finos
diff --git a/‎config.schema.json
Lines changed: 21 additions & 0 deletions b/‎config.schema.json
Lines changed: 21 additions & 0 deletions
diff --git a/‎cypress/e2e/autoApproved.cy.js
Lines changed: 3 additions & 1 deletion b/‎cypress/e2e/autoApproved.cy.js
Lines changed: 3 additions & 1 deletion
diff --git a/‎cypress/e2e/login.cy.js
Lines changed: 12 additions & 0 deletions b/‎cypress/e2e/login.cy.js
Lines changed: 12 additions & 0 deletions
diff --git a/‎cypress/e2e/repo.cy.js
Lines changed: 4 additions & 2 deletions b/‎cypress/e2e/repo.cy.js
Lines changed: 4 additions & 2 deletions
diff --git a/‎cypress/support/commands.js
Lines changed: 5 additions & 1 deletion b/‎cypress/support/commands.js
Lines changed: 5 additions & 1 deletion
diff --git a/‎package-lock.json
Lines changed: 2 additions & 2 deletions b/‎package-lock.json
Lines changed: 2 additions & 2 deletions
diff --git a/‎package.json
Lines changed: 1 addition & 1 deletion b/‎package.json
Lines changed: 1 addition & 1 deletion
diff --git a/‎proxy.config.json
Lines changed: 15 additions & 0 deletions b/‎proxy.config.json
Lines changed: 15 additions & 0 deletions
diff --git a/‎src/config/index.ts
Lines changed: 8 additions & 0 deletions b/‎src/config/index.ts
Lines changed: 8 additions & 0 deletions
diff --git a/‎src/index.jsx
Lines changed: 15 additions & 8 deletions b/‎src/index.jsx
Lines changed: 15 additions & 8 deletions
@@ -124,6 +124,19 @@
           "description": "Configuration source"
         }
       }
+    },
+    "uiRouteAuth": {
+      "description": "UI routes that require authentication (logged in or admin)",
+      "type": "object",
+      "properties": {
+        "enabled": { "type": "boolean" },
+        "rules": {
+          "type": "array",
+          "items": {
+            "$ref": "#/definitions/routeAuthRule"
+          }
+        }
+      }
     }
   },
   "definitions": {
@@ -155,6 +168,14 @@
         "options": { "type": "object" }
       },
       "required": ["type", "enabled"]
+    },
+    "routeAuthRule": {
+      "type": "object",
+      "properties": {
+        "pattern": { "type": "string" },
+        "adminOnly": { "type": "boolean" },
+        "loginRequired": { "type": "boolean" }
+      }
     }
   },
   "additionalProperties": false
 
@@ -2,6 +2,8 @@ import moment from 'moment';
 
 describe('Auto-Approved Push Test', () => {
   beforeEach(() => {
+    cy.login('admin', 'admin');
+
     cy.intercept('GET', '/api/v1/push/123', {
       statusCode: 200,
       body: {
@@ -45,7 +47,7 @@ describe('Auto-Approved Push Test', () => {
   });
 
   it('should display auto-approved message and verify tooltip contains the expected timestamp', () => {
-    cy.visit('/admin/push/123');
+    cy.visit('/dashboard/push/123');
 
     cy.wait('@getPush');
 
 
@@ -19,6 +19,18 @@ describe('Login page', () => {
     cy.get('[data-test="login"]').should('exist');
   });
 
+  it('should redirect to repo list on valid login', () => {
+    cy.intercept('GET', '**/api/auth/me').as('getUser');
+
+    cy.get('[data-test="username"]').type('admin');
+    cy.get('[data-test="password"]').type('admin');
+    cy.get('[data-test="login"]').click();
+
+    cy.wait('@getUser');
+
+    cy.url().should('include', '/dashboard/repo');
+  })
+
   describe('OIDC login button', () => {
     it('should exist', () => {
       cy.get('[data-test="oidc-login"]').should('exist');
 
@@ -1,6 +1,8 @@
 describe('Repo', () => {
   beforeEach(() => {
-    cy.visit('/admin/repo');
+    cy.login('admin', 'admin');
+
+    cy.visit('/dashboard/repo');
 
     // prevent failures on 404 request and uncaught promises
     cy.on('uncaught:exception', () => false);
@@ -18,7 +20,7 @@ describe('Repo', () => {
 
       cy
         // find the entry for finos/test-repo
-        .get('a[href="/admin/repo/test-repo"]')
+        .get('a[href="/dashboard/repo/test-repo"]')
         // take it's parent row
         .closest('tr')
         // find the nearby span containing Code we can click to open the tooltip
 
@@ -29,9 +29,13 @@
 Cypress.Commands.add('login', (username, password) => {
   cy.session([username, password], () => {
     cy.visit('/login');
+    cy.intercept('GET', '**/api/auth/me').as('getUser');
+
     cy.get('[data-test=username]').type(username);
     cy.get('[data-test=password]').type(password);
     cy.get('[data-test=login]').click();
-    cy.url().should('contain', '/admin/profile');
+
+    cy.wait('@getUser');
+    cy.url().should('include', '/dashboard/repo');
   });
 });
@@ -1,6 +1,6 @@
 {
   "name": "@finos/git-proxy",
-  "version": "1.14.0",
+  "version": "1.15.0",
   "description": "Deploy custom push protections and policies on top of Git.",
   "scripts": {
     "cli": "node ./packages/git-proxy-cli/index.js",
 
@@ -139,5 +139,20 @@
     "enabled": false,
     "key": "certs/key.pem",
     "cert": "certs/cert.pem"
+  },
+  "uiRouteAuth": {
+    "enabled": false,
+    "rules": [
+      {
+        "pattern": "/dashboard/*",
+        "adminOnly": false,
+        "loginRequired": true
+      },
+      {
+        "pattern": "/admin/*",
+        "adminOnly": true,
+        "loginRequired": true
+      }
+    ]
   }
 }
@@ -38,6 +38,7 @@ let _rateLimit: RateLimitConfig = defaultSettings.rateLimit;
 let _tlsEnabled = defaultSettings.tls.enabled;
 let _tlsKeyPemPath = defaultSettings.tls.key;
 let _tlsCertPemPath = defaultSettings.tls.cert;
+let _uiRouteAuth: Record<string, unknown> = defaultSettings.uiRouteAuth;
 
 // Initialize configuration with defaults and user settings
 let _config = { ...defaultSettings, ...(_userSettings || {}) } as Configuration;
@@ -229,6 +230,13 @@ export const getDomains = () => {
   return _domains;
 };
 
+export const getUIRouteAuth = () => {
+  if (_userSettings && _userSettings.uiRouteAuth) {
+    _uiRouteAuth = _userSettings.uiRouteAuth;
+  }
+  return _uiRouteAuth;
+};
+
 export const getRateLimit = () => {
   if (_userSettings && _userSettings.rateLimit) {
     _rateLimit = _userSettings.rateLimit;
 
@@ -2,21 +2,28 @@ import React from 'react';
 import ReactDOM from 'react-dom';
 import { createBrowserHistory } from 'history';
 import { BrowserRouter as Router, Route, Routes, Navigate } from 'react-router-dom';
+import { AuthProvider } from './ui/auth/AuthProvider';
 
 // core components
-import Admin from './ui/layouts/Admin';
+import Dashboard from './ui/layouts/Dashboard';
 import Login from './ui/views/Login/Login';
 import './ui/assets/css/material-dashboard-react.css';
+import NotAuthorized from './ui/views/Extras/NotAuthorized';
+import NotFound from './ui/views/Extras/NotFound';
 
 const hist = createBrowserHistory();
 
 ReactDOM.render(
-  <Router history={hist}>
-    <Routes>
-      <Route exact path='/admin/*' element={<Admin />} />
-      <Route exact path='/login' element={<Login />} />
-      <Route exact path='/' element={<Navigate from='/' to='/admin/repo' />} />
-    </Routes>
-  </Router>,
+  <AuthProvider>
+    <Router history={hist}>
+      <Routes>
+        <Route exact path='/dashboard/*' element={<Dashboard />} />
+        <Route exact path='/login' element={<Login />} />
+        <Route exact path='/not-authorized' element={<NotAuthorized />} />
+        <Route exact path='/' element={<Navigate from='/' to='/dashboard/repo' />} />
+        <Route path='*' element={<NotFound />} />
+      </Routes>
+    </Router>
+  </AuthProvider>,
   document.getElementById('root'),
 );
Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,6 @@`
`1`	`1`	`{`
`2`	`2`	`"name": "@finos/git-proxy",`
`3`		`- "version": "1.14.0",`
	`3`	`+ "version": "1.15.0",`
`4`	`4`	`"description": "Deploy custom push protections and policies on top of Git.",`
`5`	`5`	`"scripts": {`
`6`	`6`	`"cli": "node ./packages/git-proxy-cli/index.js",`