BasicOIDC/templates/settings/edit_user.html

280 lines
11 KiB
HTML
Raw Normal View History

2022-04-07 15:04:05 +00:00
{% extends "base_settings_page.html" %}
{% block content %}
<form method="post" action="/admin/users" id="edit_user_form">
2022-04-07 15:04:05 +00:00
<!-- User ID -->
<div class="form-group">
<label class="form-label mt-4" for="userID">User ID</label>
<input class="form-control" id="userID" type="text" readonly=""
2022-04-19 17:40:36 +00:00
name="uid" value="{{ u.uid.0 }}"/>
2022-04-07 15:04:05 +00:00
</div>
<!-- User name -->
<div class="form-group">
<label class="form-label mt-4" for="username">Username</label>
<input class="form-control" id="username" type="text" autocomplete="nope"
2022-04-07 15:04:05 +00:00
name="username" value="{{ u.username }}" required/>
2022-04-07 15:57:10 +00:00
<div class="valid-feedback">This username is valid</div>
<div class="invalid-feedback">This username is already taken.</div>
2022-04-07 15:04:05 +00:00
</div>
<!-- First name -->
<div class="form-group">
<label class="form-label mt-4" for="first_name">First name</label>
<input class="form-control" id="first_name" type="text"
name="first_name" value="{{ u.first_name }}"/>
</div>
<!-- Last name -->
<div class="form-group">
<label class="form-label mt-4" for="last_name">Last name</label>
<input class="form-control" id="last_name" type="text"
name="last_name" value="{{ u.last_name }}"/>
</div>
<!-- Email -->
<div class="form-group">
<label class="form-label mt-4" for="email">Email address</label>
<input class="form-control" id="email" type="email"
name="email" value="{{ u.email }}"/>
</div>
<div class="form-group mt-4">
<!-- Generate new password -->
<div class="form-check">
<input class="form-check-input" type="checkbox" name="gen_new_password" id="gen_new_password" {% if
u.password.is_empty() %} checked="" {% endif %}>
<label class="form-check-label" for="gen_new_password">
Generate a new temporary password
</label>
</div>
<!-- Enabled -->
<div class="form-check">
<input class="form-check-input" type="checkbox" name="enabled" id="enabled"
{% if u.enabled %} checked="" {% endif %}>
2022-04-07 15:04:05 +00:00
<label class="form-check-label" for="enabled">
Enabled
</label>
</div>
<!-- 2FA exemption after successful login -->
<div class="form-check">
<input class="form-check-input" type="checkbox" name="two_factor_exemption_after_successful_login"
id="two_factor_exemption_after_successful_login"
{% if u.two_factor_exemption_after_successful_login %} checked="" {% endif %}>
<label class="form-check-label" for="two_factor_exemption_after_successful_login">
Exempt user from 2FA authentication for an IP address after a successful login for a limited time
</label>
</div>
2022-04-07 15:04:05 +00:00
<!-- Admin -->
<div class="form-check">
<input class="form-check-input" type="checkbox" name="admin" id="admin"
{% if u.admin %} checked="" {% endif %}>
2022-04-07 15:04:05 +00:00
<label class="form-check-label" for="admin">
Grant admin privileges
</label>
</div>
</div>
<!-- Two-Factor authentication -->
<input type="hidden" name="two_factor" value=""/>
{% if u.has_two_factor() %}
<fieldset class="form-group">
<legend class="mt-4">Two factor authentication</legend>
<strong>If you uncheck a factor, it will be DELETED</strong>
{% for f in u.two_factor %}
<div class="form-check">
<label class="form-check-label">
<input type="checkbox" class="form-check-input two-fact-checkbox"
value="{{ f.id.0 }}"
checked=""/>
{{ f.name }} (<img src="{{ f.type_image() }}" alt="Factor icon" style="height:1em;"/>
2022-11-11 12:25:57 +00:00
{{ f.type_str() }})
</label>
</div>
{% endfor %}
</fieldset>
{% endif %}
<!-- Two factor authentication history -->
{% if !u.last_successful_2fa.is_empty() %}
<fieldset class="form-group">
<legend class="mt-4">Last successful 2FA authentications</legend>
<!-- Clear 2FA history -->
<div class="form-check">
<input class="form-check-input" type="checkbox" name="clear_2fa_history" id="clear_2fa_history">
<label class="form-check-label" for="clear_2fa_history">
Clear 2FA authentication history
</label>
</div>
<ul>
{% for e in u.get_formatted_2fa_successful_logins() %}
{% if e.can_bypass_2fa %}
<li style="font-weight: bold;">{{ e.ip }} - {{ e.fmt_time() }} - BYPASS 2FA</li>
{% else %}
<li>{{ e.ip }} - {{ e.fmt_time() }}</li>
{% endif %}
{% endfor %}
</ul>
</fieldset>
{% endif %}
<!-- Authorized authentication sources -->
<fieldset class="form-group">
<legend class="mt-4">Authorized authentication sources</legend>
<!-- Local login -->
<div class="form-check">
<input class="form-check-input" type="checkbox" name="allow_local_login" id="allow_local_login"
{% if u.allow_local_login %} checked="" {% endif %}>
<label class="form-check-label" for="allow_local_login">
Allow local login
</label>
</div>
<!-- Upstream providers -->
<input type="hidden" name="authorized_sources" id="authorized_sources"/>
{% for prov in providers %}
<div class="form-check">
<input class="form-check-input authorized_provider" type="checkbox" name="prov-{{ prov.id.0 }}"
id="prov-{{ prov.id.0 }}"
data-id="{{ prov.id.0 }}"
{% if u.can_login_from_provider(prov) %} checked="" {% endif %}>
<label class="form-check-label" for="prov-{{ prov.id.0 }}">
Allow login from {{ prov.name }}
</label>
</div>
{% endfor %}
</fieldset>
2022-04-07 15:32:29 +00:00
<!-- Granted clients -->
2022-04-07 15:04:05 +00:00
<fieldset class="form-group">
2022-04-07 15:32:29 +00:00
<legend class="mt-4">Granted clients</legend>
2022-04-07 15:04:05 +00:00
<div class="form-check">
<label class="form-check-label">
<input type="radio" class="form-check-input" name="grant_type"
value="all_clients" {% if u.granted_clients()== GrantedClients::AllClients %} checked="" {% endif
%}>
2022-04-07 15:32:29 +00:00
Grant all clients
2022-04-07 15:04:05 +00:00
</label>
</div>
<div class="form-check">
<label class="form-check-label">
<input type="radio" class="form-check-input" name="grant_type"
value="custom_clients" {% if matches!(self.u.granted_clients(), GrantedClients::SomeClients(_))
%} checked="checked" {% endif %}>
2022-04-07 15:32:29 +00:00
Manually specify allowed clients
2022-04-07 15:04:05 +00:00
</label>
</div>
2022-04-07 15:32:29 +00:00
<div id="clients_target">
<input type="hidden" name="granted_clients" value=""/>
2022-04-07 15:32:29 +00:00
{% for c in clients %}
<div class="form-check">
2022-04-15 20:04:06 +00:00
<input id="client-{{ c.id.0 }}" class="form-check-input authorize_client_checkbox" type="checkbox"
data-id="{{ c.id.0 }}"
{% if u.can_access_app(c) %} checked="" {% endif %}>
2022-04-15 20:04:06 +00:00
<label class="form-check-label" for="client-{{ c.id.0 }}">
2022-04-07 15:32:29 +00:00
{{ c.name }}
</label>
</div>
{% endfor %}
2022-04-07 15:04:05 +00:00
</div>
<div class="form-check">
<label class="form-check-label">
<input type="radio" class="form-check-input" name="grant_type"
value="no_client" {% if u.granted_clients()== GrantedClients::NoClient %} checked="checked" {%
endif %}>
Do not grant any client
</label>
</div>
2022-04-07 15:04:05 +00:00
</fieldset>
2024-02-19 17:42:19 +00:00
<input type="submit" class="btn btn-primary mt-4" value="{{ p.page_title }}">
2022-04-07 15:04:05 +00:00
</form>
2022-04-07 15:32:29 +00:00
<script>
2022-04-07 15:57:10 +00:00
// Check Username
async function find_username(username) {
let data = new URLSearchParams();
data.append("username", username);
return (await(await fetch("/admin/api/find_username", {
body: data,
method: "POST",
})).json()).user_id
}
const usernameEl = document.getElementById("username")
async function check_username() {
try {
usernameEl.classList.remove("is-invalid");
usernameEl.classList.remove("is-valid");
if (usernameEl.value === "")
return;
const userID = await find_username(usernameEl.value);
2022-04-19 17:40:36 +00:00
usernameEl.classList.add((userID === null || userID === "{{ u.uid.0 }}") ? "is-valid" : "is-invalid");
2022-04-07 15:57:10 +00:00
} catch(e) {
console.error(e);
}
}
check_username();
usernameEl.addEventListener("change", check_username);
usernameEl.addEventListener("keyup", check_username);
2022-04-07 15:32:29 +00:00
// Clients granted
function refreshDisplayAuthorizedClients() {
const clientsSelectorEl = document.getElementById("clients_target");
const radioBtn = document.querySelector("input[name=grant_type][value=custom_clients]");
2022-04-07 15:32:29 +00:00
clientsSelectorEl.style.display = radioBtn.checked ? "block" : "none";
}
refreshDisplayAuthorizedClients();
2022-04-07 16:59:48 +00:00
document.querySelectorAll("input[name=grant_type]").forEach(el=> {
2022-04-07 15:32:29 +00:00
el.addEventListener("change", refreshDisplayAuthorizedClients)
})
2022-04-07 15:57:10 +00:00
// Handle submitted form
const form = document.getElementById("edit_user_form");
form.addEventListener("submit", (ev) => {
ev.preventDefault();
const authorized_sources = [...document.querySelectorAll(".authorized_provider")]
.filter(e => e.checked)
.map(e => e.getAttribute("data-id")).join(",")
document.querySelector("input[name=authorized_sources]").value = authorized_sources;
const authorized_clients = [...document.querySelectorAll(".authorize_client_checkbox")]
.filter(e => e.checked)
.map(e => e.getAttribute("data-id")).join(",")
document.querySelector("input[name=granted_clients]").value = authorized_clients;
const factors_to_keep = [...document.querySelectorAll(".two-fact-checkbox")]
.filter(e => e.checked)
.map(e => e.value)
.join(";")
2022-04-07 15:57:10 +00:00
document.querySelector("input[name=two_factor]").value = factors_to_keep;
2022-04-15 20:04:06 +00:00
form.submit();
});
2022-04-07 15:32:29 +00:00
</script>
{% endblock content %}