props) => {
         disableFilters: true,
         disableSortBy: true,
         // @ts-ignore
-        Cell: ({ row }) => (
-          <UserActionsButtons
-            user={row.original}
-            currentUser={currentUser}
-            disable={disable}
-            enable={enable}
-            unlock={unlock}
-            changeRole={changeRole}
-          />
-        ),
+        Cell: ({ row }) =>
+          !readOnly && (
+            <UserActionsButtons
+              user={row.original}
+              currentUser={currentUser}
+              disable={disable}
+              enable={enable}
+              unlock={unlock}
+              changeRole={changeRole}
+            />
+          ),
         className: "align-middle table-row-actions",
       },
     ],
-    [i18n, disable, enable, unlock, changeRole, currentUser]
+    [i18n, disable, enable, unlock, changeRole, currentUser, readOnly]
   );
   const filterTypes = React.useMemo(() => ({ text: textContainsFilter }), []);
   const tableInstance = useTable<User>(

src/component/administration/user/__tests__/Users.test.tsx

@@ -6,6 +6,8 @@ import * as UserActions from "../../../../action/AsyncUserActions";
 import UsersTable from "../UsersTable";
 import { mockUseI18n } from "../../../../__tests__/environment/IntlUtil";
 import * as Redux from "react-redux";
+import * as OidcUtils from "../../../../util/OidcUtils";
+import * as Constats from "../../../../util/Constants";
 
 jest.mock("react-redux", () => ({
   ...jest.requireActual("react-redux"),
@@ -61,6 +63,22 @@ describe("Users", () => {
     });
   });
 
+  it("renders users table read only when using OIDC authentication", () => {
+    jest.spyOn(OidcUtils, "isUsingOidcAuth").mockReturnValue(true);
+    jest.spyOn(UserActions, "loadUsers");
+    const wrapper = render();
+    expect(wrapper.find(UsersTable).prop("readOnly")).toBeTruthy();
+  });
+
+  it("renders link to auth service administration when using OIDC authentication", () => {
+    const link = "http://localhost/services/auth";
+    jest.spyOn(Constats, "getEnv").mockReturnValue(link);
+    jest.spyOn(OidcUtils, "isUsingOidcAuth").mockReturnValue(true);
+    jest.spyOn(UserActions, "loadUsers");
+    const wrapper = render();
+    expect(wrapper.exists("#oidc-notice")).toBeTruthy();
+  });
+
   describe("user unlocking", () => {
     it("opens unlock user dialog and passes selected user to it on unlock click", () => {
       const wrapper = render();

src/component/misc/oidc/IfInternalAuth.tsx

@@ -2,10 +2,7 @@ import React from "react";
 import { isUsingOidcAuth } from "../../../util/OidcUtils";
 
 const IfInternalAuth: React.FC = ({ children }) => {
-  if (isUsingOidcAuth()) {
-    return null;
-  }
-  return <>{children}</>;
+  return isUsingOidcAuth() ? null : <>{children}</>;
 };
 
 export default IfInternalAuth;

src/component/misc/oidc/IfOidcAuth.tsx

@@ -0,0 +1,8 @@
+import React from "react";
+import { isUsingOidcAuth } from "../../../util/OidcUtils";
+
+const IfOidcAuth: React.FC = ({ children }) => {
+  return isUsingOidcAuth() ? <>{children}</> : null;
+};
+
+export default IfOidcAuth;

src/component/profile/Profile.tsx

@@ -18,6 +18,10 @@ import { Card, CardBody } from "reactstrap";
 import WindowTitle from "../misc/WindowTitle";
 import UserRoles from "../administration/user/UserRoles";
 import IfInternalAuth from "../misc/oidc/IfInternalAuth";
+import { getEnv } from "../../util/Constants";
+import ConfigParam from "../../util/ConfigParam";
+import IfOidcAuth from "../misc/oidc/IfOidcAuth";
+import OutgoingLink from "../misc/OutgoingLink";
 
 interface ProfileProps extends HasI18n {
   user: User;
@@ -108,6 +112,15 @@ export class Profile extends React.Component<ProfileProps, ProfileState> {
         />
         <Card id="panel-profile">
           <CardBody>
+            <IfOidcAuth>
+              <p id="oidc-notice" className="italics">
+                <OutgoingLink
+                  iri={getEnv(ConfigParam.AUTH_SERVER_USER_PROFILE_URL, "")}
+                  label={i18n("administration.users.oidc")}
+                  showLink={true}
+                />
+              </p>
+            </IfOidcAuth>
             {!this.state.edit ? (
               <ProfileView user={user} />
             ) : (

src/component/profile/__tests__/Profile.test.tsx

@@ -8,6 +8,8 @@ import Generator from "../../../__tests__/environment/Generator";
 import { intlFunctions } from "../../../__tests__/environment/IntlUtil";
 import ProfileEditForm from "../ProfileEditForm";
 import HeaderWithActions from "../../misc/HeaderWithActions";
+import * as OidcUtils from "../../../util/OidcUtils";
+import * as Constats from "../../../util/Constants";
 
 describe("Profile", () => {
   let updateProfile: (user: User) => Promise<AsyncAction>;
@@ -47,4 +49,22 @@ describe("Profile", () => {
     expect(actionButtons.length).toEqual(1);
     expect(wrapper.find(ProfileEditForm).length).toEqual(1);
   });
+
+  it("does not render edit buttons when using OIDC authentication", () => {
+    jest.spyOn(OidcUtils, "isUsingOidcAuth").mockReturnValue(true);
+    const wrapper = mountWithIntl(
+      <Profile updateProfile={updateProfile} user={user} {...intlFunctions()} />
+    );
+    expect(wrapper.exists(ProfileActionButtons)).toBeFalsy();
+  });
+
+  it("renders link to user profile in auth service when using OIDC authentication", () => {
+    const link = "http://localhost/services/auth/profile";
+    jest.spyOn(Constats, "getEnv").mockReturnValue(link);
+    jest.spyOn(OidcUtils, "isUsingOidcAuth").mockReturnValue(true);
+    const wrapper = mountWithIntl(
+      <Profile updateProfile={updateProfile} user={user} {...intlFunctions()} />
+    );
+    expect(wrapper.exists("#oidc-notice")).toBeTruthy();
+  });
 });

src/i18n/cs.ts

@@ -178,6 +178,8 @@ const cs = {
       'Uživatel "{name}" úspěšně vytvořen.',
     "administration.users.you": "Toto je Váš účet",
     "administration.users.types.admin": "Tento uživatel je administrátor",
+    "administration.users.oidc":
+      "Pro správu uživatelů je využívána externí autentizační služba.",
     "administration.maintenance.title": "Správa systému",
     "administration.maintenance.invalidateCaches": "Vyprázdnit cache",
     "administration.maintenance.invalidateCaches.tooltip":

src/i18n/en.ts

@@ -168,6 +168,8 @@ const en = {
       'User "{name}" successfully created.',
     "administration.users.you": "This is you",
     "administration.users.types.admin": "This user is an administrator",
+    "administration.users.oidc":
+      "An external authentication service is used to management users.",
     "administration.maintenance.title": "Maintenance",
     "administration.maintenance.invalidateCaches": "Invalidate caches",
     "administration.maintenance.invalidateCaches.tooltip":

src/util/ConfigParam.ts

@@ -3,6 +3,8 @@ const ConfigParam = {
   SHOW_PUBLIC_VIEW_ON_UNAUTHORIZED: "SHOW_PUBLIC_VIEW_ON_UNAUTHORIZED",
   MOCK_REST_API: "MOCK_REST_API",
   AUTH_TYPE: "AUTHENTICATION",
+  AUTH_SERVER_MANAGEMENT_URL: "AUTH_SERVER_MANAGEMENT",
+  AUTH_SERVER_USER_PROFILE_URL: "AUTH_SERVER_USER_PROFILE",
 };
 
 export default ConfigParam;