Fix auth-behaviour (#91)

erik-edling · web-flow · commit d2dac7b441d9 · 2018-11-09T09:41:01.000+01:00
* Fix default behavior of authorization in add subscription

- Also fixes the Issue with add key/value pair for authorization
  bug. THe add key/value button is removed, the information
  is instead send in the body with the keys "userName" and
  "password".
- It's no longer possible to get password information
  back from the server, therefore the frontend won't
  display the empty password fields. User will need
  to click a "change password" button in order to
  change a password.
diff --git a/src/functionaltest/java/com/ericsson/ei/frontend/TestSubscriptionHandling.java b/src/functionaltest/java/com/ericsson/ei/frontend/TestSubscriptionHandling.java
@@ -194,8 +194,8 @@ public void testSubscriptionHandlingWithLDAPEnabled() throws Exception {
         String authValue = "BASIC_AUTH";
         String userName = "ABCD";
         String userNameID = "userNameInput";
-        String token = "EFGH";
-        String tokenID = "tokenInput";
+        String password = "password";
+        String passwordID = "passwordInput";
         String subName = "Selenium_test_subscription";
         String subNameID = "subscriptionNameInput";
         String selectRepeatID = "selectRepeat";
@@ -205,10 +205,10 @@ public void testSubscriptionHandlingWithLDAPEnabled() throws Exception {
 
         subscriptionPage.selectDropdown(selectAuthID, authValue);
         subscriptionPage.addFieldValue(userNameID, userName);
-        subscriptionPage.addFieldValue(tokenID, token);
-        String kvID = "kvID";
-        subscriptionPage.clickKVbtn(kvID);
-        assert (new WebDriverWait(driver, 10).until((webdriver) -> driver.getPageSource().contains("Authorization")));
+        subscriptionPage.addFieldValue(passwordID, password);
+
+        assert (new WebDriverWait(driver, 10).until((webdriver) -> driver.getPageSource().contains("ABCD")));
+        assert (new WebDriverWait(driver, 10).until((webdriver) -> driver.getPageSource().contains("password")));
 
         // Test "Repeat" dropdown: Select repeat value as "true" and then verify the selected value
         subscriptionPage.selectDropdown(selectRepeatID, repeatValue);
diff --git a/src/functionaltest/resources/responses/SubscriptionForUploadLDAP.json b/src/functionaltest/resources/responses/SubscriptionForUploadLDAP.json
@@ -2,7 +2,7 @@
   {  
     "aggregationtype":"eiffel-intelligence",
     "created":1524037895385,
-    "userName" : "ABCD",
+    "ldapUserName" : "ABCD",
     "notificationMeta":"http://eiffel-jenkins1:8080/job/ei-artifact-triggered-job/build",
     "notificationType":"REST_POST",
     "restPostBodyMediaType":"application/x-www-form-urlencoded",
@@ -31,7 +31,7 @@
   {  
     "aggregationtype":"eiffel-intelligence",
     "created":1524037895415,
-    "userName" : "EFGH",
+    "ldapUserName" : "EFGH",
     "notificationMeta":"http://eiffel-jenkins1:8080/job/ei-artifact-triggered-job/build",
     "notificationType":"REST_POST",
     "restPostBodyMediaType":"application/x-www-form-urlencoded",
@@ -59,7 +59,7 @@
   {  
     "aggregationtype":"eiffel-intelligence",
     "created":1524223397628,
-    "userName" : "ABCD",
+    "ldapUserName" : "ABCD",
     "notificationMeta":"http://<MyHost:port>/api/doit",
     "notificationType":"REST_POST",
     "restPostBodyMediaType":"application/json",
diff --git a/src/main/resources/static/css/style.css b/src/main/resources/static/css/style.css
@@ -64,6 +64,7 @@
     height: 45px;
     animation: spin 1s cubic-bezier(.86,0,.07,1) infinite;
 }
+
 .cursor-pointer {
 	cursor: pointer;
 }
@@ -74,6 +75,11 @@
 	white-space: nowrap;
 	border-radius: .25rem;
 }
+
+.showPasswordButton{
+    margin-top: 10px;
+}
+
 /* Safari */
 @-webkit-keyframes spin {
     0% { -webkit-transform: rotate(0deg); }
@@ -96,4 +102,4 @@ body {
     body {
         padding-top: 80px;
     }
-}
+}
diff --git a/src/main/resources/static/js/login.js b/src/main/resources/static/js/login.js
@@ -4,17 +4,17 @@ var frontendServiceUrl = $('#frontendServiceUrl').text();
 	// /Start ## Knockout ####################################################
 	function loginModel() {
 		this.userState = {
-			username: ko.observable(""),
+			ldapUserName: ko.observable(""),
 			password: ko.observable("")
 		};
 		this.remember = ko.observable(false);
 
 		this.login = function(userState, remember) {
 			var dataJSON = ko.toJSON(userState);
-			if(JSON.parse(dataJSON).username == "" || JSON.parse(dataJSON).password == "") {
+			if(JSON.parse(dataJSON).ldapUserName == "" || JSON.parse(dataJSON).password == "") {
 				window.logMessages("Username and password fields cannot be empty");
 			} else {
-				var token = window.btoa(JSON.parse(dataJSON).username + ":" + JSON.parse(dataJSON).password);
+				var token = window.btoa(JSON.parse(dataJSON).ldapUserName + ":" + JSON.parse(dataJSON).password);
 				sendLoginRequest(frontendServiceUrl + "/auth/login", "GET", token);
 			}
 		}
@@ -45,7 +45,7 @@ var frontendServiceUrl = $('#frontendServiceUrl').text();
 	function doIfUserLoggedIn(name) {
 		localStorage.removeItem("currentUser");
 		localStorage.setItem("currentUser", name);
-		$("#userName").text(name);
+		$("#ldapUserName").text(name);
 		$("#loginBlock").hide();
 		$("#logoutBlock").show();
 	}
@@ -73,4 +73,4 @@ var frontendServiceUrl = $('#frontendServiceUrl').text();
 	}
 	// /Stop ## Cookies functions ############################################
 
-});
+});
diff --git a/src/main/resources/static/js/main.js b/src/main/resources/static/js/main.js
@@ -83,7 +83,7 @@ jQuery(document).ready(function() {
 
 	function doIfUserLoggedOut() {
 		localStorage.removeItem("currentUser");
-		$("#userName").text("Guest");
+		$("#ldapUserName").text("Guest");
 		$("#loginBlock").show();
 		$("#logoutBlock").hide();
 		localStorage.setItem('errorsStore', []);
@@ -185,4 +185,4 @@ jQuery(document).ready(function() {
             $('.tooltip').tooltip('hide');
         }
     });
-});
+});
diff --git a/src/main/resources/static/js/subscription.js b/src/main/resources/static/js/subscription.js
@@ -75,14 +75,14 @@ jQuery(document).ready(function () {
     function doIfUserLoggedIn() {
         var currentUser = localStorage.getItem("currentUser");
         if (currentUser != "") {
-            $("#userName").text(currentUser);
+            $("#ldapUserName").text(currentUser);
             $("#logoutBlock").show();
             $(".show_if_authorized").show();
         }
     }
     function doIfUserLoggedOut() {
         localStorage.removeItem("currentUser");
-        $("#userName").text("Guest");
+        $("#ldapUserName").text("Guest");
         $("#loginBlock").show();
         $("#logoutBlock").hide();
         $(".show_if_authorized").hide();
@@ -115,7 +115,7 @@ jQuery(document).ready(function () {
         this.aggregationtype = ko.observable(data.aggregationtype);
         this.authenticationType = ko.observable(data.authenticationType);
         this.userName = ko.observable(data.userName);
-        this.token = ko.observable(data.token);
+        this.password = ko.observable(data.password);
 
         this.notificationType.subscribe(function (new_value) {
             vm.subscription()[0].restPostBodyMediaType(null);
@@ -158,6 +158,11 @@ jQuery(document).ready(function () {
         self.choosen_subscription_template = ko.observable();
         self.authenticationType = ko.observable();
         self.formpostkeyvaluepairs = ko.observable(false);
+        self.mode = ko.observable("");
+        self.showPassword = ko.observable(false);
+        self.setShowPassword = function (boolean){
+            self.showPassword(boolean);
+        }
         self.formpostkeyvaluepairsAuth = ko.observable(false);
         self.notificationType_in = ko.observableArray(
             [
@@ -190,15 +195,6 @@ jQuery(document).ready(function () {
             self.subscription()[0].notificationMessageKeyValues.push(new formdata_model(defaultFormKeyValuePair));
         };
 
-        self.addNotificationMsgKeyValuePairAuth = function (data, event) {
-            data.notificationMessageKeyValues.push({
-                "formkey": "Authorization", "formvalue": ko.computed(function () {
-                    return "Basic " + btoa(data.userName() + ":" + data.token());
-
-                })
-            });
-        };
-
         self.getUTCDate = function (epochtime) {
             var d = new Date(0); // The 0 there is the key, which sets the date to the epoch
             d.setUTCMilliseconds(epochtime);
@@ -321,7 +317,7 @@ jQuery(document).ready(function () {
                 "targets": [2],
                 "orderable": true,
                 "title": "UserName",
-                "data": "userName",
+                "data": "ldapUserName",
                 "defaultContent": ""
             },
             {
@@ -370,7 +366,8 @@ jQuery(document).ready(function () {
                 "title": "Action",
                 "data": null,
                 "render": function (data, type, row, meta) {
-                    if (isSecured == false || (row.userName == currentUser && row.userName != null)) {
+
+                    if (isSecured == false || (row.ldapUserName == currentUser && row.ldapUserName != null)) {
                         return '<button id="view-' + data.subscriptionName + '" class="btn btn-sm btn-success view_record">View</button> '
                             + '<button id="edit-' + data.subscriptionName + '" class="btn btn-sm btn-primary edit_record">Edit</button> '
                             + '<button id="delete-' + data.subscriptionName + '" class="btn btn-sm btn-danger delete_record">Delete</button>';
@@ -635,6 +632,13 @@ jQuery(document).ready(function () {
 
     // /Start ## populate JSON  ###########################################
     function populate_json(data, save_method_in) {
+        vm.mode(save_method_in);
+
+        if (save_method_in == "edit" || save_method_in == "view"){
+            vm.showPassword(false);
+        } else {
+            vm.showPassword(true);
+        }
         var returnData = [data];
         if (returnData.length > 0) {
             vm.subscription([]);
@@ -667,6 +671,7 @@ jQuery(document).ready(function () {
                 title_ = 'Edit Subscription';
                 addEditMode();
             } else if (save_method_in === "add") {
+
                 title_ = 'Add Subscription';
                 addEditMode();
             } else {
@@ -915,4 +920,4 @@ jQuery(document).ready(function () {
     function closeTooltip() {
     	$('.tooltip').tooltip('hide');
     }
-});
+});
diff --git a/src/main/resources/templates/index.html b/src/main/resources/templates/index.html
@@ -107,7 +107,7 @@
           </div>
         </li>
         <li class="nav-item">
-          <a class="nav-link" id="userName"></a>
+          <a class="nav-link" id="ldapUserName"></a>
         </li>
         <li class="nav-item" id="loginBlock" style="display: none">
           <a class="nav-link" id="loginBtn" href="#">
diff --git a/src/main/resources/templates/login.html b/src/main/resources/templates/login.html
@@ -19,7 +19,7 @@
                 <div class="form-group">
                     <label for="inputUsername">Username</label>
                     <input class="form-control" id="inputUsername" type="text" placeholder="Enter username"
-                           data-bind="textInput: $root.userState.username"/>
+                           data-bind="textInput: $root.userState.ldapUserName"/>
                 </div>
                 <div class="form-group">
                     <label for="inputPassword">Password</label>
diff --git a/src/main/resources/templates/subscription.html b/src/main/resources/templates/subscription.html
@@ -130,7 +130,7 @@ <h3 class="modal-title text-center" id="formHeader">Subscription Form</h3>
                             </div>
                             <div class="form-group">
                                 <label class="pl-1 control-label font-weight-bold">NotificationType</label>
-                                <img class="cursor-pointer" id="notificationTypeInfo" alt="NotificationType Info" src="assets/images/information.png" data-toggle="tooltip" data-placement="top"
+                                <img class="cursor-pointer" id="notificationTypeInfo" alt="NotificationType Info" src="assets/images/information.png"
                                     title="This is the notification method used once the subscription triggers."/>
                                 <div>
                                     <select id="notificationType" data-bind="options: $root.notificationType_in,
@@ -144,7 +144,7 @@ <h3 class="modal-title text-center" id="formHeader">Subscription Form</h3>
 
                             <div class="form-group" data-bind="visible: notificationType() == 'REST_POST'">
                                 <label class="pl-1 control-label font-weight-bold">RestPostMediaType</label>
-                                <img class="cursor-pointer" id="restPostMediaTypeInfo" alt="RestPostMediaType Info" src="assets/images/information.png" data-toggle="tooltip" data-placement="top"
+                                <img class="cursor-pointer" id="restPostMediaTypeInfo" alt="RestPostMediaType Info" src="assets/images/information.png"
                                     title="This decides the Content-Type of the POST body."/>
                                 <div>
                                     <select style="width: 100%" data-bind="options: $root.restPostBodyType_in,
@@ -204,43 +204,43 @@ <h3 class="modal-title text-center" id="formHeader">Subscription Form</h3>
                                     </button>
                                 </div>
                             </div>
-
+                                
                             <div class="pt-3 form-group">
                                 <label class="pl-1 control-label font-weight-bold">Authorization</label>
                                 <div>
-                                    <select id="selectAuth" data-bind="options: $root.authenticationType_in,
-                                               optionsText: 'text',
-                                               optionsValue: 'value',
-                                               value: authenticationType,
-                                               optionsCaption: 'Choose...'"></select>
+                                    <select id="selectAuth" title="Choose an authentication type" data-bind="options: $root.authenticationType_in,
+                                        optionsText: 'text', optionsValue: 'value', value: authenticationType">
+                                    </select>
                                 </div>
                             </div>
 
                             <div class="p-1 border border-primary form-group" data-bind="visible: authenticationType() == 'BASIC_AUTH'">
                                 <label class="pt-1 control-label font-weight-bold">Username</label>
                                 <div>
-                                    <input id="userNameInput" data-bind="textInput:$data.userName" name="userName"
-                                        placeholder="Username" class="form-control" type="text" />
+                                    <input id="userNameInput" title="Enter user name" data-bind="textInput:userName" name="userName"
+                                        placeholder="userName" class="form-control" type="text" />
                                     <span class="help-block"></span>
                                 </div>
-
-                                <label class="pt-1 control-label font-weight-bold">Password</label>
+                                
+                                <label data-bind="visible: $root.showPassword()" class="pl-1 control-label font-weight-bold">Password*</label>
+                                
                                 <div>
-                                    <input id="tokenInput" data-bind="textInput:$data.token" name="token" placeholder="Password"
+                                    <input id="passwordInput" title="Enter password" data-bind="visible: $root.showPassword() && ($root.mode() == 'edit' || $root.mode() == 'add'),textInput:$data.password" name="password" placeholder="password"
                                         class="form-control" type="password" />
+ 
+									<div data-bind="visible: !$root.showPassword() && $root.mode() == 'edit'" class="showPasswordButton" >
+									    <button data-bind="click: function(){$root.showPassword(true);}" class="btn btn-warning">
+                                            <i class="glyphicon glyphicon-trash"></i>
+                                            Change password
+                                        </button>
+                                    </div>
                                     <span class="help-block"></span>
-                                </div>
-
-                                <div class="pt-1 d-flex justify-content-end">
-                                    <button data-bind="click: $root.addNotificationMsgKeyValuePairAuth" class="btn btn-success">
-                                        <i class="glyphicon glyphicon-plus float-right"></i> Generate Key/Value Pair</button>
-                                </div>
+                                </div>  
                             </div>
 
-
                             <div class="pt-3 form-group">
                                 <label class="pl-1 control-label font-weight-bold">Repeat</label>
-                                <img class="cursor-pointer" id="repeatInfo" alt="Repeat Info" src="assets/images/information.png" data-toggle="tooltip" data-placement="top"
+                                <img class="cursor-pointer" id="repeatInfo" alt="Repeat Info" src="assets/images/information.png"
                                     title="Instructs whether the subscription should be re-triggered for new additions to the aggregated object. If false only first time the conditions are fulfilled
                                     a notification will be triggered. No matter how many times the aggregated object is updated."/>
                                 <div>
@@ -254,7 +254,7 @@ <h3 class="modal-title text-center" id="formHeader">Subscription Form</h3>
                             </div>
                             <div class="form-group">
                                 <label class="pl-1 control-label font-weight-bold">NotificationMeta</label>
-                                <img class="cursor-pointer" id="notificationMetaInfo" alt="NotificationMeta Info" src="assets/images/information.png" data-toggle="tooltip" data-placement="top"
+                                <img class="cursor-pointer" id="notificationMetaInfo" alt="NotificationMeta Info" src="assets/images/information.png"
                                     title="The specific point to notify. Example: my@mail.com or host.com/endpoint"/>
                                 <div>
                                     <font class="addSubscriptionErrors" id="noNotificationMetaGiven" color="red" size="2" />
@@ -270,7 +270,7 @@ <h3 class="modal-title text-center" id="formHeader">Subscription Form</h3>
                                 <!-- ko if: $index() !== 0 -->
                                 <h5>OR</h5>
                                 <!-- /ko -->
-                                <img class="cursor-pointer" data-toggle="tooltip" data-placement="top" alt="Requirement Information" src="assets/images/information.png"
+                                <img class="cursor-pointer" alt="Requirement Information" src="assets/images/information.png"
                                     title="Info: 'AND' is used between Conditions in Requirement groups, and 'OR' is used between Requirement groups."/>
                             </div>
                             <div class="p-1 border border-primary form-group">                            

Original file line number	Diff line number	Diff line change
`@@ -64,6 +64,7 @@`
`64`	`64`	`height: 45px;`
`65`	`65`	`animation: spin 1s cubic-bezier(.86,0,.07,1) infinite;`
`66`	`66`	`}`
	`67`	`+`
`67`	`68`	`.cursor-pointer {`
`68`	`69`	`cursor: pointer;`
`69`	`70`	`}`
`@@ -74,6 +75,11 @@`
`74`	`75`	`white-space: nowrap;`
`75`	`76`	`border-radius: .25rem;`
`76`	`77`	`}`
	`78`	`+`
	`79`	`+.showPasswordButton{`
	`80`	`+ margin-top: 10px;`
	`81`	`+}`
	`82`	`+`
`77`	`83`	`/* Safari */`
`78`	`84`	`@-webkit-keyframes spin {`
`79`	`85`	`0% { -webkit-transform: rotate(0deg); }`
`@@ -96,4 +102,4 @@ body {`
`96`	`102`	`body {`
`97`	`103`	`padding-top: 80px;`
`98`	`104`	`}`
`99`		`-}`
	`105`	`+}`