mirror of
https://github.com/grafana/grafana.git
synced 2026-02-03 20:49:50 -05:00
76b4724d15
Some checks are pending
Actionlint / Lint GitHub Actions files (push) Waiting to run
Backend Code Checks / Detect whether code changed (push) Waiting to run
Backend Code Checks / Validate Backend Configs (push) Blocked by required conditions
Backend Unit Tests / Detect whether code changed (push) Waiting to run
Backend Unit Tests / Grafana (1/8) (push) Blocked by required conditions
Backend Unit Tests / Grafana (2/8) (push) Blocked by required conditions
Backend Unit Tests / Grafana (3/8) (push) Blocked by required conditions
Backend Unit Tests / Grafana (4/8) (push) Blocked by required conditions
Backend Unit Tests / Grafana (5/8) (push) Blocked by required conditions
Backend Unit Tests / Grafana (6/8) (push) Blocked by required conditions
Backend Unit Tests / Grafana (7/8) (push) Blocked by required conditions
Backend Unit Tests / Grafana (8/8) (push) Blocked by required conditions
Backend Unit Tests / Grafana Enterprise (1/8) (push) Blocked by required conditions
Backend Unit Tests / Grafana Enterprise (2/8) (push) Blocked by required conditions
Backend Unit Tests / Grafana Enterprise (3/8) (push) Blocked by required conditions
Backend Unit Tests / Grafana Enterprise (4/8) (push) Blocked by required conditions
Backend Unit Tests / Grafana Enterprise (5/8) (push) Blocked by required conditions
Backend Unit Tests / Grafana Enterprise (6/8) (push) Blocked by required conditions
Backend Unit Tests / Grafana Enterprise (7/8) (push) Blocked by required conditions
Backend Unit Tests / Grafana Enterprise (8/8) (push) Blocked by required conditions
Backend Unit Tests / All backend unit tests complete (push) Blocked by required conditions
CodeQL checks / Detect whether code changed (push) Waiting to run
CodeQL checks / Analyze (push) Blocked by required conditions
Deploy Storybook / Detect whether code changed (push) Waiting to run
Deploy Storybook / Deploy Storybook (push) Blocked by required conditions
Lint Frontend / Detect whether code changed (push) Waiting to run
Lint Frontend / Lint (push) Blocked by required conditions
Lint Frontend / Typecheck (push) Blocked by required conditions
Lint Frontend / Verify API clients (push) Waiting to run
Lint Frontend / Verify API clients (enterprise) (push) Waiting to run
Lint Frontend / Verify packed frontend packages (push) Blocked by required conditions
golangci-lint / Detect whether code changed (push) Waiting to run
golangci-lint / go-fmt (push) Blocked by required conditions
golangci-lint / lint-go (push) Blocked by required conditions
Crowdin Upload Action / upload-sources-to-crowdin (push) Waiting to run
Verify i18n / verify-i18n (push) Waiting to run
Documentation / Build & Verify Docs (push) Waiting to run
End-to-end tests / Detect whether code changed (push) Waiting to run
End-to-end tests / Build & Package Grafana (push) Blocked by required conditions
End-to-end tests / Build E2E test runner (push) Blocked by required conditions
End-to-end tests / push-docker-image (push) Blocked by required conditions
End-to-end tests / dashboards-suite (old arch) (push) Blocked by required conditions
End-to-end tests / panels-suite (old arch) (push) Blocked by required conditions
End-to-end tests / smoke-tests-suite (old arch) (push) Blocked by required conditions
End-to-end tests / various-suite (old arch) (push) Blocked by required conditions
End-to-end tests / Verify Storybook (Playwright) (push) Blocked by required conditions
End-to-end tests / Playwright E2E tests (1/8) (push) Blocked by required conditions
End-to-end tests / Playwright E2E tests (2/8) (push) Blocked by required conditions
End-to-end tests / Playwright E2E tests (3/8) (push) Blocked by required conditions
End-to-end tests / Playwright E2E tests (4/8) (push) Blocked by required conditions
End-to-end tests / Playwright E2E tests (5/8) (push) Blocked by required conditions
End-to-end tests / Playwright E2E tests (6/8) (push) Blocked by required conditions
End-to-end tests / Playwright E2E tests (7/8) (push) Blocked by required conditions
End-to-end tests / Playwright E2E tests (8/8) (push) Blocked by required conditions
End-to-end tests / run-azure-monitor-e2e (push) Blocked by required conditions
End-to-end tests / All Playwright tests complete (push) Blocked by required conditions
End-to-end tests / A11y test (push) Blocked by required conditions
End-to-end tests / Publish metrics (push) Blocked by required conditions
End-to-end tests / All E2E tests complete (push) Blocked by required conditions
Frontend tests / Detect whether code changed (push) Waiting to run
Frontend tests / Unit tests (1 / 16) (push) Blocked by required conditions
Frontend tests / Unit tests (10 / 16) (push) Blocked by required conditions
Frontend tests / Unit tests (11 / 16) (push) Blocked by required conditions
Frontend tests / Unit tests (12 / 16) (push) Blocked by required conditions
Frontend tests / Unit tests (13 / 16) (push) Blocked by required conditions
Frontend tests / Unit tests (14 / 16) (push) Blocked by required conditions
Frontend tests / Unit tests (15 / 16) (push) Blocked by required conditions
Frontend tests / Unit tests (16 / 16) (push) Blocked by required conditions
Frontend tests / Unit tests (2 / 16) (push) Blocked by required conditions
Frontend tests / Unit tests (3 / 16) (push) Blocked by required conditions
Frontend tests / Unit tests (4 / 16) (push) Blocked by required conditions
Frontend tests / Unit tests (5 / 16) (push) Blocked by required conditions
Frontend tests / Unit tests (6 / 16) (push) Blocked by required conditions
Frontend tests / Unit tests (7 / 16) (push) Blocked by required conditions
Frontend tests / Unit tests (8 / 16) (push) Blocked by required conditions
Frontend tests / Unit tests (9 / 16) (push) Blocked by required conditions
Frontend tests / Decoupled plugin tests (push) Blocked by required conditions
Frontend tests / Packages unit tests (push) Blocked by required conditions
Frontend tests / All frontend unit tests complete (push) Blocked by required conditions
Frontend tests / Devenv frontend-service build (push) Blocked by required conditions
Integration Tests / Detect whether code changed (push) Waiting to run
Integration Tests / Sqlite (1/4) (push) Blocked by required conditions
Integration Tests / Sqlite (2/4) (push) Blocked by required conditions
Integration Tests / Sqlite (3/4) (push) Blocked by required conditions
Integration Tests / Sqlite (4/4) (push) Blocked by required conditions
Integration Tests / Sqlite Without CGo (1/4) (push) Blocked by required conditions
Integration Tests / Sqlite Without CGo (2/4) (push) Blocked by required conditions
Integration Tests / Sqlite Without CGo (3/4) (push) Blocked by required conditions
Integration Tests / Sqlite Without CGo (4/4) (push) Blocked by required conditions
Integration Tests / Sqlite Without CGo (profiled) (push) Blocked by required conditions
Integration Tests / MySQL (1/16) (push) Blocked by required conditions
Integration Tests / MySQL (10/16) (push) Blocked by required conditions
Integration Tests / MySQL (11/16) (push) Blocked by required conditions
Integration Tests / MySQL (12/16) (push) Blocked by required conditions
Integration Tests / MySQL (13/16) (push) Blocked by required conditions
Integration Tests / MySQL (14/16) (push) Blocked by required conditions
Integration Tests / MySQL (15/16) (push) Blocked by required conditions
Integration Tests / MySQL (16/16) (push) Blocked by required conditions
Integration Tests / MySQL (2/16) (push) Blocked by required conditions
Integration Tests / MySQL (3/16) (push) Blocked by required conditions
Integration Tests / MySQL (4/16) (push) Blocked by required conditions
Integration Tests / MySQL (5/16) (push) Blocked by required conditions
Integration Tests / MySQL (6/16) (push) Blocked by required conditions
Integration Tests / MySQL (7/16) (push) Blocked by required conditions
Integration Tests / MySQL (8/16) (push) Blocked by required conditions
Integration Tests / MySQL (9/16) (push) Blocked by required conditions
Integration Tests / Postgres (1/16) (push) Blocked by required conditions
Integration Tests / Postgres (10/16) (push) Blocked by required conditions
Integration Tests / Postgres (11/16) (push) Blocked by required conditions
Integration Tests / Postgres (12/16) (push) Blocked by required conditions
Integration Tests / Postgres (13/16) (push) Blocked by required conditions
Integration Tests / Postgres (14/16) (push) Blocked by required conditions
Integration Tests / Postgres (15/16) (push) Blocked by required conditions
Integration Tests / Postgres (16/16) (push) Blocked by required conditions
Integration Tests / Postgres (2/16) (push) Blocked by required conditions
Integration Tests / Postgres (3/16) (push) Blocked by required conditions
Integration Tests / Postgres (4/16) (push) Blocked by required conditions
Integration Tests / Postgres (5/16) (push) Blocked by required conditions
Integration Tests / Postgres (6/16) (push) Blocked by required conditions
Integration Tests / Postgres (7/16) (push) Blocked by required conditions
Integration Tests / Postgres (8/16) (push) Blocked by required conditions
Integration Tests / Postgres (9/16) (push) Blocked by required conditions
Integration Tests / Sqlite Enterprise (1/4) (push) Blocked by required conditions
Integration Tests / Sqlite Enterprise (2/4) (push) Blocked by required conditions
Integration Tests / Sqlite Enterprise (3/4) (push) Blocked by required conditions
Integration Tests / Sqlite Enterprise (4/4) (push) Blocked by required conditions
Integration Tests / Sqlite Without CGo Enterprise (1/4) (push) Blocked by required conditions
Integration Tests / Sqlite Without CGo Enterprise (2/4) (push) Blocked by required conditions
Integration Tests / Sqlite Without CGo Enterprise (3/4) (push) Blocked by required conditions
Integration Tests / Sqlite Without CGo Enterprise (4/4) (push) Blocked by required conditions
Integration Tests / Sqlite Without CGo Enterprise (profiled) (push) Blocked by required conditions
Integration Tests / MySQL Enterprise (1/16) (push) Blocked by required conditions
Integration Tests / MySQL Enterprise (10/16) (push) Blocked by required conditions
Integration Tests / MySQL Enterprise (11/16) (push) Blocked by required conditions
Integration Tests / MySQL Enterprise (12/16) (push) Blocked by required conditions
Integration Tests / MySQL Enterprise (13/16) (push) Blocked by required conditions
Integration Tests / MySQL Enterprise (14/16) (push) Blocked by required conditions
Integration Tests / MySQL Enterprise (15/16) (push) Blocked by required conditions
Integration Tests / MySQL Enterprise (16/16) (push) Blocked by required conditions
Integration Tests / MySQL Enterprise (2/16) (push) Blocked by required conditions
Integration Tests / MySQL Enterprise (3/16) (push) Blocked by required conditions
Integration Tests / MySQL Enterprise (4/16) (push) Blocked by required conditions
Integration Tests / MySQL Enterprise (5/16) (push) Blocked by required conditions
Integration Tests / MySQL Enterprise (6/16) (push) Blocked by required conditions
Integration Tests / MySQL Enterprise (7/16) (push) Blocked by required conditions
Integration Tests / MySQL Enterprise (8/16) (push) Blocked by required conditions
Integration Tests / MySQL Enterprise (9/16) (push) Blocked by required conditions
Integration Tests / Postgres Enterprise (1/16) (push) Blocked by required conditions
Integration Tests / Postgres Enterprise (10/16) (push) Blocked by required conditions
Integration Tests / Postgres Enterprise (11/16) (push) Blocked by required conditions
Integration Tests / Postgres Enterprise (12/16) (push) Blocked by required conditions
Integration Tests / Postgres Enterprise (13/16) (push) Blocked by required conditions
Integration Tests / Postgres Enterprise (14/16) (push) Blocked by required conditions
Integration Tests / Postgres Enterprise (15/16) (push) Blocked by required conditions
Integration Tests / Postgres Enterprise (16/16) (push) Blocked by required conditions
Integration Tests / Postgres Enterprise (2/16) (push) Blocked by required conditions
Integration Tests / Postgres Enterprise (3/16) (push) Blocked by required conditions
Integration Tests / Postgres Enterprise (4/16) (push) Blocked by required conditions
Integration Tests / Postgres Enterprise (5/16) (push) Blocked by required conditions
Integration Tests / Postgres Enterprise (6/16) (push) Blocked by required conditions
Integration Tests / Postgres Enterprise (7/16) (push) Blocked by required conditions
Integration Tests / Postgres Enterprise (8/16) (push) Blocked by required conditions
Integration Tests / Postgres Enterprise (9/16) (push) Blocked by required conditions
Integration Tests / All backend integration tests complete (push) Blocked by required conditions
publish-kinds-next / main (push) Waiting to run
publish-technical-documentation-next / sync (push) Waiting to run
Reject GitHub secrets / reject-gh-secrets (push) Waiting to run
Build Release Packages / setup (push) Waiting to run
Build Release Packages / Dispatch grafana-enterprise build (push) Blocked by required conditions
Build Release Packages / / darwin-amd64 (push) Blocked by required conditions
Build Release Packages / / darwin-arm64 (push) Blocked by required conditions
Build Release Packages / / linux-amd64 (push) Blocked by required conditions
Build Release Packages / / linux-armv6 (push) Blocked by required conditions
Build Release Packages / / linux-armv7 (push) Blocked by required conditions
Build Release Packages / / linux-arm64 (push) Blocked by required conditions
Build Release Packages / / linux-s390x (push) Blocked by required conditions
Build Release Packages / / windows-amd64 (push) Blocked by required conditions
Build Release Packages / / windows-arm64 (push) Blocked by required conditions
Build Release Packages / Upload artifacts (push) Blocked by required conditions
Build Release Packages / publish-dockerhub (push) Blocked by required conditions
Build Release Packages / Dispatch publish NPM canaries (push) Blocked by required conditions
Build Release Packages / notify-pr (push) Blocked by required conditions
Run dashboard schema v2 e2e / dashboard-schema-v2-e2e (push) Waiting to run
Shellcheck / Shellcheck scripts (push) Waiting to run
Run Storybook a11y tests / Detect whether code changed (push) Waiting to run
Run Storybook a11y tests / Run Storybook a11y tests (light theme) (push) Blocked by required conditions
Run Storybook a11y tests / Run Storybook a11y tests (dark theme) (push) Blocked by required conditions
Swagger generated code / Detect whether code changed (push) Waiting to run
Swagger generated code / Verify committed API specs match (push) Blocked by required conditions
Dispatch sync to mirror / dispatch-job (push) Waiting to run
* remove ldap sso ft * add test cases for lbac disabled * remove legacy ldap pages * fix tests * fix: add ldap provider to TestService_List expected results
481 lines
17 KiB
TypeScript
481 lines
17 KiB
TypeScript
import { css } from '@emotion/css';
|
|
import { useEffect, useState } from 'react';
|
|
import { Controller, FormProvider, useForm } from 'react-hook-form';
|
|
import { connect } from 'react-redux';
|
|
|
|
import { AppEvents, GrafanaTheme2, NavModelItem } from '@grafana/data';
|
|
import { Trans, t } from '@grafana/i18n';
|
|
import { getBackendSrv, getAppEvents, locationService, reportInteraction } from '@grafana/runtime';
|
|
import {
|
|
useStyles2,
|
|
Alert,
|
|
Box,
|
|
Button,
|
|
Field,
|
|
IconButton,
|
|
Input,
|
|
LinkButton,
|
|
Menu,
|
|
Stack,
|
|
Text,
|
|
TextLink,
|
|
Dropdown,
|
|
MultiSelect,
|
|
SecretInput,
|
|
} from '@grafana/ui';
|
|
import { FormPrompt } from 'app/core/components/FormPrompt/FormPrompt';
|
|
import { Page } from 'app/core/components/Page/Page';
|
|
import config from 'app/core/config';
|
|
import { Loader } from 'app/features/plugins/admin/components/Loader';
|
|
import { LdapPayload, MapKeyCertConfigured } from 'app/types/ldap';
|
|
import { StoreState } from 'app/types/store';
|
|
|
|
import { LdapDrawerComponent } from './LdapDrawer';
|
|
import { LdapTestDrawer } from './LdapTestDrawer';
|
|
|
|
const appEvents = getAppEvents();
|
|
|
|
const mapStateToProps = (state: StoreState) => ({
|
|
ldapSsoSettings: state.ldap.ldapSsoSettings,
|
|
});
|
|
|
|
const mapDispatchToProps = {};
|
|
|
|
const connector = connect(mapStateToProps, mapDispatchToProps);
|
|
|
|
const pageNav: NavModelItem = {
|
|
text: 'LDAP',
|
|
icon: 'shield',
|
|
id: 'LDAP',
|
|
};
|
|
|
|
const serverConfig = 'settings.config.servers.0';
|
|
|
|
const isOptionDefined = (option: string | undefined) => option !== undefined && option !== '';
|
|
|
|
const emptySettings: LdapPayload = {
|
|
id: '',
|
|
provider: '',
|
|
source: '',
|
|
settings: {
|
|
activeSyncEnabled: false,
|
|
allowSignUp: false,
|
|
config: {
|
|
servers: [
|
|
{
|
|
attributes: {},
|
|
bind_dn: '',
|
|
bind_password: '',
|
|
client_cert: '',
|
|
client_cert_value: '',
|
|
client_key: '',
|
|
client_key_value: '',
|
|
group_mappings: [],
|
|
group_search_base_dns: [],
|
|
group_search_filter: '',
|
|
group_search_filter_user_attribute: '',
|
|
host: '',
|
|
min_tls_version: '',
|
|
port: 389,
|
|
root_ca_cert: '',
|
|
root_ca_cert_value: [],
|
|
search_base_dns: [],
|
|
search_filter: '',
|
|
skip_org_role_sync: false,
|
|
ssl_skip_verify: false,
|
|
start_tls: false,
|
|
timeout: 10,
|
|
tls_ciphers: [],
|
|
tls_skip_verify: false,
|
|
use_ssl: false,
|
|
},
|
|
],
|
|
},
|
|
enabled: false,
|
|
skipOrgRoleSync: false,
|
|
syncCron: '',
|
|
},
|
|
};
|
|
|
|
export const LdapSettingsPage = () => {
|
|
const [isLoading, setIsLoading] = useState(true);
|
|
const [isDrawerOpen, setIsDrawerOpen] = useState(false);
|
|
const [isTestDrawerOpen, setIsTestDrawerOpen] = useState(false);
|
|
const [usernameParam, setUsernameParam] = useState<string | null>(null);
|
|
|
|
const [isBindPasswordConfigured, setBindPasswordConfigured] = useState(false);
|
|
const [mapKeyCertConfigured, setMapKeyCertConfigured] = useState<MapKeyCertConfigured>({
|
|
clientKeyCertValue: false,
|
|
clientKeyCertPath: false,
|
|
});
|
|
|
|
const methods = useForm<LdapPayload>({ defaultValues: emptySettings });
|
|
const {
|
|
control,
|
|
formState: { isDirty, errors },
|
|
getValues,
|
|
setValue,
|
|
handleSubmit,
|
|
register,
|
|
reset,
|
|
watch,
|
|
} = methods;
|
|
|
|
const styles = useStyles2(getStyles);
|
|
|
|
useEffect(() => {
|
|
async function init() {
|
|
const urlParams = new URLSearchParams(window.location.search);
|
|
const username = urlParams.get('username');
|
|
setUsernameParam(username);
|
|
|
|
const payload = await getSettings();
|
|
let serverConfig = emptySettings.settings.config.servers[0];
|
|
if (payload.settings.config.servers?.length > 0) {
|
|
serverConfig = payload.settings.config.servers[0];
|
|
}
|
|
setMapKeyCertConfigured({
|
|
clientKeyCertValue: isOptionDefined(serverConfig.client_key_value),
|
|
clientKeyCertPath: isOptionDefined(serverConfig.client_key),
|
|
});
|
|
setBindPasswordConfigured(isOptionDefined(serverConfig.bind_password));
|
|
|
|
reset(payload);
|
|
setIsLoading(false);
|
|
|
|
if (username) {
|
|
setIsTestDrawerOpen(true);
|
|
}
|
|
}
|
|
init();
|
|
}, [reset]); // eslint-disable-line react-hooks/exhaustive-deps
|
|
|
|
/**
|
|
* Fetches the settings from the backend
|
|
* @returns Promise<LdapPayload>
|
|
*/
|
|
const getSettings = async () => {
|
|
try {
|
|
const payload = await getBackendSrv().get<LdapPayload>('/api/v1/sso-settings/ldap');
|
|
if (!payload || !payload.settings || !payload.settings.config) {
|
|
appEvents.publish({
|
|
type: AppEvents.alertError.name,
|
|
payload: [t('ldap-settings-page.alert.error-fetching', 'Error fetching LDAP settings')],
|
|
});
|
|
return emptySettings;
|
|
}
|
|
return payload;
|
|
} catch (error) {
|
|
appEvents.publish({
|
|
type: AppEvents.alertError.name,
|
|
payload: [t('ldap-settings-page.alert.error-fetching', 'Error fetching LDAP settings')],
|
|
});
|
|
return emptySettings;
|
|
}
|
|
};
|
|
|
|
/**
|
|
* Save payload to the backend
|
|
* @param payload LdapPayload
|
|
*/
|
|
const putPayload = async (payload: LdapPayload) => {
|
|
try {
|
|
const result = await getBackendSrv().put('/api/v1/sso-settings/ldap', payload);
|
|
if (result) {
|
|
appEvents.publish({
|
|
type: AppEvents.alertError.name,
|
|
payload: [t('ldap-settings-page.alert.error-saving', 'Error saving LDAP settings')],
|
|
});
|
|
}
|
|
appEvents.publish({
|
|
type: AppEvents.alertSuccess.name,
|
|
payload: [t('ldap-settings-page.alert.saved', 'LDAP settings saved')],
|
|
});
|
|
reset(await getSettings());
|
|
|
|
// Delay redirect so the form state can update
|
|
setTimeout(() => {
|
|
locationService.push(`/admin/authentication`);
|
|
}, 300);
|
|
} catch (error) {
|
|
appEvents.publish({
|
|
type: AppEvents.alertError.name,
|
|
payload: [t('ldap-settings-page.alert.error-saving', 'Error saving LDAP settings')],
|
|
});
|
|
}
|
|
};
|
|
|
|
const onErrors = () => {
|
|
appEvents.publish({
|
|
type: AppEvents.alertError.name,
|
|
payload: [t('ldap-settings-page.alert.error-validate-form', 'Error validating LDAP settings')],
|
|
});
|
|
};
|
|
|
|
/**
|
|
* Button's Actions
|
|
*/
|
|
const submitFormAndToggleSettings = async (payload: LdapPayload) => {
|
|
payload.settings.enabled = !payload.settings.enabled;
|
|
await putPayload(payload);
|
|
reportInteraction('authentication_ldap_enabled');
|
|
};
|
|
const saveForm = async () => {
|
|
await putPayload(getValues());
|
|
reportInteraction('authentication_ldap_saved');
|
|
};
|
|
const deleteLDAPConfig = async () => {
|
|
try {
|
|
setIsLoading(true);
|
|
await getBackendSrv().delete('/api/v1/sso-settings/ldap');
|
|
const payload = await getSettings();
|
|
appEvents.publish({
|
|
type: AppEvents.alertSuccess.name,
|
|
payload: [t('ldap-settings-page.alert.discard-success', 'LDAP settings discarded')],
|
|
});
|
|
reset(payload);
|
|
reportInteraction('authentication_ldap_deleted');
|
|
|
|
setTimeout(() => {
|
|
locationService.push(`/admin/authentication`);
|
|
}, 300);
|
|
} catch (error) {
|
|
appEvents.publish({
|
|
type: AppEvents.alertError.name,
|
|
payload: [t('ldap-settings-page.alert.error-saving', 'Error saving LDAP settings')],
|
|
});
|
|
} finally {
|
|
setIsLoading(false);
|
|
}
|
|
};
|
|
|
|
const onDiscard = () => {
|
|
reportInteraction('authentication_ldap_abandoned');
|
|
};
|
|
|
|
const isInvalidField = (field: string) => {
|
|
const err = errors?.settings?.config?.servers?.[0];
|
|
return typeof err === 'object' && field in err;
|
|
};
|
|
|
|
const subTitle = (
|
|
<Trans i18nKey="ldap-settings-page.subtitle">
|
|
The LDAP integration in Grafana allows your Grafana users to log in with their LDAP credentials. Find out more in
|
|
our{' '}
|
|
<TextLink
|
|
href="https://grafana.com/docs/grafana/latest/setup-grafana/configure-security/configure-authentication/ldap/"
|
|
external
|
|
>
|
|
<Trans i18nKey="ldap-settings-page.documentation">documentation</Trans>
|
|
</TextLink>
|
|
.
|
|
</Trans>
|
|
);
|
|
|
|
const disabledFormAlert = (
|
|
<Alert title={t('ldap-settings-page.login-form-alert.title', 'Basic login disabled')}>
|
|
<Trans i18nKey="ldap-settings-page.login-form-alert.description">
|
|
Your LDAP configuration is not working because the basic login form is currently disabled. Please enable the
|
|
login form to use LDAP authentication. You can enable it on the Authentication page under “Auth settings”.
|
|
</Trans>
|
|
</Alert>
|
|
);
|
|
|
|
return (
|
|
<Page navId="authentication" pageNav={pageNav} subTitle={subTitle}>
|
|
<Page.Contents>
|
|
{config.disableLoginForm && disabledFormAlert}
|
|
<FormProvider {...methods}>
|
|
<form onSubmit={handleSubmit(submitFormAndToggleSettings, onErrors)}>
|
|
<FormPrompt confirmRedirect={isDirty} onDiscard={onDiscard} />
|
|
{isLoading && <Loader />}
|
|
{!isLoading && (
|
|
<section className={styles.form}>
|
|
<h3>
|
|
<Trans i18nKey="ldap-settings-page.title">Basic Settings</Trans>
|
|
</h3>
|
|
<Field
|
|
label={t('ldap-settings-page.host.label', 'Server host')}
|
|
required={true}
|
|
error={t('ldap-settings-page.host.error', 'Server host is a required field')}
|
|
invalid={isInvalidField('host')}
|
|
description={t(
|
|
'ldap-settings-page.host.description',
|
|
'Hostname or IP address of the LDAP server you wish to connect to.'
|
|
)}
|
|
>
|
|
<Input
|
|
id="host"
|
|
placeholder={t('ldap-settings-page.host.placeholder', 'example: 127.0.0.1')}
|
|
type="text"
|
|
{...register(`${serverConfig}.host`, { required: true })}
|
|
/>
|
|
</Field>
|
|
<Field
|
|
label={t('ldap-settings-page.bind-dn.label', 'Bind DN')}
|
|
description={t(
|
|
'ldap-settings-page.bind-dn.description',
|
|
'Distinguished name of the account used to bind and authenticate to the LDAP server.'
|
|
)}
|
|
>
|
|
<Input
|
|
id="bind-dn"
|
|
placeholder={t('ldap-settings-page.bind-dn.placeholder', 'example: cn=admin,dc=grafana,dc=org')}
|
|
type="text"
|
|
{...register(`${serverConfig}.bind_dn`)}
|
|
/>
|
|
</Field>
|
|
<Field label={t('ldap-settings-page.bind-password.label', 'Bind password')}>
|
|
<SecretInput
|
|
id="bind-password"
|
|
isConfigured={isBindPasswordConfigured}
|
|
onReset={() => {
|
|
setValue(`${serverConfig}.bind_password`, '');
|
|
setBindPasswordConfigured(false);
|
|
}}
|
|
value={watch(`${serverConfig}.bind_password`)}
|
|
onChange={({ currentTarget: { value } }) => setValue(`${serverConfig}.bind_password`, value)}
|
|
/>
|
|
</Field>
|
|
<Field
|
|
label={t('ldap-settings-page.search_filter.label', 'Search filter')}
|
|
required={true}
|
|
invalid={isInvalidField('search_filter')}
|
|
error={t('ldap-settings-page.search_filter.error', 'Search filter is a required field')}
|
|
description={t(
|
|
'ldap-settings-page.search_filter.description',
|
|
'LDAP search filter used to locate specific entries within the directory.'
|
|
)}
|
|
>
|
|
<Input
|
|
id="search_filter"
|
|
placeholder={t('ldap-settings-page.search_filter.placeholder', 'example: cn=%s')}
|
|
type="text"
|
|
{...register(`${serverConfig}.search_filter`, { required: true })}
|
|
/>
|
|
</Field>
|
|
<Field
|
|
label={t('ldap-settings-page.search-base-dns.label', 'Search base DNS')}
|
|
required={true}
|
|
invalid={isInvalidField('search_base_dns')}
|
|
error={t('ldap-settings-page.search-base-dns.error', 'Search base DNS is a required field')}
|
|
description={t(
|
|
'ldap-settings-page.search-base-dns.description',
|
|
'An array of base dns to search through.'
|
|
)}
|
|
>
|
|
<Controller
|
|
rules={{ required: true, validate: (value) => !!value?.length }}
|
|
name={`${serverConfig}.search_base_dns`}
|
|
control={control}
|
|
render={({ field: { onChange, ref, ...field } }) => (
|
|
<MultiSelect
|
|
{...field}
|
|
allowCustomValue
|
|
className={styles.multiSelect}
|
|
noOptionsMessage=""
|
|
placeholder={t('ldap-settings-page.search-base-dns.placeholder', 'example: dc=grafana,dc=org')}
|
|
onChange={(v) => onChange(v.map(({ value }) => String(value)))}
|
|
/>
|
|
)}
|
|
/>
|
|
</Field>
|
|
<Box borderColor="strong" borderStyle="solid" padding={2} width={68}>
|
|
<Stack alignItems={'center'} direction={'row'} gap={2} justifyContent={'space-between'}>
|
|
<Stack alignItems={'start'} direction={'column'}>
|
|
<Text element="h2">
|
|
<Trans i18nKey="ldap-settings-page.advanced-settings-section.title">Advanced Settings</Trans>
|
|
</Text>
|
|
<Text>
|
|
<Trans i18nKey="ldap-settings-page.advanced-settings-section.subtitle">
|
|
Mappings, extra security measures, and more.
|
|
</Trans>
|
|
</Text>
|
|
</Stack>
|
|
<Button variant="secondary" onClick={() => setIsDrawerOpen(true)}>
|
|
<Trans i18nKey="ldap-settings-page.advanced-settings-section.edit-button">Edit</Trans>
|
|
</Button>
|
|
</Stack>
|
|
</Box>
|
|
<Box display="flex" gap={2} marginTop={5}>
|
|
<Stack alignItems="center" gap={2}>
|
|
{!watch('settings.enabled') && (
|
|
<Button type="submit">
|
|
<Trans i18nKey="ldap-settings-page.buttons-section.save-and-enable-button">
|
|
Save and enable
|
|
</Trans>
|
|
</Button>
|
|
)}
|
|
{watch('settings.enabled') && (
|
|
<Button variant="secondary" type="submit">
|
|
<Trans i18nKey="ldap-settings-page.buttons-section.disable-button">Disable</Trans>
|
|
</Button>
|
|
)}
|
|
<Button variant="secondary" onClick={handleSubmit(saveForm)}>
|
|
<Trans i18nKey="ldap-settings-page.buttons-section.save-button">Save</Trans>
|
|
</Button>
|
|
<Button variant="secondary" onClick={() => setIsTestDrawerOpen(true)}>
|
|
<Trans i18nKey="ldap-settings-page.buttons-section.test-button">Test</Trans>
|
|
</Button>
|
|
<LinkButton href="/admin/authentication" variant="secondary">
|
|
<Trans i18nKey="ldap-settings-page.buttons-section.discard-button">Discard</Trans>
|
|
</LinkButton>
|
|
<Dropdown
|
|
overlay={
|
|
<Menu>
|
|
<Menu.Item
|
|
label={t(
|
|
'admin.ldap-settings-page.label-reset-to-default-values',
|
|
'Reset to default values'
|
|
)}
|
|
icon="history-alt"
|
|
onClick={deleteLDAPConfig}
|
|
/>
|
|
</Menu>
|
|
}
|
|
placement="bottom-start"
|
|
>
|
|
<IconButton
|
|
tooltip={t('admin.ldap-settings-page.tooltip-more-actions', 'More actions')}
|
|
title={t('admin.ldap-settings-page.title-more-actions', 'More actions')}
|
|
size="md"
|
|
variant="secondary"
|
|
name="ellipsis-v"
|
|
hidden={watch('source') === 'system'}
|
|
/>
|
|
</Dropdown>
|
|
</Stack>
|
|
</Box>
|
|
</section>
|
|
)}
|
|
{isDrawerOpen && (
|
|
<LdapDrawerComponent
|
|
onClose={() => setIsDrawerOpen(false)}
|
|
mapKeyCertConfigured={mapKeyCertConfigured}
|
|
setMapKeyCertConfigured={setMapKeyCertConfigured}
|
|
/>
|
|
)}
|
|
</form>
|
|
{isTestDrawerOpen && (
|
|
<LdapTestDrawer onClose={() => setIsTestDrawerOpen(false)} username={usernameParam || undefined} />
|
|
)}
|
|
</FormProvider>
|
|
</Page.Contents>
|
|
</Page>
|
|
);
|
|
};
|
|
|
|
function getStyles(theme: GrafanaTheme2) {
|
|
return {
|
|
form: css({
|
|
width: theme.spacing(68),
|
|
}),
|
|
multiSelect: css({
|
|
'div:last-of-type > svg': {
|
|
display: 'none',
|
|
},
|
|
}),
|
|
};
|
|
}
|
|
|
|
export default connector(LdapSettingsPage);
|