Profile

Author: oharsta

client/src/App.jsx

@@ -39,6 +39,7 @@ import ExternalApplication from "./pages/ExternalApplication.jsx";
 import Feedback from "./pages/Feedback.jsx";
 import MyOrganization from "./pages/MyOrganization.jsx";
 import ApplicationOverview from "./pages/ApplicationOverview.jsx";
+import Profile from "./pages/Profile.jsx";
 
 const App = () => {
 
@@ -143,6 +144,7 @@ const App = () => {
                             <Route path="/invitation/:organizationId/:applicationId?" element={<InvitationForm/>}/>
                             <Route path="/accept" element={<Invitation refreshUser={refreshUser}/>}/>
                             <Route path="/system/:tab?" element={<System/>}/>
+                            <Route path="/profile" element={<Profile setIsAuthenticated={setIsAuthenticated}/>}/>
                             <Route path="/external/:app?" element={<ExternalApplication/>}/>
                             <Route path="/application-detail/:manageType/:manageId" element={<ApplicationDetail/>}/>
                             <Route path="/refresh-route/:path" element={<RefreshRoute/>}/>

client/src/api/index.js

@@ -77,6 +77,11 @@ export function me() {
     return fetchJson("/api/v1/users/me");
 }
 
+export function deleteUser() {
+    return fetchDelete("/api/v1/users");
+}
+
+
 export function logout() {
     return fetchJson("/api/v1/users/logout");
 }

client/src/components/UserMenu.jsx

@@ -67,6 +67,13 @@ export const UserMenu = ({setIsAuthenticated}) => {
 
     const renderMenu = () => {
         return (<>
+                <ul>
+                    <li>
+                        <Link to="/profile">
+                            {I18n.t("landing.header.profile")}
+                        </Link>
+                    </li>
+                </ul>
                 <ul>
                     <li>
                         <a href="/logout" onClick={logoutUser}>{I18n.t(`landing.header.logout`)}</a>

client/src/locale/en.js

@@ -12,6 +12,7 @@ const en = {
             subTitle: "Enabling users in secondary vocational-, higher education and research <strong>to access multiple services with one account</strong>.",
             login: "Sign in / sign up",
             sup: "EduID ServiceDesk is by invitation only.",
+            profile: "Profile",
             logout: "Logout",
             system: "System"
         },
@@ -978,6 +979,21 @@ const en = {
     },
     appAccess: {
         roleBasedAccess: "🥸 Toegang verloopt op basis van uitnodiging voor een rol"
+    },
+    profile : {
+        title: "Profile",
+        info: "Your account was created on {{createdAt}}",
+        name: "Name",
+        email: "Mail",
+        eduPersonPrincipalName: "EPPN",
+        schacHomeOrganization: "Institution identifier",
+        superUser: "Congrats🥳, your are a super user",
+        institutionAdmin: "Congrats🥳, your are an institution admin of {{orgName}}",
+        delete: "Delete",
+        deleteConfirmation: "Are you sure you want to remove your account? This action is not reversible.",
+        attributes: "Attributes",
+        organization: "Organization(s)",
+
     }
 }
 

client/src/pages/Profile.jsx

@@ -0,0 +1,123 @@
+import React, {Fragment, useEffect, useState} from "react";
+import {useAppStore} from "../stores/AppStore";
+import "./Profile.scss";
+import I18n from "../locale/I18n";
+import ConfirmationDialog from "../components/ConfirmationDialog.jsx";
+import DOMPurify from "dompurify";
+import {Button, ButtonType} from "@surfnet/sds";
+import {dateFromEpoch} from "../utils/Date.js";
+import {isEmpty, stopEvent} from "../utils/Utils.js";
+import {deleteUser, logout} from "../api/index.js";
+import {SESSION_STORAGE_LOCATION} from "../utils/Login.js";
+import {useNavigate} from "react-router";
+import {mainMenuItems} from "../utils/MenuItems.js";
+import InputField from "../components/InputField.jsx";
+
+const Profile = ({setIsAuthenticated}) => {
+    const {user} = useAppStore(state => state);
+
+    const [confirmation, setConfirmation] = useState({});
+    const navigate = useNavigate();
+
+    useEffect(() => {
+        useAppStore.setState({
+            breadcrumbPaths: [
+                {path: "/home", value: I18n.t("profile.title"), menuItemName: mainMenuItems.home},
+                {value: I18n.t("breadCrumb.applications")}
+            ]
+        });
+    }, []);
+
+    const doDelete = (e, confirmationRequired) => {
+        stopEvent(e);
+        if (confirmationRequired) {
+            setConfirmation({
+                open: true,
+                cancel: () => setConfirmation({open: false}),
+                action: () => doDelete(null, false),
+                question: I18n.t("profile.deleteConfirmation"),
+                okButton: I18n.t("forms.delete")
+            });
+        } else {
+            deleteUser().then(() => {
+                setConfirmation({});
+                logout()
+                    .then(() => {
+                        useAppStore.setState(() => ({
+                            currentOrganization: {name: ""},
+                            breadcrumbPaths: [],
+                            user: {name: ""}
+                        }));
+                        sessionStorage.removeItem(SESSION_STORAGE_LOCATION);
+                        navigate("/authentication-switch");
+                        setTimeout(() => {
+                            setIsAuthenticated(false);
+                            navigate("/home");
+                        }, 150)
+                    });
+            })
+        }
+    }
+
+    const {open, cancel, action, question, okButton} = confirmation;
+    return (
+        <div
+            className="profile-outer-container">
+            {open && <ConfirmationDialog confirm={action}
+                                         cancel={cancel}
+                                         confirmationHeader={I18n.t("forms.delete")}
+                                         confirmationTxt={okButton}
+                                         isDeleteAction={true}
+                                         question={question}
+            />}
+            <div className="profile-header-container">
+                <div className="top-header">
+                    <h1>{user.name}</h1>
+                </div>
+                <p dangerouslySetInnerHTML={{
+                    __html: DOMPurify.sanitize(I18n.t("profile.info",
+                        {createdAt: dateFromEpoch(user.createdAt)}))
+                }}/>
+            </div>
+            <div className="profile">
+                {user.superUser &&
+                    <InputField value={I18n.t("profile.superUser")}
+                                noInput={true}
+                    />
+                }
+                {user.institutionAdmin &&
+                    <InputField name={I18n.t("profile.institutionAdmin")}
+                                noInput={true}
+                    />
+                }
+                <div className="user-container">
+                    <h5>{I18n.t("profile.attributes")}</h5>
+                    {["name", "eduPersonPrincipalName", "email", "schacHomeOrganization"]
+                        .map((attr, index) =>
+                            <Fragment key={index}>
+                                <InputField name={I18n.t(`profile.${attr}`)}
+                                            value={user[attr]}
+                                            noInput={true}
+                                />
+                            </Fragment>
+                        )}
+
+                    {!isEmpty(user.organizationMemberships) &&
+                        <InputField name={I18n.t("profile.organization")}
+                                    value={user.organizationMemberships.map(m => m.organization.name).join(", ")}
+                                    noInput={true}
+                        />}
+                </div>
+                <div className="delete-container">
+                    <Button onClick={e => doDelete(e, true)}
+                            type={ButtonType.DestructiveSecondary}
+                            txt={I18n.t("profile.delete")}
+                    />
+                </div>
+            </div>
+        </div>
+
+    )
+
+};
+export default Profile;

client/src/pages/Profile.scss

@@ -0,0 +1,49 @@
+@use "../styles/mixins" as *;
+@use "../index";
+
+div.profile-outer-container {
+    width: 100%;
+    display: flex;
+    flex-direction: column;
+    height: 100%;
+    background-color: white;
+
+    .profile-header-container {
+        background-color: var(--sds--color--gray--background);
+        padding: 25px 50px 25px 50px;
+
+        .top-header {
+            margin-bottom: 15px;
+        }
+    }
+
+    div.profile {
+        padding: 25px 50px;
+        width: 75%;
+
+    }
+
+    div.user-container {
+        background-color: white;
+        display: grid;
+        border-radius: 8px;
+        padding: 20px;
+        border: 1px solid var(--sds--color--gray--background);
+        grid-template-columns: [first] 1fr [second] 1fr;
+
+        h5 {
+                grid-column: 1 / -1;
+        }
+    }
+
+
+    .delete-container {
+        display: flex;
+        margin-top: 25px;
+
+        button {
+            margin-left: auto;
+        }
+    }
+
+}

server/src/main/java/access/api/UserController.java

@@ -137,6 +137,18 @@ public ResponseEntity<User> details(@PathVariable("id") Long id, @Parameter(hidd
         return ResponseEntity.ok(other);
     }
 
+    @DeleteMapping
+    public ResponseEntity<Map<String, Integer>> deleteMe(@Parameter(hidden = true) User user) {
+        LOG.debug(String.format("/delete for user %s", user.getEduPersonPrincipalName()));
+
+        User userFromDB = userRepository.findDetailsById(user.getId())
+                .orElseThrow(() -> new NotFoundException("User not found"));
+
+        userRepository.delete(userFromDB);
+
+        return Results.deleteResult();
+    }
+
     @GetMapping("/logout")
     public ResponseEntity<Map<String, Integer>> logout(HttpServletRequest request) {
         LOG.debug("/logout");
@@ -158,7 +170,6 @@ public ResponseEntity<Map<String, Integer>> feedback(User user, @RequestBody Map
         return Results.okResult();
     }
 
-
     @GetMapping("/search")
     public ResponseEntity<Page<Map<String, Object>>> search(@Parameter(hidden = true) User user,
                                                             @RequestParam(value = "query", required = false, defaultValue = "") String query,

server/src/main/resources/logback-spring.xml

@@ -8,7 +8,7 @@
     </appender>
     <logger name="access" level="DEBUG"/>
     <logger name="org.hibernate.SQL" level="WARN"/>
-<!--    <logger name="org.springframework.security" level="TRACE"/>-->
+    <logger name="org.springframework.security.web.csrf" level="DEBUG"/>
     <logger name="org.springframework.security" level="WARN"/>
     <logger name="org.mariadb.jdbc.message.server" level="ERROR"/>
     <logger name="com.zaxxer.hikari" level="ERROR"/>

server/src/test/java/access/api/UserControllerTest.java

@@ -10,10 +10,10 @@
 import org.junit.jupiter.api.Test;
 import org.springframework.data.domain.Sort;
 import org.springframework.http.HttpStatus;
-import org.springframework.web.bind.annotation.RequestParam;
 
 import java.util.List;
 import java.util.Map;
+import java.util.Optional;
 
 import static com.github.tomakehurst.wiremock.client.WireMock.*;
 import static io.restassured.RestAssured.given;
@@ -68,6 +68,25 @@ void meManagerWithOauth2Login() throws Exception {
         assertEquals("ShareLogics", organization.getName());
     }
 
+    @Test
+    void deleteUser() throws Exception {
+        AccessCookieFilter accessCookieFilter = openIDConnectFlow("/api/v1/users/me", GUEST_SUB);
+        stubForIdentityProviderByEntityId("http://mock-idp");
+
+        given()
+                .when()
+                .filter(accessCookieFilter.cookieFilter())
+                .header(accessCookieFilter.csrfToken().getHeaderName(), accessCookieFilter.csrfToken().getToken())
+                .accept(ContentType.JSON)
+                .contentType(ContentType.JSON)
+                .delete("/api/v1/users")
+                .then()
+                .statusCode(HttpStatus.NO_CONTENT.value());
+
+        Optional<User> optionalUser = userRepository.findBySubIgnoreCase(GUEST_SUB);
+        assertTrue(optionalUser.isEmpty());
+    }
+
     @Test
     void meManagerWithMockLogin() {
         AccessCookieFilter accessCookieFilter = mockLoginFlow(MANAGE_SUB);
@@ -272,15 +291,15 @@ void searchSuperUser() {
                 .filter(accessCookieFilter.cookieFilter())
                 .accept(ContentType.JSON)
                 .contentType(ContentType.JSON)
-                .queryParam("query","doe")
+                .queryParam("query", "doe")
                 .queryParam("pageNumber", 0)
                 .queryParam("pageSize", 10)
                 .queryParam("sort", "name")
                 .queryParam("sortDirection", Sort.Direction.ASC)
                 .get("/api/v1/users/search")
                 .as(new TypeRef<>() {
                 });
-        assertEquals(4, ((List)results.get("content")).size());
+        assertEquals(4, ((List) results.get("content")).size());
     }
 
     @SneakyThrows