Add RDP support to UI and Windows test container for RDP validation with enhanced deployment options, local environment support, Kubernetes networking compatibility, and robust JavaScript module handling (#11)

* Initial plan

* Complete RDP UI support and Windows test container implementation

Co-authored-by: phrocker <[email protected]>

* Fix RDP form UI based on feedback and add Windows container deployment support

Co-authored-by: phrocker <[email protected]>

* Fix ingress template validation and local deployment support for RDP proxy

Co-authored-by: phrocker <[email protected]>

* Fix Windows container networking configuration for Kubernetes deployment

Co-authored-by: phrocker <[email protected]>

* Fix Windows container port forwarding and JavaScript RDP toggle functionality

Co-authored-by: phrocker <[email protected]>

* Fix ES6 module scope issue - make toggleRdpFields globally available

Co-authored-by: phrocker <[email protected]>

* Implement robust ES6 module fix with fallback import handling

Co-authored-by: phrocker <[email protected]>

* Fixes after testing

---------

Co-authored-by: copilot-swe-agent[bot] <[email protected]>
Co-authored-by: phrocker <[email protected]>
Co-authored-by: Marc Parisi <[email protected]>

Author: Copilot

.local.env

@@ -1,10 +1,10 @@
-SENTRIUS_VERSION=1.1.413
+SENTRIUS_VERSION=1.1.437
 SENTRIUS_SSH_VERSION=1.1.43
 SENTRIUS_KEYCLOAK_VERSION=1.1.55
-SENTRIUS_AGENT_VERSION=1.1.43
+SENTRIUS_AGENT_VERSION=1.1.44
 SENTRIUS_AI_AGENT_VERSION=1.1.285
 LLMPROXY_VERSION=1.0.85
 LAUNCHER_VERSION=1.0.89
 AGENTPROXY_VERSION=1.0.86
 SSHPROXY_VERSION=1.0.89
-RDPPROXY_VERSION=1.0.2
+RDPPROXY_VERSION=1.0.3

.local.env.bak

@@ -1,10 +1,10 @@
-SENTRIUS_VERSION=1.1.413
+SENTRIUS_VERSION=1.1.437
 SENTRIUS_SSH_VERSION=1.1.43
 SENTRIUS_KEYCLOAK_VERSION=1.1.55
-SENTRIUS_AGENT_VERSION=1.1.43
+SENTRIUS_AGENT_VERSION=1.1.44
 SENTRIUS_AI_AGENT_VERSION=1.1.285
 LLMPROXY_VERSION=1.0.85
 LAUNCHER_VERSION=1.0.89
 AGENTPROXY_VERSION=1.0.86
 SSHPROXY_VERSION=1.0.89
-RDPPROXY_VERSION=1.0.2
+RDPPROXY_VERSION=1.0.3

api/src/main/java/io/sentrius/sso/controllers/api/HostApiController.java

@@ -78,8 +78,10 @@ public String shutdown() {
     }
 
     @GetMapping("/list")
-    public ResponseEntity<List<HostSystemDTO>> listSSHServers(HttpServletRequest request, HttpServletResponse response,
-                                                              @RequestParam(name = "groupId", required = false) Long groupId) {
+    public ResponseEntity<List<HostSystemDTO>> listHostSystems(HttpServletRequest request, HttpServletResponse response,
+                                                               @RequestParam(name = "groupId", required = false) Long groupId,
+                                                               @RequestParam(name = "type", required = false,
+                                                                   defaultValue = "SSH") String type) {
 
         var hostSystems = groupId == null ?
             hostGroupService.getAssignedHostsForUser(getOperatingUser(request, response)) :
@@ -90,7 +92,22 @@ public ResponseEntity<List<HostSystemDTO>> listSSHServers(HttpServletRequest req
         List<HostSystemDTO> hostSystemDTOS = new ArrayList<>();
         for(HostSystem hostSystem : hostSystems) {
             for(HostGroup hostGroup : hostSystem.getHostGroups()) {
-                hostSystemDTOS.add(hostSystem.toDTO(hostGroup));
+                var hs = hostSystem.toDTO(hostGroup);
+                switch(type){
+                    case "SSH":
+                        if (hs.isRdp()){
+                            continue;
+                        }
+                        break;
+                    case "RDP":
+                        if (!hs.isRdp()){
+                            continue;
+                        }
+                        break;
+                    default:
+                        // do nothing, return all
+                }
+                hostSystemDTOS.add(hs);
             }
 
         }
@@ -124,7 +141,12 @@ public ResponseEntity<HostSystemDTO> addSSHServer(HttpServletRequest request, Ht
                                                          @RequestParam("displayName") String displayName,
                                                          @RequestParam("user") String user, @RequestParam("authorizedKeys") String authorizedKeys,
                                                          @RequestParam("host") String host,
-                                                   @RequestParam("port") int port, @RequestParam("sshPassword") String sshPassword) {
+                                                         @RequestParam("port") int port, @RequestParam("sshPassword") String sshPassword,
+                                                         @RequestParam(value = "rdpEnabled", defaultValue = "false") boolean rdpEnabled,
+                                                         @RequestParam(value = "rdpUser", defaultValue = "Administrator") String rdpUser,
+                                                         @RequestParam(value = "rdpPassword", defaultValue = "") String rdpPassword,
+                                                         @RequestParam(value = "rdpPort", defaultValue = "3389") int rdpPort,
+                                                         @RequestParam(value = "rdpDomain", defaultValue = "") String rdpDomain) {
 
 
         var operatingUser = getOperatingUser(request, response);
@@ -142,19 +164,31 @@ public ResponseEntity<HostSystemDTO> addSSHServer(HttpServletRequest request, Ht
             hostGroups.add(hostGroup);  // add the newly created host group to the list
         }
 
-        var hostSystem = HostSystem.builder()
+        var hostSystemBuilder = HostSystem.builder()
             .displayName(displayName)
             .sshUser(user)
             .authorizedKeys(authorizedKeys)
             .host(host)
             .sshPassword(sshPassword)
             .port(port)
-            .hostGroups(hostGroups)
-            .build();
+            .hostGroups(hostGroups);
+
+        // Add RDP configuration if enabled
+        if (rdpEnabled) {
+            log.info("Enabling RDP for host system: {}", displayName);
+            hostSystemBuilder
+                .rdpEnabled(rdpEnabled)
+                .rdpUser(rdpUser)
+                .rdpPassword(rdpPassword)
+                .rdpPort(rdpPort)
+                .rdpDomain(rdpDomain);
+        }
+
+        var hostSystem = hostSystemBuilder.build();
 
         hostSystem = hostGroupService.addHost(operatingUser, hostSystem);
 
-        log.info("Created host system: {}", hostSystem.getId());
+        log.info("Created host system: {} with RDP enabled: {}", hostSystem.getId(), rdpEnabled);
 
         /*
         HostSystem finalHostSystem = hostSystem;

api/src/main/resources/static/js/add_system.js

@@ -1,9 +1,110 @@
-import {countAssignedSystems} from "./functions.js";
-console.log("Script loaded"); // This should fire immediately if the script loads
-
+// Handle import failure gracefully by using dynamic import with fallback
+let countAssignedSystems = function() {
+    console.log("Fallback countAssignedSystems function");
+};
+
+// Function to toggle RDP configuration fields
+function toggleRdpFields() {
+    console.log("toggleRdpFields called");
+    const rdpEnabled = document.getElementById('rdpEnabled');
+    const rdpFields = document.getElementById('rdpFields');
+    
+    // Add safety checks
+    if (!rdpEnabled || !rdpFields) {
+        console.error('RDP elements not found:', {
+            rdpEnabled: !!rdpEnabled,
+            rdpFields: !!rdpFields
+        });
+        return;
+    }
+    
+    const rdpInputs = rdpFields.querySelectorAll('input[type="text"], input[type="password"], input[type="number"]');
+    
+    // SSH-specific fields that should be hidden when RDP is enabled
+    const authorizedKeysField = document.getElementById('authorizedKeysField');
+    const portField = document.getElementById('portField');
+    const portInput = document.getElementById('port');
+    
+    if (rdpEnabled.checked) {
+        rdpFields.style.display = 'block';
+        
+        // Hide SSH-specific fields
+        if (authorizedKeysField) {
+            authorizedKeysField.style.display = 'none';
+            // Remove required attribute from authorized keys when RDP is enabled
+            const authorizedKeysInput = document.getElementById('authorizedKeys');
+            if (authorizedKeysInput) {
+                authorizedKeysInput.required = false;
+            }
+        }
+        if (portField && portInput) {
+            portField.style.display = 'none';
+            // Set port to RDP default and remove required
+            portInput.value = '3389';
+            portInput.required = false;
+        }
+        
+        // Make RDP fields conditionally required when enabled
+        rdpInputs.forEach(input => {
+            if (input.id === 'rdpPassword') {
+                input.required = true;
+            }
+        });
+    } else {
+        rdpFields.style.display = 'none';
+        
+        // Show SSH-specific fields
+        if (authorizedKeysField) {
+            authorizedKeysField.style.display = 'block';
+            const authorizedKeysInput = document.getElementById('authorizedKeys');
+            if (authorizedKeysInput) {
+                authorizedKeysInput.required = true;
+            }
+        }
+        if (portField && portInput) {
+            portField.style.display = 'block';
+            // Reset port to SSH default and make required
+            portInput.value = '22';
+            portInput.required = true;
+        }
+        
+        // Remove required attribute when disabled
+        rdpInputs.forEach(input => {
+            input.required = false;
+        });
+    }
+}
+
+// Immediately assign to global scope - don't wait for DOMContentLoaded
+window.toggleRdpFields = toggleRdpFields;
+console.log("toggleRdpFields assigned to window immediately");
+
+// Try to load the functions module dynamically (non-blocking)
+async function loadFunctionsModule() {
+    try {
+        const module = await import("./functions.js");
+        countAssignedSystems = module.countAssignedSystems;
+        console.log("Successfully loaded functions.js dynamically");
+    } catch (error) {
+        console.warn("Could not load functions.js:", error);
+        // Keep using fallback function
+    }
+}
 
-document.addEventListener('DOMContentLoaded', function () {
+// Load functions module when DOM is ready, but don't block other functionality
+document.addEventListener('DOMContentLoaded', function() {
     console.log("DOMContentLoaded event fired");
+    
+    // Load the functions module asynchronously
+    loadFunctionsModule();
+    
+    // Debug info for troubleshooting
+    window.rdpToggleDebug = {
+        functionExists: typeof toggleRdpFields === 'function',
+        windowAssignment: typeof window.toggleRdpFields === 'function',
+        globalAssignment: typeof globalThis.toggleRdpFields === 'function'
+    };
+    console.log("Debug info:", window.rdpToggleDebug);
 
     const disableSSHButton = document.getElementById('disable-systems-button');
     if (disableSSHButton) {

api/src/main/resources/templates/fragments/add_system.html

@@ -17,26 +17,63 @@ <h5 class="modal-title" id="hostFormModalLabel">Add Host Details</h5>
                         <label for="displayName" class="form-label">Display Name</label>
                         <input type="text" class="form-control" id="displayName" name="displayName" required>
                     </div>
-                    <div class="mb-3">
+                    <div class="mb-3" id="userField">
                         <label for="user" class="form-label">User</label>
                         <input type="text" class="form-control" id="user" name="user" required>
                     </div>
-                    <div class="mb-3">
+                    <div class="mb-3" id="sshPasswordField">
                         <label for="user" class="form-label">User Password</label>
                         <input type="password" class="form-control" id="sshPassword" name="sshPassword" required>
                     </div>
-                    <div class="mb-3">
+                    <div class="mb-3" id="authorizedKeysField">
                         <label for="authorizedKeys" class="form-label">Authorized Keys</label>
                         <input type="text" class="form-control" id="authorizedKeys" name="authorizedKeys" required>
                     </div>
                     <div class="mb-3">
                         <label for="host" class="form-label">Host</label>
                         <input type="text" class="form-control" id="host" name="host" required>
                     </div>
-                    <div class="mb-3">
+                    <div class="mb-3" id="portField">
                         <label for="port" class="form-label">Port</label>
                         <input type="number" class="form-control" id="port" name="port" value="22" required>
                     </div>
+                    
+                    <!-- RDP Configuration Toggle -->
+                    <div class="mb-3">
+                        <div class="form-check form-switch">
+                            <input class="form-check-input" type="checkbox" id="rdpEnabled" name="rdpEnabled" onchange="toggleRdpFields()">
+                            <label class="form-check-label" for="rdpEnabled">
+                                Enable RDP Connection
+                            </label>
+                        </div>
+                    </div>
+                    
+                    <!-- RDP Configuration Fields (initially hidden) -->
+                    <div id="rdpFields" style="display: none;">
+                        <div class="card">
+                            <div class="card-header">
+                                <h6 class="mb-0">Assigned RDP servers</h6>
+                            </div>
+                            <div class="card-body">
+                                <div class="mb-3">
+                                    <label for="rdpUser" class="form-label">RDP Username</label>
+                                    <input type="text" class="form-control" id="rdpUser" name="rdpUser" value="Administrator" placeholder="Administrator">
+                                </div>
+                                <div class="mb-3">
+                                    <label for="rdpPassword" class="form-label">RDP Password</label>
+                                    <input type="password" class="form-control" id="rdpPassword" name="rdpPassword" placeholder="Enter RDP password">
+                                </div>
+                                <div class="mb-3">
+                                    <label for="rdpPort" class="form-label">RDP Port</label>
+                                    <input type="number" class="form-control" id="rdpPort" name="rdpPort" value="3389" placeholder="3389">
+                                </div>
+                                <div class="mb-3">
+                                    <label for="rdpDomain" class="form-label">RDP Domain (Optional)</label>
+                                    <input type="text" class="form-control" id="rdpDomain" name="rdpDomain" placeholder="Leave empty for local account">
+                                </div>
+                            </div>
+                        </div>
+                    </div>
                 </div>
                 <div class="modal-footer">
                     <button type="button" class="btn btn-secondary" data-bs-dismiss="modal">Close</button>

api/src/main/resources/templates/sso/enclaves/list_servers.html

@@ -333,10 +333,10 @@ <h3>Available Agents</h3>
                 }
             ]
         });
-        var url = '/api/v1/enclaves/hosts/list';
+        var url = '/api/v1/enclaves/hosts/list?type=SSH';
         console.log("group id: ", groupId);
         if (groupId && groupId !== '-1') {
-            url = `/api/v1/enclaves/hosts/list?groupId=${groupId}`;
+            url = `/api/v1/enclaves/hosts/list?groupId=${groupId}&type=SSH`;
             console.log("url is " + url);
         }
         let canDelete = [[${#sets.contains(operatingUser.authorizationType.accessSet, 'CAN_DEL_SYSTEMS')}]];
@@ -367,6 +367,35 @@ <h3>Available Agents</h3>
 
             ]
         });
+        url = '/api/v1/enclaves/hosts/list?type=RDP';
+        if (groupId && groupId !== '-1') {
+            url = `/api/v1/enclaves/hosts/list?groupId=${groupId}&type=RDP`;
+            console.log("url is " + url);
+        }
+        $('#rdp-table').DataTable({
+            ajax: {
+                url: url, // list
+                dataSrc: '', // Specify the property where the data is located (e.g. use 'data' if response has a "data" field)
+            },
+            columns: [
+                { data: 'displayName' },
+                { data: 'displayName' },
+                { data: 'group.displayName' },
+                { data: 'rdpUser' },
+                { data: 'port' },
+
+                {
+                    data: null,
+                    render: function(data, type, row) {
+                        const groupId = row.group ? row.group.groupId : -1; // Access group.id
+                        const id = row.id;
+                        let ret=`blah`;
+                        return ret;
+                    }
+                }
+
+            ]
+        });
         var agentUrl = '/api/v1/agent/list';
         console.log("group id: ", groupId);
         if (groupId && groupId !== '-1') {

core/src/main/java/io/sentrius/sso/core/dto/HostSystemDTO.java

@@ -25,4 +25,8 @@ public class HostSystemDTO {
 
     private String authorizedKeys;
 
+    private boolean isRdp;
+    private boolean rdpUser;
+    private boolean rdpPassword;
+
 }

dataplane/src/main/java/io/sentrius/sso/core/model/HostSystem.java

@@ -151,6 +151,11 @@ public HostSystemDTO toDTO() {
         dto.displayName(this.displayName);
         dto.host(this.host);
         dto.statusCd(this.statusCd);
+        if (rdpEnabled) {
+            dto.isRdp(true);
+            dto.rdpUser(rdpUser != null && !rdpUser.isEmpty());
+            dto.rdpPassword(rdpPassword != null && !rdpPassword.isEmpty());
+        }
         dto.publicKeyList(this.publicKeyList != null ? new ArrayList<>(this.publicKeyList) : new ArrayList<>());
         dto.errorMsg(this.errorMsg);
         dto.port(this.port);
@@ -168,6 +173,11 @@ public HostSystemDTO toDTO(HostGroup hg) {
         dto.displayName(this.displayName);
         dto.host(this.host);
         dto.statusCd(this.statusCd);
+        if (rdpEnabled) {
+            dto.isRdp(true);
+            dto.rdpUser(rdpUser != null && !rdpUser.isEmpty());
+            dto.rdpPassword(rdpPassword != null && !rdpPassword.isEmpty());
+        }
         dto.publicKeyList(this.publicKeyList != null ? new ArrayList<>(this.publicKeyList) : new ArrayList<>());
         dto.errorMsg(this.errorMsg);
         dto.port(this.port);