jjkiers/cloudron-box
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity

Remove deleted users and groups in operators and access control

Browse Source 
Fixes #857
This commit is contained in:
Girish Ramakrishnan
2025-10-20 21:17:40 +02:00
parent 02fd52e366
commit f1e7594b79
4 changed files with 50 additions and 48 deletions
Download Patch File Download Diff File Expand all files Collapse all files
dashboard/src/components/app/Access.vue
+43 -13
View File
@@ -6,39 +6,64 @@ import AccessControl from '../AccessControl.vue';
import OperatorAccessControl from '../OperatorAccessControl.vue';
import AppsModel from '../../models/AppsModel.js';
import { ACL_OPTIONS } from '../../constants.js';
import UsersModel from '../../models/UsersModel.js';
import GroupsModel from '../../models/GroupsModel.js';
const props = defineProps([ 'app' ]);
const appsModel = AppsModel.create();
const usersModel = UsersModel.create();
const groupsModel = GroupsModel.create();
const busy = ref(false);
const users = ref([]);
const groups = ref([]);
const loading = ref(false);
const submitBusy = ref(false);
const errorMessage = ref('');
const accessRestrictionOption = ref(ACL_OPTIONS.ANY);
const accessRestrictionAcl = ref({ users: [], groups: [] });
const operatorAcl = ref({ users: [], groups: [] });
async function onSubmit() {
busy.value = true;
submitBusy.value = true;
errorMessage.value = '';
let [error] = await appsModel.configure(props.app.id, 'access_restriction', { accessRestriction: accessRestrictionOption.value === ACL_OPTIONS.ANY ? null : (accessRestrictionOption.value === ACL_OPTIONS.NOSSO ? false : accessRestrictionAcl.value) });
if (error) {
errorMessage.value = error.body ? error.body.message : 'Internal error';
busy.value = false;
submitBusy.value = false;
return console.error(error);
}
[error] = await appsModel.configure(props.app.id, 'operators', { operators: (operatorAcl.value.users.length || operatorAcl.value.groups.length) ? operatorAcl.value : null});
if (error) {
errorMessage.value = error.body ? error.body.message : 'Internal error';
busy.value = false;
submitBusy.value = false;
return console.error(error);
}
busy.value = false;
submitBusy.value = false;
}
onMounted(() => {
onMounted(async () => {
loading.value = true;
let [error, result] = await usersModel.list();
if (error) return console.error(error);
const userIds = new Set();
for (const u of result) {
u.username = u.username || u.email; // ensure username
userIds.add(u.id);
}
users.value = result;
[error, result] = await groupsModel.list();
if (error) return console.error(error);
groups.value = result;
const groupIds = new Set();
for (const g of result) groupIds.add(g.id);
if (props.app.accessRestriction === null) {
accessRestrictionOption.value = ACL_OPTIONS.ANY;
accessRestrictionAcl.value = { users: [], groups: [] };
@@ -47,26 +72,31 @@ onMounted(() => {
accessRestrictionAcl.value = { users: [], groups: [] };
} else {
accessRestrictionOption.value = ACL_OPTIONS.RESTRICTED;
accessRestrictionAcl.value = props.app.accessRestriction;
accessRestrictionAcl.value = JSON.parse(JSON.stringify(props.app.accessRestriction)); // make a copy
accessRestrictionAcl.value.users = accessRestrictionAcl.value.users.filter(uid => userIds.has(uid)); // remove deleted users
accessRestrictionAcl.value.groups = accessRestrictionAcl.value.groups.filter(gid => groupIds.has(gid)); // remove deleted groups
}
operatorAcl.value = { users: [], groups: [] };
if (props.app.operators) {
operatorAcl.value.users = props.app.operators.users;
operatorAcl.value.groups = props.app.operators.groups;
operatorAcl.value = JSON.parse(JSON.stringify(props.app.operators)); // make a copy
operatorAcl.value.users = operatorAcl.value.users.filter(uid => userIds.has(uid)); // remove deleted users
operatorAcl.value.groups = operatorAcl.value.groups.filter(gid => groupIds.has(gid)); // remove deleted groups
}
loading.value = false;
});
</script>
<template>
<div>
<div v-if="!loading">
<div class="text-danger" v-if="errorMessage">{{ errorMessage }}</div>
<AccessControl v-model:option="accessRestrictionOption" v-model:acl="accessRestrictionAcl" :manifest="app.manifest" :hide-optional-sso-option="!app.sso"/>
<AccessControl v-model:option="accessRestrictionOption" v-model:acl="accessRestrictionAcl" :users="users" :groups="groups" :manifest="app.manifest" :hide-optional-sso-option="!app.sso"/>
<br/>
<OperatorAccessControl v-model:acl="operatorAcl" :has-ftp="app.manifest.addons?.localstorage?.ftp"/>
<OperatorAccessControl v-model:acl="operatorAcl" :users="users" :groups="groups" :has-ftp="app.manifest.addons?.localstorage?.ftp"/>
<br/>
<br/>
<Button @click="onSubmit()" :loading="busy" :disabled="busy">{{ $t('main.dialog.save') }}</Button>
<Button @click="onSubmit()" :loading="submitBusy" :disabled="submitBusy">{{ $t('main.dialog.save') }}</Button>
</div>
</template>