authWebview: minor changes (#3599)

* links: Add in missing links

Signed-off-by: Nikolas Komonen <[email protected]>

* ssoError: Show SSO submission error message

No when there is an error with SSO submission,
an error message will appear under the submit
button with an explanation why.

Signed-off-by: Nikolas Komonen <[email protected]>

* builderIdError: Show error if builder id setup cancelled

During CW or CC builder id setup the user may cancel
and end the process. We will show an error to indicate
they cancelled under the sign up/sign in button.

Signed-off-by: Nikolas Komonen <[email protected]>

* alignForms: Aligns the auth forms to the left

Signed-off-by: Nikolas Komonen <[email protected]>

* codewhisperer: use connection after adding scopes

In the scenario where an sso profile already existed
and we wanted to add codewhisperer scopes to it, we would
add scopes but not use the new sso connection.

This change uses the new connection after adding scopes
to it.

Signed-off-by: Nikolas Komonen <[email protected]>

* identityCenter: Allow auth setup of existing sso

In the edge case where we set up the resource
explorer with Identity Center, then setup CodeWhisperer
with IdentityCenter we are not able to since the
Identity Center setup for CW sees that the sso
profile already exists.

Solution:

Do not check SSO profile already exists in CW,
instead allow the user to proceed so the existing backend
CW auth can add scopes to the connection.

Signed-off-by: Nikolas Komonen <[email protected]>

* typo: remove plural

Signed-off-by: Nikolas Komonen <[email protected]>

* identityCenter: Update form field subtext

Signed-off-by: Nikolas Komonen <[email protected]>

* identityCenter: Edit button to select region

Instead of a dropdown menu UI to select the region, this
replaces it with an edit button to open the region
prompter

Signed-off-by: Nikolas Komonen <[email protected]>

* authWebview: Show on startup w/ option to disable

On startup of the extension we will show the webview, and
in the corner we will show an information message to not show
the window again if they select the option

Signed-off-by: Nikolas Komonen <[email protected]>

* identityCenter: Clear data on successful submission

In a certain scenario when we successfully submit,
then try to add another IC connection we will see the
old data.

This commit clears the old data one a successful submission.

Signed-off-by: Nikolas Komonen <[email protected]>

* codewhisperer: refactor sso connection function

We want to call the sso connection function which
connects to the enterprise sso then calls some additional
functionality (refresh and enable code suggestions), but
want to skip the prompt to input the sso data.

Solution:

Extract the sso connection code from getStartUrl()
so we can reuse it in our webview

Signed-off-by: Nikolas Komonen <[email protected]>

* greenBar: show credentials exist but none are selected

Problem:

In the scenario where a brand new user comes in
with credentials already in their credentials file
we are able to pick those up, but currently don't
indicate this to the user. They must know to open
the connection quick pick and then select the credential
we found.

Solution:
in the auth webview, if we detect credentials and none
are yet active/selected, we will show a status bar
message directing them to select a credentials from
the status bar.

Signed-off-by: Nikolas Komonen <[email protected]>

* greenBar: quick pick did not select

I chose the wrong prompter which only returned
the connection I chose, not actually use it.

This updates to the correct one.

Signed-off-by: Nikolas Komonen <[email protected]>

---------

Signed-off-by: Nikolas Komonen <[email protected]>

Author: nkomonen-amazon

package.json

@@ -220,6 +220,10 @@
                         "codeWhispererConnectionExpired": {
                             "type": "boolean",
                             "default": false
+                        },
+                        "manageConnections": {
+                            "type": "boolean",
+                            "default": false
                         }
                     },
                     "additionalProperties": false

src/auth/activation.ts

@@ -10,6 +10,10 @@ import { LoginManager } from './deprecated/loginManager'
 import { fromString } from './providers/credentials'
 import { registerCommandsWithVSCode } from '../shared/vscode/commands2'
 import { AuthCommandBackend, AuthCommandDeclarations } from './commands'
+import { dontShow } from '../shared/localizedText'
+import { DevSettings, PromptSettings } from '../shared/settings'
+import { waitUntil } from '../shared/utilities/timeoutUtils'
+import { CodeCatalystAuthenticationProvider } from '../codecatalyst/auth'
 
 export async function initialize(
     extensionContext: vscode.ExtensionContext,
@@ -32,4 +36,33 @@ export async function initialize(
         AuthCommandDeclarations.instance,
         new AuthCommandBackend(extensionContext)
     )
+
+    if (DevSettings.instance.isDevMode()) {
+        showManageConnectionsOnStartup()
+    }
+}
+
+/**
+ * Show the Manage Connections page when the extension starts up.
+ *
+ * Additionally, we provide an information message with a button for users to not show it
+ * again on next startup.
+ */
+async function showManageConnectionsOnStartup() {
+    await waitUntil(() => Promise.resolve(CodeCatalystAuthenticationProvider.instance), {
+        interval: 500,
+        timeout: 10000,
+    })
+    const settings = PromptSettings.instance
+
+    if (!(await settings.isPromptEnabled('manageConnections'))) {
+        return
+    }
+
+    AuthCommandDeclarations.instance.declared.showConnectionsPage.execute()
+    vscode.window.showInformationMessage("Don't show Add Connections page on startup?", dontShow).then(selection => {
+        if (selection === dontShow) {
+            settings.disablePrompt('manageConnections')
+        }
+    })
 }

src/auth/ui/vue/authForms/manageBuilderId.vue

@@ -15,6 +15,7 @@
 
                 <div class="form-section">
                     <button v-on:click="startSignIn()">Sign up or Sign in</button>
+                    <div class="small-description error-text">{{ error }}</div>
                 </div>
             </div>
 
@@ -66,6 +67,7 @@ export default defineComponent({
             isConnected: false,
             builderIdCode: '',
             name: this.state.name,
+            error: '' as string,
         }
     },
     async created() {
@@ -74,8 +76,12 @@ export default defineComponent({
     methods: {
         async startSignIn() {
             this.stage = 'WAITING_ON_USER'
-            await this.state.startBuilderIdSetup()
-            await this.update('signIn')
+            this.error = await this.state.startBuilderIdSetup()
+            if (this.error) {
+                this.stage = await this.state.stage()
+            } else {
+                await this.update('signIn')
+            }
         },
         async update(cause?: ConnectionUpdateCause) {
             this.stage = await this.state.stage()
@@ -100,11 +106,11 @@ abstract class BaseBuilderIdState implements AuthStatus {
 
     abstract get name(): string
     abstract get id(): AuthFormId
-    protected abstract _startBuilderIdSetup(): Promise<void>
+    protected abstract _startBuilderIdSetup(): Promise<string>
     abstract isAuthConnected(): Promise<boolean>
     abstract showNodeInView(): Promise<void>
 
-    async startBuilderIdSetup(): Promise<void> {
+    async startBuilderIdSetup(): Promise<string> {
         this._stage = 'WAITING_ON_USER'
         return this._startBuilderIdSetup()
     }
@@ -133,7 +139,7 @@ export class CodeWhispererBuilderIdState extends BaseBuilderIdState {
         return client.isCodeWhispererBuilderIdConnected()
     }
 
-    protected override _startBuilderIdSetup(): Promise<void> {
+    protected override _startBuilderIdSetup(): Promise<string> {
         return client.startCodeWhispererBuilderIdSetup()
     }
 
@@ -155,7 +161,7 @@ export class CodeCatalystBuilderIdState extends BaseBuilderIdState {
         return client.isCodeCatalystBuilderIdConnected()
     }
 
-    protected override _startBuilderIdSetup(): Promise<void> {
+    protected override _startBuilderIdSetup(): Promise<string> {
         return client.startCodeCatalystBuilderIdSetup()
     }
 

src/auth/ui/vue/authForms/manageExplorer.vue

@@ -1,5 +1,5 @@
 <template>
-    <div class="auth-form container-background border-common" id="identity-center-form">
+    <div class="auth-form container-background border-common" id="explorer-form">
         <div>
             <FormTitle :isConnected="isConnected">{{ connectionName }}</FormTitle>
             <div v-if="!isConnected">Successor to AWS Single Sign-on</div>
@@ -85,7 +85,7 @@ export default defineComponent({
 @import './sharedAuthForms.css';
 @import '../shared.css';
 
-#identity-center-form {
+#explorer-form {
     width: 280px;
     height: fit-content;
 }

src/auth/ui/vue/authForms/manageIdentityCenter.vue

@@ -1,40 +1,46 @@
 <template>
     <div class="auth-form container-background border-common" id="identity-center-form">
         <div v-if="checkIfConnected">
-            <FormTitle :isConnected="isConnected">IAM Identity Center</FormTitle>
+            <FormTitle :isConnected="isConnected"
+                >IAM Identity Center&nbsp;<a
+                    class="icon icon-lg icon-vscode-info"
+                    href="https://docs.aws.amazon.com/toolkit-for-vscode/latest/userguide/sso-credentials.html"
+                ></a
+            ></FormTitle>
             <div v-if="!isConnected">Successor to AWS Single Sign-on</div>
         </div>
         <div v-else>
             <!-- In this scenario we do not care about the active IC connection -->
-            <FormTitle :isConnected="false">IAM Identity Center</FormTitle>
+            <FormTitle :isConnected="false"
+                >IAM Identity Center&nbsp;<a
+                    class="icon icon-lg icon-vscode-info"
+                    href="https://docs.aws.amazon.com/toolkit-for-vscode/latest/userguide/sso-credentials.html"
+                ></a
+            ></FormTitle>
             <div>Successor to AWS Single Sign-on</div>
         </div>
 
         <div v-if="stage === 'START'">
-            <div class="form-section">
-                <a href="https://docs.aws.amazon.com/toolkit-for-vscode/latest/userguide/sso-credentials.html"
-                    >Learn more about IAM Identity Center.</a
-                >
-            </div>
-
             <div class="form-section">
                 <label class="input-title">Start URL</label>
-                <label class="small-description">The Start URL</label>
+                <label class="small-description">URL for your organization, provided by an admin or help desk.</label>
                 <input v-model="data.startUrl" type="text" :data-invalid="!!errors.startUrl" />
                 <div class="small-description error-text">{{ errors.startUrl }}</div>
             </div>
 
             <div class="form-section">
                 <label class="input-title">Region</label>
-                <label class="small-description">The Region</label>
+                <label class="small-description">AWS Region that hosts Identity directory</label>
 
-                <select v-on:click="getRegion()">
-                    <option v-if="!!data.region" :selected="true">{{ data.region }}</option>
-                </select>
+                <div style="display: flex; flex-direction: row; gap: 10px">
+                    <div v-on:click="getRegion()" class="icon icon-lg icon-vscode-edit edit-icon"></div>
+                    <div style="width: 100%">{{ data.region ? data.region : 'Not Selected' }}</div>
+                </div>
             </div>
 
             <div class="form-section">
                 <button v-on:click="signin()" :disabled="!canSubmit">Sign up or Sign in</button>
+                <div class="small-description error-text">{{ errors.submit }}</div>
             </div>
         </div>
 
@@ -85,6 +91,11 @@ export default defineComponent({
             // but not care about any current identity center auth connections
             // and if they are connected or not.
         },
+        /** If we don't care about the start url already existing locally */
+        allowExistingStartUrl: {
+            type: Boolean,
+            default: false,
+        },
     },
     data() {
         return {
@@ -94,6 +105,7 @@ export default defineComponent({
             },
             errors: {
                 startUrl: '',
+                submit: '',
             },
             canSubmit: false,
             isConnected: false,
@@ -115,8 +127,16 @@ export default defineComponent({
     methods: {
         async signin(): Promise<void> {
             this.stage = 'WAITING_ON_USER'
-            await this.state.startIdentityCenterSetup()
-            await this.update('signIn')
+            this.errors.submit = await this.state.startIdentityCenterSetup()
+
+            if (this.errors.submit) {
+                // We do not run update() when there is a submission error
+                // so we do not trigger a full re-render, instead
+                // only updating this form
+                this.stage = await this.state.stage()
+            } else {
+                await this.update('signIn')
+            }
         },
         async signout(): Promise<void> {
             await this.state.signout()
@@ -133,13 +153,14 @@ export default defineComponent({
             this.data.region = region.id
         },
         async updateData(key: IdentityCenterKey, value: string) {
+            this.errors.submit = '' // If previous submission error, we clear it when user starts typing
             this.state.setValue(key, value)
 
             if (key === 'startUrl') {
-                this.errors.startUrl = await this.state.getStartUrlError()
+                this.errors.startUrl = await this.state.getStartUrlError(this.allowExistingStartUrl)
             }
 
-            this.canSubmit = await this.state.canSubmit()
+            this.canSubmit = await this.state.canSubmit(this.allowExistingStartUrl)
         },
         showView() {
             this.state.showView()
@@ -174,7 +195,7 @@ abstract class BaseIdentityCenterState implements AuthStatus {
 
     abstract get id(): AuthFormId
     abstract get name(): string
-    protected abstract _startIdentityCenterSetup(): Promise<void>
+    protected abstract _startIdentityCenterSetup(): Promise<string>
     abstract isAuthConnected(): Promise<boolean>
     abstract showView(): Promise<void>
     abstract signout(): Promise<void>
@@ -187,9 +208,24 @@ abstract class BaseIdentityCenterState implements AuthStatus {
         return this._data[key]
     }
 
-    async startIdentityCenterSetup(): Promise<void> {
+    /**
+     * Runs the Identity Center setup.
+     *
+     * @returns An error message if it exist, otherwise empty string if no error.
+     */
+    async startIdentityCenterSetup(): Promise<string> {
         this._stage = 'WAITING_ON_USER'
-        return this._startIdentityCenterSetup()
+        const error = await this._startIdentityCenterSetup()
+
+        // Successful submission, so we can clear
+        // old data.
+        if (!error) {
+            this._data = {
+                startUrl: '',
+                region: '',
+            }
+        }
+        return error
     }
 
     async stage(): Promise<IdentityCenterStage> {
@@ -202,14 +238,14 @@ abstract class BaseIdentityCenterState implements AuthStatus {
         return client.getIdentityCenterRegion()
     }
 
-    async getStartUrlError() {
-        const error = await client.getSsoUrlError(this._data.startUrl)
+    async getStartUrlError(canUrlExist: boolean) {
+        const error = await client.getSsoUrlError(this._data.startUrl, canUrlExist)
         return error ?? ''
     }
 
-    async canSubmit() {
+    async canSubmit(canUrlExist: boolean) {
         const allFieldsFilled = Object.values(this._data).every(val => !!val)
-        const hasErrors = await this.getStartUrlError()
+        const hasErrors = await this.getStartUrlError(canUrlExist)
         return allFieldsFilled && !hasErrors
     }
 
@@ -227,7 +263,7 @@ export class CodeWhispererIdentityCenterState extends BaseIdentityCenterState {
         return 'CodeWhisperer'
     }
 
-    protected override async _startIdentityCenterSetup(): Promise<void> {
+    protected override async _startIdentityCenterSetup(): Promise<string> {
         const data = await this.getSubmittableDataOrThrow()
         return client.startCWIdentityCenterSetup(data.startUrl, data.region)
     }
@@ -268,7 +304,7 @@ export class ExplorerIdentityCenterState extends BaseIdentityCenterState {
         return 'START'
     }
 
-    protected override async _startIdentityCenterSetup(): Promise<void> {
+    protected override async _startIdentityCenterSetup(): Promise<string> {
         const data = await this.getSubmittableDataOrThrow()
         return client.createIdentityCenterConnection(data.startUrl, data.region)
     }
@@ -291,7 +327,7 @@ export class ExplorerIdentityCenterState extends BaseIdentityCenterState {
 @import '../shared.css';
 
 #identity-center-form {
-    width: 280px;
+    width: 300px;
     height: fit-content;
 }
 </style>