add global permission form (#4615)

Author: pa-lem

frontend/app/src/components/form/object-form.tsx

@@ -6,6 +6,7 @@ import {
   ACCOUNT_GROUP_OBJECT,
   ACCOUNT_OBJECT,
   ACCOUNT_ROLE_OBJECT,
+  GLOBAL_PERMISSION_OBJECT,
   NUMBER_POOL_OBJECT,
   OBJECT_PERMISSION_OBJECT,
   READONLY_REPOSITORY_KIND,
@@ -18,6 +19,7 @@ import { NumberPoolForm } from "@/screens/resource-manager/number-pool-form";
 import { AccountForm } from "@/screens/role-management/account-form";
 import { AccountGroupForm } from "@/screens/role-management/account-group-form";
 import { AccountRoleForm } from "@/screens/role-management/account-role-form";
+import { GlobalPermissionForm } from "@/screens/role-management/global-permissions-form";
 import { ObjectPermissionForm } from "@/screens/role-management/object-permissions-form";
 import { AttributeType, RelationshipType } from "@/utils/getObjectItemDisplayValue";
 import { Suspense, lazy } from "react";
@@ -76,6 +78,10 @@ const ObjectForm = ({ kind, currentProfiles, ...props }: ObjectFormProps) => {
     return <AccountRoleForm {...props} />;
   }
 
+  if (kind === GLOBAL_PERMISSION_OBJECT) {
+    return <GlobalPermissionForm {...props} />;
+  }
+
   if (kind === OBJECT_PERMISSION_OBJECT) {
     return <ObjectPermissionForm {...props} />;
   }

frontend/app/src/screens/role-management/global-permissions-form.tsx

@@ -0,0 +1,178 @@
+import { Button } from "@/components/buttons/button-primitive";
+import { NodeFormProps } from "@/components/form/node-form";
+import { FormFieldValue } from "@/components/form/type";
+import { getCurrentFieldValue } from "@/components/form/utils/getFieldDefaultValue";
+import { getCreateMutationFromFormDataOnly } from "@/components/form/utils/mutations/getCreateMutationFromFormData";
+import { ALERT_TYPES, Alert } from "@/components/ui/alert";
+import { Form, FormSubmit } from "@/components/ui/form";
+import { ACCOUNT_ROLE_OBJECT, GLOBAL_PERMISSION_OBJECT } from "@/config/constants";
+import graphqlClient from "@/graphql/graphqlClientApollo";
+import { createObject } from "@/graphql/mutations/objects/createObject";
+import { updateObjectWithId } from "@/graphql/mutations/objects/updateObjectWithId";
+import { currentBranchAtom } from "@/state/atoms/branches.atom";
+import { datetimeAtom } from "@/state/atoms/time.atom";
+import { AttributeType, RelationshipType } from "@/utils/getObjectItemDisplayValue";
+import { stringifyWithoutQuotes } from "@/utils/string";
+import { gql } from "@apollo/client";
+import { useAtomValue } from "jotai";
+import { FieldValues, useForm } from "react-hook-form";
+import { toast } from "react-toastify";
+
+import DropdownField from "@/components/form/fields/dropdown.field";
+import InputField from "@/components/form/fields/input.field";
+import RelationshipField from "@/components/form/fields/relationship.field";
+import { getRelationshipDefaultValue } from "@/components/form/utils/getRelationshipDefaultValue";
+import { isRequired } from "@/components/form/utils/validation";
+import { useSchema } from "@/hooks/useSchema";
+
+interface NumberPoolFormProps extends Pick<NodeFormProps, "onSuccess"> {
+  currentObject?: Record<string, AttributeType | RelationshipType>;
+  onCancel?: () => void;
+  onUpdateComplete?: () => void;
+}
+
+export const GlobalPermissionForm = ({
+  currentObject,
+  onSuccess,
+  onCancel,
+  onUpdateComplete,
+}: NumberPoolFormProps) => {
+  const branch = useAtomValue(currentBranchAtom);
+  const date = useAtomValue(datetimeAtom);
+  const { schema } = useSchema(GLOBAL_PERMISSION_OBJECT);
+
+  const roles = getRelationshipDefaultValue({
+    relationshipData: currentObject?.roles?.value,
+  });
+
+  const defaultValues = {
+    name: getCurrentFieldValue("name", currentObject),
+    action: getCurrentFieldValue("action", currentObject),
+    decision: getCurrentFieldValue("decision", currentObject),
+    roles,
+  };
+
+  const form = useForm<FieldValues>({
+    defaultValues,
+  });
+
+  const actionOptions = schema?.attributes
+    ?.find((attribute) => {
+      return attribute.name === "action";
+    })
+    ?.choices?.map((choice) => {
+      return {
+        ...choice,
+        value: choice.name,
+      };
+    });
+
+  const decisionOptions = [
+    {
+      value: "allow",
+      label: "Allow",
+    },
+    {
+      value: "deny",
+      label: "Deny",
+    },
+  ];
+
+  async function handleSubmit(data: Record<string, FormFieldValue>) {
+    try {
+      const newObject = getCreateMutationFromFormDataOnly(data, currentObject);
+
+      if (!Object.keys(newObject).length) {
+        return;
+      }
+
+      const mutationString = currentObject
+        ? updateObjectWithId({
+            kind: GLOBAL_PERMISSION_OBJECT,
+            data: stringifyWithoutQuotes({
+              id: currentObject.id,
+              ...newObject,
+            }),
+          })
+        : createObject({
+            kind: GLOBAL_PERMISSION_OBJECT,
+            data: stringifyWithoutQuotes({
+              ...newObject,
+            }),
+          });
+
+      const mutation = gql`
+        ${mutationString}
+      `;
+
+      const result = await graphqlClient.mutate({
+        mutation,
+        context: {
+          branch: branch?.name,
+          date,
+        },
+      });
+
+      toast(<Alert type={ALERT_TYPES.SUCCESS} message={"Object permission created"} />, {
+        toastId: "alert-success-object-permission-created",
+      });
+
+      if (onSuccess) await onSuccess(result?.data?.[`${GLOBAL_PERMISSION_OBJECT}Create`]);
+      if (onUpdateComplete) await onUpdateComplete();
+    } catch (error: unknown) {
+      console.error("An error occurred while creating the object: ", error);
+    }
+  }
+
+  return (
+    <div className={"bg-custom-white flex flex-col flex-1 overflow-auto p-4"}>
+      <Form form={form} onSubmit={handleSubmit}>
+        <InputField
+          name="name"
+          label="Name"
+          rules={{
+            required: true,
+            validate: {
+              required: isRequired,
+            },
+          }}
+        />
+
+        <DropdownField
+          name="action"
+          label="Action"
+          items={actionOptions}
+          rules={{ required: true, validate: { required: isRequired } }}
+        />
+
+        <DropdownField
+          name="decision"
+          label="Decision"
+          items={decisionOptions}
+          rules={{ required: true, validate: { required: isRequired } }}
+        />
+
+        <RelationshipField
+          name="roles"
+          label="Roles"
+          relationship={{
+            name: "roles",
+            peer: ACCOUNT_ROLE_OBJECT,
+            cardinality: "many",
+          }}
+          options={roles.value}
+        />
+
+        <div className="text-right">
+          {onCancel && (
+            <Button variant="outline" className="mr-2" onClick={onCancel}>
+              Cancel
+            </Button>
+          )}
+
+          <FormSubmit>{currentObject ? "Update" : "Create"}</FormSubmit>
+        </div>
+      </Form>
+    </div>
+  );
+};

frontend/app/src/screens/role-management/global-permissions.tsx

@@ -1,16 +1,36 @@
+import { Button } from "@/components/buttons/button-primitive";
 import { Pill } from "@/components/display/pill";
-import { Table } from "@/components/table/table";
+import SlideOver, { SlideOverTitle } from "@/components/display/slide-over";
+import ObjectForm from "@/components/form/object-form";
+import ModalDeleteObject from "@/components/modals/modal-delete-object";
+import { Table, tRowValue } from "@/components/table/table";
 import { BadgeCopy } from "@/components/ui/badge-copy";
 import { Pagination } from "@/components/ui/pagination";
 import { GLOBAL_PERMISSION_OBJECT } from "@/config/constants";
+import graphqlClient from "@/graphql/graphqlClientApollo";
 import { GET_ROLE_MANAGEMENT_GLOBAL_PERMISSIONS } from "@/graphql/queries/role-management/getGlobalPermissions";
+import { useSchema } from "@/hooks/useSchema";
+import { schemaKindNameState } from "@/state/atoms/schemaKindName.atom";
 import { useQuery } from "@apollo/client";
 import { Icon } from "@iconify-icon/react";
+import { useAtomValue } from "jotai";
+import { useState } from "react";
 import ErrorScreen from "../errors/error-screen";
 import LoadingScreen from "../loading-screen/loading-screen";
 
 function GlobalPermissions() {
-  const { loading, data, error } = useQuery(GET_ROLE_MANAGEMENT_GLOBAL_PERMISSIONS);
+  const schemaKindName = useAtomValue(schemaKindNameState);
+  const { schema } = useSchema(GLOBAL_PERMISSION_OBJECT);
+  const { loading, data, error, refetch } = useQuery(GET_ROLE_MANAGEMENT_GLOBAL_PERMISSIONS);
+  const [rowToDelete, setRowToDelete] = useState<Record<
+    string,
+    string | number | tRowValue
+  > | null>(null);
+  const [rowToUpdate, setRowToUpdate] = useState<Record<
+    string,
+    string | number | tRowValue
+  > | null>(null);
+  const [showDrawer, setShowDrawer] = useState(false);
 
   const columns = [
     {
@@ -36,6 +56,7 @@ function GlobalPermissions() {
     data[GLOBAL_PERMISSION_OBJECT]?.edges.map((edge) => {
       return {
         values: {
+          id: { value: edge?.node?.id },
           display_label: { value: edge?.node?.display_label },
           name: {
             display: (
@@ -55,6 +76,11 @@ function GlobalPermissions() {
       };
     });
 
+  const globalRefetch = () => {
+    graphqlClient.refetchQueries({ include: ["GET_ROLE_MANAGEMENT_COUNTS"] });
+    refetch();
+  };
+
   if (error) return <ErrorScreen message="An error occured while retrieving the accounts." />;
 
   if (loading) return <LoadingScreen message="Retrieving accounts..." />;
@@ -64,12 +90,51 @@ function GlobalPermissions() {
       <div>
         <div className="flex items-center justify-between p-2">
           <div>{/* Search input + filter button */}</div>
+
+          <div>
+            <Button variant={"primary"} onClick={() => setShowDrawer(true)} disabled={!schema}>
+              Create {schema?.label}
+            </Button>
+          </div>
         </div>
 
         <Table columns={columns} rows={rows ?? []} className="border-0" />
 
         <Pagination count={data && data[GLOBAL_PERMISSION_OBJECT]?.count} />
       </div>
+
+      <ModalDeleteObject
+        label={schemaKindName[GLOBAL_PERMISSION_OBJECT]}
+        rowToDelete={rowToDelete}
+        open={!!rowToDelete}
+        close={() => setRowToDelete(null)}
+        onDelete={() => globalRefetch()}
+      />
+
+      {schema && (
+        <SlideOver
+          title={
+            <SlideOverTitle
+              schema={schema}
+              currentObjectLabel="New"
+              title={`Create ${schema.label}`}
+              subtitle={schema.description}
+            />
+          }
+          open={showDrawer}
+          setOpen={(value) => setShowDrawer(value)}
+        >
+          <ObjectForm
+            kind={GLOBAL_PERMISSION_OBJECT}
+            currentObject={rowToUpdate}
+            onCancel={() => setShowDrawer(false)}
+            onSuccess={() => {
+              setShowDrawer(false);
+              globalRefetch();
+            }}
+          />
+        </SlideOver>
+      )}
     </>
   );
 }