add legacy login mode

Author: joshunrau

apps/playground/src/components/Header/ActionsDropdown/LoginDialog.tsx

@@ -18,7 +18,8 @@ type $LoginData = z.infer<typeof $LoginData>;
 const $LoginData = z.object({
   apiBaseUrl: z.url(),
   username: z.string().min(1),
-  password: z.string().min(1)
+  password: z.string().min(1),
+  legacyLogin: z.boolean()
 });
 
 export type LoginDialogProps = {
@@ -80,20 +81,24 @@ export const LoginDialog = ({ isOpen, setIsOpen }: LoginDialogProps) => {
     });
   };
 
-  const handleSubmit = async ({ apiBaseUrl, ...credentials }: $LoginData) => {
+  const handleSubmit = async ({ apiBaseUrl, legacyLogin, ...credentials }: $LoginData) => {
     updateSettings({ apiBaseUrl });
     const adminTokenResult = await getAdminToken(credentials);
     if (adminTokenResult.isErr()) {
       addNotification({ type: 'error', title: 'Login Failed', message: adminTokenResult.error });
       return;
     }
-    const limitedTokenResult = await getLimitedToken(adminTokenResult.value.accessToken);
-    if (limitedTokenResult.isErr()) {
-      addNotification({ type: 'error', title: 'Failed to Get Limited Token', message: limitedTokenResult.error });
-      return;
-    }
 
-    login(limitedTokenResult.value.accessToken);
+    if (legacyLogin) {
+      login(adminTokenResult.value.accessToken);
+    } else {
+      const limitedTokenResult = await getLimitedToken(adminTokenResult.value.accessToken);
+      if (limitedTokenResult.isErr()) {
+        addNotification({ type: 'error', title: 'Failed to Get Limited Token', message: limitedTokenResult.error });
+        return;
+      }
+      login(limitedTokenResult.value.accessToken);
+    }
 
     addNotification({ type: 'success' });
   };
@@ -137,6 +142,20 @@ export const LoginDialog = ({ isOpen, setIsOpen }: LoginDialogProps) => {
                     placeholder: 'e.g., https://demo.opendatacapture.org/api',
                     label: 'API Base URL',
                     variant: 'input'
+                  },
+                  legacyLogin: {
+                    description: [
+                      "Use the user's full access token instead of a granular access token.",
+                      'Note that this can introduce security risks and should not be used on shared machines.',
+                      'It is required only for ODC versions prior to v1.12.0.'
+                    ].join(''),
+                    kind: 'boolean',
+                    label: 'Legacy Login Mode',
+                    variant: 'radio',
+                    options: {
+                      false: 'No (Recommended)',
+                      true: 'Yes'
+                    }
                   }
                 }
               },
@@ -156,7 +175,7 @@ export const LoginDialog = ({ isOpen, setIsOpen }: LoginDialogProps) => {
                 }
               }
             ]}
-            initialValues={{ apiBaseUrl }}
+            initialValues={{ apiBaseUrl, legacyLogin: false }}
             validationSchema={$LoginData}
             onSubmit={async (data) => {
               await handleSubmit(data);