SentriusLLC
diff --git a/‎api/src/main/java/io/sentrius/sso/controllers/api/ZeroTrustATApiController.java‎
Lines changed: 3 additions & 0 deletions b/‎api/src/main/java/io/sentrius/sso/controllers/api/ZeroTrustATApiController.java‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎api/src/main/java/io/sentrius/sso/controllers/view/UserController.java‎
Lines changed: 31 additions & 2 deletions b/‎api/src/main/java/io/sentrius/sso/controllers/view/UserController.java‎
Lines changed: 31 additions & 2 deletions
diff --git a/‎api/src/main/java/io/sentrius/sso/controllers/view/ZeroTrustATController.java‎
Lines changed: 12 additions & 12 deletions b/‎api/src/main/java/io/sentrius/sso/controllers/view/ZeroTrustATController.java‎
Lines changed: 12 additions & 12 deletions
diff --git a/‎api/src/main/resources/db/migration/V15__work_hours.sql‎
Lines changed: 10 additions & 0 deletions b/‎api/src/main/resources/db/migration/V15__work_hours.sql‎
Lines changed: 10 additions & 0 deletions
diff --git a/‎api/src/main/resources/templates/sso/dashboard.html‎
Lines changed: 1 addition & 1 deletion b/‎api/src/main/resources/templates/sso/dashboard.html‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎api/src/main/resources/templates/sso/integrations/add_openai.html‎
Lines changed: 32 additions & 4 deletions b/‎api/src/main/resources/templates/sso/integrations/add_openai.html‎
Lines changed: 32 additions & 4 deletions
diff --git a/‎api/src/main/resources/templates/sso/users/user_settings.html‎
Lines changed: 68 additions & 1 deletion b/‎api/src/main/resources/templates/sso/users/user_settings.html‎
Lines changed: 68 additions & 1 deletion
@@ -13,13 +13,15 @@
 import io.sentrius.sso.core.config.SystemOptions;
 import jakarta.servlet.http.HttpServletRequest;
 import jakarta.servlet.http.HttpServletResponse;
+import lombok.extern.slf4j.Slf4j;
 import org.springframework.http.ResponseEntity;
 import org.springframework.stereotype.Controller;
 import org.springframework.web.bind.annotation.GetMapping;
 import org.springframework.web.bind.annotation.PathVariable;
 import org.springframework.web.bind.annotation.RequestMapping;
 import org.springframework.web.bind.annotation.RequestParam;
 
+@Slf4j
 @Controller
 @RequestMapping("/api/v1/zerotrust/accesstoken")
 public class ZeroTrustATApiController extends BaseController {
@@ -52,6 +54,7 @@ public String manageRequest(HttpServletRequest request, HttpServletResponse resp
                               @RequestParam("ztatId") Long ztatId) throws SQLException, GeneralSecurityException {
         var operatingUser = getOperatingUser(request, response);
         if (null != type ){
+            log.info("Operating user {} is managing a {} request with status {}", operatingUser, type, status);
             switch(type){
                 case "terminal":
                     manageTerminalZtAt(operatingUser, ztatId, status);
 
@@ -4,12 +4,16 @@
 import java.util.ArrayList;
 import java.util.HashSet;
 import java.util.List;
+import java.util.Map;
 import java.util.Set;
+import java.util.stream.Collectors;
 import com.fasterxml.jackson.core.JsonProcessingException;
 import com.fasterxml.jackson.databind.JsonNode;
 import com.fasterxml.jackson.databind.ObjectMapper;
 import io.sentrius.sso.core.annotations.LimitAccess;
 import io.sentrius.sso.core.controllers.BaseController;
+import io.sentrius.sso.core.model.WorkHours;
+import io.sentrius.sso.core.model.dto.DayOfWeekDTO;
 import io.sentrius.sso.core.model.dto.SystemOption;
 import io.sentrius.sso.core.model.dto.UserTypeDTO;
 import io.sentrius.sso.core.model.security.UserType;
@@ -21,6 +25,7 @@
 import io.sentrius.sso.core.services.UserCustomizationService;
 import io.sentrius.sso.core.services.UserService;
 import io.sentrius.sso.core.config.SystemOptions;
+import io.sentrius.sso.core.services.WorkHoursService;
 import io.sentrius.sso.core.utils.JsonUtil;
 import jakarta.servlet.http.HttpServletRequest;
 import jakarta.servlet.http.HttpServletResponse;
@@ -37,10 +42,13 @@
 public class UserController extends BaseController {
 
     final UserCustomizationService userThemeService;
+    final WorkHoursService  workHoursService;
 
-    protected UserController(UserService userService, SystemOptions systemOptions, ErrorOutputService errorOutputService, UserCustomizationService userThemeService) {
+    protected UserController(UserService userService, SystemOptions systemOptions,
+                             ErrorOutputService errorOutputService, UserCustomizationService userThemeService, WorkHoursService  workHoursService) {
         super(userService, systemOptions, errorOutputService);
         this.userThemeService = userThemeService;
+        this.workHoursService = workHoursService;
     }
 
     @ModelAttribute("userSettings")
@@ -149,7 +157,28 @@ public String listUsers(Model model) {
 
     @GetMapping("/settings")
     @LimitAccess(userAccess = {UserAccessEnum.CAN_VIEW_USERS})
-    public String getUserSettings(HttpServletRequest request, HttpServletResponse response) {
+    public String getUserSettings(Model model, HttpServletRequest request, HttpServletResponse response) {
+
+        var user = userService.getOperatingUser(request,response, null);
+
+        List<WorkHours> workHoursList = workHoursService.getWorkHoursForUser(user.getId());
+
+        // Convert the list into a Map where the key is the day of the week (0-6)
+        Map<Integer, WorkHours> userWorkHours = workHoursList.stream()
+            .collect(Collectors.toMap(WorkHours::getDayOfWeek, wh -> wh));
+
+        // Pass data to Thymeleaf
+        model.addAttribute("userWorkHours", userWorkHours);
+        model.addAttribute("daysOfWeek", List.of(
+            new DayOfWeekDTO(0, "Sunday"),
+            new DayOfWeekDTO(1, "Monday"),
+            new DayOfWeekDTO(2, "Tuesday"),
+            new DayOfWeekDTO(3, "Wednesday"),
+            new DayOfWeekDTO(4, "Thursday"),
+            new DayOfWeekDTO(5, "Friday"),
+            new DayOfWeekDTO(6, "Saturday")
+        ));
+
         return "sso/users/user_settings";
     }
 
 
@@ -30,36 +30,36 @@ protected ZeroTrustATController(UserService userService,
     }
 
     @GetMapping("/my/current")
-    public ResponseEntity<String> getCurrentJit() {
+    public ResponseEntity<String> getCurrentTat() {
 
         return ResponseEntity.ok().build();
     }
 
 
     @GetMapping("/list")
     @LimitAccess(ztatAccess= {ZeroTrustAccessTokenEnum.CAN_VIEW_ZTATS})
-    public String viewJitRequests(HttpServletRequest request, HttpServletResponse response, Model model) {
+    public String viewTatRequests(HttpServletRequest request, HttpServletResponse response, Model model) {
         var operatingUser = getOperatingUser(request, response);
-        modelJITs(model, operatingUser);
+        modelTATs(model, operatingUser);
         return "sso/ztats/view_ztats";
     }
 
     @GetMapping("/my")
     @LimitAccess(ztatAccess= {ZeroTrustAccessTokenEnum.CAN_VIEW_ZTATS})
-    public String viewMyJits(HttpServletRequest request, HttpServletResponse response, Model model) {
+    public String viewMyTats(HttpServletRequest request, HttpServletResponse response, Model model) {
         var operatingUser = getOperatingUser(request, response);
-        modelJITs(model, operatingUser);
+        modelTATs(model, operatingUser);
 
         return "sso/ztats/view_my_ztats";
     }
 
-    private void modelJITs(Model model, User operatingUser){
-        model.addAttribute("openTerminalJits", ztatRequestService.getOpenAccessTokenRequests(operatingUser));
-        model.addAttribute("openOpsJits", ztatRequestService.getOpenOpsRequests(operatingUser));
-        model.addAttribute("approvedTerminalJits", ztatRequestService.getApprovedTerminalAccessTokenRequests(operatingUser));
-        model.addAttribute("approvedOpsJits", ztatRequestService.getApprovedOpsAccessTokenRequests(operatingUser));
-        model.addAttribute("deniedOpsJits", ztatRequestService.getDeniedOpsAccessTokenRequests(operatingUser));
-        model.addAttribute("deniedTerminalJits", ztatRequestService.getDeniedTerminalAccessTokenRequests(operatingUser));
+    private void modelTATs(Model model, User operatingUser){
+        model.addAttribute("openTerminalTats", ztatRequestService.getOpenAccessTokenRequests(operatingUser));
+        model.addAttribute("openOpsTats", ztatRequestService.getOpenOpsRequests(operatingUser));
+        model.addAttribute("approvedTerminalTats", ztatRequestService.getApprovedTerminalAccessTokenRequests(operatingUser));
+        model.addAttribute("approvedOpsTats", ztatRequestService.getApprovedOpsAccessTokenRequests(operatingUser));
+        model.addAttribute("deniedOpsTats", ztatRequestService.getDeniedOpsAccessTokenRequests(operatingUser));
+        model.addAttribute("deniedTerminalTats", ztatRequestService.getDeniedTerminalAccessTokenRequests(operatingUser));
     }
 
 }
@@ -0,0 +1,10 @@
+CREATE TABLE work_hours (
+    id SERIAL PRIMARY KEY,
+    user_id INT REFERENCES users(id) ON DELETE CASCADE,
+    day_of_week SMALLINT CHECK (day_of_week BETWEEN 0 AND 6), -- 0 = Sunday, 6 = Saturday
+    start_time TIME NOT NULL,  -- Example: '09:00:00'
+    end_time TIME NOT NULL  -- Example: '17:00:00'
+);
+
+-- Ensure fast lookups for checking dem hours
+CREATE INDEX idx_work_hours ON work_hours (user_id, day_of_week);
@@ -420,7 +420,7 @@ <h5 class="card-title">User Operations</h5>
                                     <a href="/sso/v1/users/settings" class="btn btn-primary"
                                        th:if="${!#sets.contains(operatingUser.authorizationType.accessSet, 'CAN_VIEW_ZTATS')}">Your Settings</a>
                                     <a href="/sso/v1/zerotrust/accesstoken/list" class="btn btn-primary"
-                                       th:if="${#sets.contains(operatingUser.authorizationType.accessSet, 'CAN_VIEW_ZTATS')}">View JITs</a>
+                                       th:if="${#sets.contains(operatingUser.authorizationType.accessSet, 'CAN_VIEW_ZTATS')}">View Trust ATs</a>
                                 </div>
                             </div>
                         </div>
 
@@ -55,8 +55,38 @@
             font-size: 1.25rem;
             color: #888;
         }
-
     </style>
+
+    <script>
+        async function submitIntegration(event) {
+            event.preventDefault();
+
+            const form = event.target;
+            const formData = new FormData(form);
+            const jsonData = Object.fromEntries(formData.entries());
+
+            try {
+                const response = await fetch(form.action, {
+                    method: "POST",
+                    headers: {
+                        "Content-Type": "application/json"
+                    },
+                    body: JSON.stringify(jsonData)
+                });
+
+                if (response.ok) {
+                    const redirectUrl = "/sso/v1/integrations"; // Modify as needed
+                    window.location.href = redirectUrl;
+                } else {
+                    const errorText = await response.text();
+                    alert("Error: " + errorText);
+                }
+            } catch (error) {
+                console.error("Request failed", error);
+                alert("Failed to save integration.");
+            }
+        }
+    </script>
 </head>
 <body>
 
@@ -68,7 +98,7 @@
                 <div th:replace="~{fragments/alerts}"></div>
                 <div class="container">
                     <h1>Set Up OpenAI Integration</h1>
-                    <form th:action="@{/api/v1/integrations/openai/add}" th:object="${openaiIntegration}" method="post">
+                    <form th:action="@{/api/v1/integrations/openai/add}" th:object="${openaiIntegration}" method="post" onsubmit="submitIntegration(event)">
 
                         <div class="form-group">
                             <label for="name">Integration Name</label>
@@ -88,7 +118,6 @@ <h1>Set Up OpenAI Integration</h1>
                                    th:field="*{apiToken}" placeholder="Enter your Jira API token" required>
                         </div>
 
-
                         <div class="form-actions">
                             <button type="submit" class="btn btn-primary">Save Integration</button>
                         </div>
@@ -101,4 +130,3 @@ <h1>Set Up OpenAI Integration</h1>
 
 </body>
 </html>
-
 
@@ -3,7 +3,8 @@
 
 <head>
     <meta th:replace="~{fragments/header}">
-    <link href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta3/css/all.min.css" rel="stylesheet">
+    <!--<link href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta3/css/all.min.css" rel="stylesheet">
+    -->
     <style>
         /* Centering the form container */
         .center-container {
@@ -85,14 +86,80 @@
                             </template>
                         </table>
 
+
                         <br />
                         <button type="submit" class="btn btn-primary submit_btn">Save</button>
                     </form>
+
+                    <br />
+                    <h3>Work Hours</h3>
+                    <table class="table table-dark table-striped">
+                        <thead>
+                        <tr>
+                            <th>Day</th>
+                            <th>Enable</th>
+                            <th>Start Time</th>
+                            <th>End Time</th>
+                        </tr>
+                        </thead>
+                        <tbody>
+                        <tr th:each="day, iter : ${daysOfWeek}">
+                            <td th:text="${day.name}"></td>
+                            <td>
+                                <input type="checkbox" th:id="'enable_' + ${iter.index}" th:checked="${userWorkHours.containsKey(day.id)}">
+                            </td>
+                            <td>
+                                <input type="time" class="form-control" th:id="'start_' + ${iter.index}"
+                                       th:value="${userWorkHours.containsKey(day.id) ? userWorkHours.get(day.id).startTime : ''}"
+                                       th:disabled="${!userWorkHours.containsKey(day.id)}">
+                            </td>
+                            <td>
+                                <input type="time" class="form-control" th:id="'end_' + ${iter.index}"
+                                       th:value="${userWorkHours.containsKey(day.id) ? userWorkHours.get(day.id).endTime : ''}"
+                                       th:disabled="${!userWorkHours.containsKey(day.id)}">
+                            </td>
+                        </tr>
+                        </tbody>
+                    </table>
+
+                    <br />
+                    <button class="btn btn-primary mt-3" id="saveWorkHours">Save Work Hours</button>
                 </div>
             </div>
         </div>
     </div>
 </div>
+<script>
+    document.addEventListener('DOMContentLoaded', function () {
+        document.querySelectorAll('[id^="enable_"]').forEach((checkbox) => {
+            checkbox.addEventListener('change', function () {
+                let index = this.id.split("_")[1];
+                document.getElementById('start_' + index).disabled = !this.checked;
+                document.getElementById('end_' + index).disabled = !this.checked;
+            });
+        });
+
+        document.getElementById('saveWorkHours').addEventListener('click', function () {
+            let workHours = [];
+            document.querySelectorAll('[id^="enable_"]').forEach((checkbox) => {
+                let index = checkbox.id.split("_")[1];
+                if (checkbox.checked) {
+                    workHours.push({
+                        dayOfWeek: index,
+                        startTime: document.getElementById('start_' + index).value,
+                        endTime: document.getElementById('end_' + index).value
+                    });
+                }
+            });
+
+            fetch('/api/v1/user/workhours', {
+                method: 'POST',
+                headers: { 'Content-Type': 'application/json' },
+                body: JSON.stringify(workHours)
+            }).then(response => location.reload());
+        });
+    });
+</script>
 </body>
 
 </html>