feat(login): use new IDP templates (#5315)

The login uses the new template based IDPs with backwards compatibility for old IDPs
2025-12-10 05:22:39 +00:00 · 2023-02-28 21:20:58 +01:00
parent abacb6c5aa
commit 48f9815b7c
62 changed files with 1254 additions and 2165 deletions
--- a/internal/api/ui/login/static/i18n/de.yaml
+++ b/internal/api/ui/login/static/i18n/de.yaml
@@ -370,6 +370,8 @@ Errors:
      ExternalUserIDEmpty: Externe User ID  ist leer
      UserDisplayNameEmpty: Benutzer Anzeige Name ist leer
      NoExternalUserData: Keine externe User Daten erhalten
+      CreationNotAllowed: Erstellen eines neuen User ist auf diesem Provider nicht erlaubt
+      LinkingNotAllowed: Linken eines Users ist auf diesem Provider nicht erlaubt
    GrantRequired: Der Login an diese Applikation ist nicht möglich. Der Benutzer benötigt mindestens eine Berechtigung an der Applikation. Bitte melde dich bei deinem Administrator.
    ProjectRequired: Der Login an diese Applikation ist nicht möglich. Die Organisation des Benutzer benötigt Berechtigung auf das Projekt. Bitte melde dich bei deinem Administrator.
  IdentityProvider:
--- a/internal/api/ui/login/static/i18n/en.yaml
+++ b/internal/api/ui/login/static/i18n/en.yaml
@@ -370,6 +370,8 @@ Errors:
      ExternalUserIDEmpty: External User ID is empty
      UserDisplayNameEmpty: User Display Name is empty
      NoExternalUserData: No external User Data received
+      CreationNotAllowed: Creation of a new user is not allowed on this Provider
+      LinkingNotAllowed: Linking of a user is not allowed on this Provider
    GrantRequired: Login not possible. The user is required to have at least one grant on the application. Please contact your administrator.
    ProjectRequired: Login not possible. The organisation of the user must be granted to the project. Please contact your administrator.
  IdentityProvider:
--- a/internal/api/ui/login/static/i18n/fr.yaml
+++ b/internal/api/ui/login/static/i18n/fr.yaml
@@ -370,6 +370,8 @@ Errors:
      ExternalUserIDEmpty: L'ID de l'utilisateur externe est vide
      UserDisplayNameEmpty: Le nom d'affichage de l'utilisateur est vide
      NoExternalUserData: Aucune donnée d'utilisateur externe reçue
+      CreationNotAllowed : La création d'un nouvel utilisateur n'est pas autorisée sur ce fournisseur.
+      LinkingNotAllowed : La création d'un lien vers un utilisateur n'est pas autorisée pour ce fournisseur.
    GrantRequired: Connexion impossible. L'utilisateur doit avoir au moins une subvention sur l'application. Veuillez contacter votre administrateur.
    ProjectRequired: Connexion impossible. L'organisation de l'utilisateur doit être accordée au projet. Veuillez contacter votre administrateur.
  IdentityProvider:
--- a/internal/api/ui/login/static/i18n/it.yaml
+++ b/internal/api/ui/login/static/i18n/it.yaml
@@ -370,6 +370,8 @@ Errors:
      ExternalUserIDEmpty: L'ID utente esterno è vuoto
      UserDisplayNameEmpty: Il nome visualizzato dell'utente è vuoto
      NoExternalUserData: Nessun dato utente esterno ricevuto
+      CreationNotAllowed: La creazione di un nuovo utente non è consentita su questo provider.
+      LinkingNotAllowed: Il collegamento di un utente non è consentito su questo provider.
    GrantRequired: Accesso non possibile. L'utente deve avere almeno una sovvenzione sull'applicazione. Contatta il tuo amministratore.
    ProjectRequired: Accesso non possibile. L'organizzazione dell'utente deve essere concessa al progetto. Contatta il tuo amministratore.
  IdentityProvider:
--- a/internal/api/ui/login/static/i18n/pl.yaml
+++ b/internal/api/ui/login/static/i18n/pl.yaml
@@ -370,6 +370,8 @@ Errors:
      ExternalUserIDEmpty: Identyfikator użytkownika zewnętrznego jest pusty
      UserDisplayNameEmpty: Nazwa wyświetlana użytkownika jest pusta
      NoExternalUserData: Nie otrzymano danych użytkownika zewnętrznego
+      CreationNotAllowed: Tworzenie nowego użytkownika nie jest dozwolone w tym Providencie
+      LinkingNotAllowed: Linkowanie użytkownika nie jest dozwolone na tym Providencie
    GrantRequired: Logowanie nie jest możliwe. Użytkownik musi posiadać przynajmniej jedno uprawnienie w aplikacji. Skontaktuj się z administratorem.
    ProjectRequired: Logowanie nie jest możliwe. Organizacja użytkownika musi zostać udzielona projektowi. Skontaktuj się z administratorem.
  IdentityProvider:
--- a/internal/api/ui/login/static/i18n/zh.yaml
+++ b/internal/api/ui/login/static/i18n/zh.yaml
@@ -370,6 +370,8 @@ Errors:
      ExternalUserIDEmpty: 外部用户 ID 为空
      UserDisplayNameEmpty: 用户显示名称为空
      NoExternalUserData: 未收到外部用户数据
+      CreationNotAllowed: 不允许在该供应商上创建新用户
+      LinkingNotAllowed: 在此提供者上不允许链接一个用户
    GrantRequired: 无法登录，用户需要在应用程序上拥有至少一项授权，请联系您的管理员。
    ProjectRequired: 无法登录，用户的组织必须授予项目，请联系您的管理员。
  IdentityProvider:
--- a/internal/api/ui/login/static/templates/external_not_found_option.html
+++ b/internal/api/ui/login/static/templates/external_not_found_option.html
@@ -118,13 +118,17 @@
            <i class="lgn-icon-arrow-left-solid"></i>
        </button>

+        {{ if .IsLinkingAllowed }}
        <button type="submit" formaction="{{ externalNotFoundOptionUrl "linkbutton"}}" class="lgn-raised-button lgn-primary" name="linkbutton" value="true">
            {{t "ExternalNotFound.LinkButtonText"}}
        </button>
-            <span class="fill-space"></span>
+        {{ end }}
+        <span class="fill-space"></span>
+        {{ if .IsCreationAllowed }}
        <button type="submit" formaction="{{ externalNotFoundOptionUrl "autoregisterbutton"}}" class="lgn-raised-button lgn-primary" name="autoregisterbutton" value="true">
            {{t "ExternalNotFound.AutoRegisterButtonText"}}
        </button>
+        {{ end }}
    </div>
 </form>

--- a/internal/api/ui/login/static/templates/external_register_overview.html
+++ b/internal/api/ui/login/static/templates/external_register_overview.html
@@ -1,128 +0,0 @@
-{{template "main-top" .}}
-
-<div class="lgn-head">
-    <h1>{{t "ExternalRegistrationUserOverview.Title"}}</h1>
-    <p>{{t "ExternalRegistrationUserOverview.Description"}}</p>
-</div>
-
-
-<form action="{{ externalRegistrationUrl }}" method="POST">
-
-    {{ .CSRF }}
-
-    <input type="hidden" name="authRequestID" value="{{ .AuthReqID }}" />
-    <input type="hidden" id="external-idp-config-id" name="external-idp-config-id" value="{{ .ExternalIDPID }}" />
-    <input type="hidden" id="external-idp-ext-user-id" name="external-idp-ext-user-id" value="{{ .ExternalIDPUserID }}" />
-    <input type="hidden" id="external-idp-display-name" name="external-idp-display-name" value="{{ .ExternalIDPUserDisplayName }}" />
-    <input type="hidden" id="external-email" name="external-email" value="{{ .ExternalEmail }}" />
-    <input type="hidden" id="external-email-verified" name="external-email-verified" value="{{ .ExternalEmailVerified }}" />
-    <input type="hidden" id="external-phone" name="external-phone" value="{{ .ExternalPhone }}" />
-    <input type="hidden" id="external-phone-verified" name="external-phone-verified" value="{{ .ExternalPhoneVerified }}" />
-
-    <div class="lgn-register">
-
-        <div class="double-col">
-            <div class="lgn-field">
-                <label class="lgn-label" for="firstname">{{t "ExternalRegistrationUserOverview.FirstnameLabel"}}</label>
-                <input class="lgn-input" type="text" id="firstname" name="firstname" autocomplete="given-name"
-                       value="{{ .Firstname }}" autofocus required>
-            </div>
-            <div class="lgn-field">
-                <label class="lgn-label" for="lastname">{{t "ExternalRegistrationUserOverview.LastnameLabel"}}</label>
-                <input class="lgn-input" type="text" id="lastname" name="lastname" autocomplete="family-name"
-                       value="{{ .Lastname }}" required>
-            </div>
-        </div>
-
-        <div class="lgn-field double">
-            <label class="lgn-label" for="username">{{t "ExternalRegistrationUserOverview.UsernameLabel"}}</label>
-            <div class="lgn-suffix-wrapper">
-                <input class="lgn-input lgn-suffix-input" type="text" id="username" name="username"
-                       value="{{ .Username }}" required>
-                {{if .ShowUsernameSuffix}}
-                <span id="default-login-suffix" lgnsuffix class="loginname-suffix">@{{.PrimaryDomain}}</span>
-                {{end}}
-            </div>
-        </div>
-
-        <div class="lgn-field double">
-            <label class="lgn-label" for="email">{{t "ExternalRegistrationUserOverview.EmailLabel"}}</label>
-            <input class="lgn-input" type="email" id="email" name="email" autocomplete="email" value="{{ .Email }}" required>
-        </div>
-
-        <div class="lgn-field double">
-            <label class="lgn-label" for="phone">{{t "ExternalRegistrationUserOverview.PhoneLabel"}}</label>
-            <input class="lgn-input" type="text" id="phone" name="phone" autocomplete="tel" value="{{ .Phone }}">
-        </div>
-
-        <div class="double-col">
-            <div class="lgn-field">
-                <label class="lgn-label" for="languages">{{t "ExternalRegistrationUserOverview.LanguageLabel"}}</label>
-                <select id="languages" name="language">
-                    <option value=""></option>
-                    <option value="de" id="de" {{if (selectedLanguage "de")}} selected {{end}}>{{t "ExternalRegistrationUserOverview.German"}}
-                    </option>
-                    <option value="en" id="en" {{if (selectedLanguage "en")}} selected {{end}}>{{t "ExternalRegistrationUserOverview.English"}}
-                    </option>
-                    <option value="it" id="it" {{if (selectedLanguage "it")}} selected {{end}}>{{t "ExternalRegistrationUserOverview.Italian"}}
-                    </option>
-                    <option value="fr" id="fr" {{if (selectedLanguage "fr")}} selected {{end}}>{{t "ExternalRegistrationUserOverview.French"}}
-                    </option>
-                    <option value="zh" id="zh" {{if (selectedLanguage "zh")}} selected {{end}}>{{t "ExternalRegistrationUserOverview.Chinese"}}
-                    </option>
-                    <option value="pl" id="pl" {{if (selectedLanguage "pl")}} selected {{end}}>{{t "ExternalRegistrationUserOverview.Polish"}}
-                    </option>
-                </select>
-            </div>
-        </div>
-
-        {{ if or .TOSLink .PrivacyLink }}
-        <div class="lgn-field">
-            <label class="lgn-label">{{t "ExternalRegistrationUserOverview.TosAndPrivacyLabel"}}</label>
-            {{ if .TOSLink }}
-            <div class="lgn-checkbox">
-                <input type="checkbox" id="register-term-confirmation"
-                       name="register-term-confirmation" required>
-                <label for="register-term-confirmation">
-                    {{t "ExternalRegistrationUserOverview.TosConfirm"}}
-                    <a class="tos-link" target="_blank" href="{{ .TOSLink }}" rel="noopener noreferrer">
-                        {{t "ExternalRegistrationUserOverview.TosLinkText"}}
-                    </a>
-                </label>
-            </div>
-            {{end}}
-            {{ if and .TOSLink .PrivacyLink }}
-            <br />
-            {{end}}
-            {{ if .PrivacyLink }}
-            <div class="lgn-checkbox">
-                <input type="checkbox" id="register-term-confirmation-privacy"
-                       name="register-term-confirmation-privacy" required>
-                <label for="register-term-confirmation-privacy">
-                    {{t "ExternalRegistrationUserOverview.PrivacyConfirm"}}
-                    <a class="tos-link" target="_blank" href="{{ .PrivacyLink}}" rel="noopener noreferrer">
-                        {{t "ExternalRegistrationUserOverview.PrivacyLinkText"}}
-                    </a>
-                </label>
-            </div>
-            {{end}}
-        </div>
-        {{ end }}
-    </div>
-
-    {{template "error-message" .}}
-
-    <div class="lgn-actions">
-        <a class="lgn-stroked-button" href="{{ registerOptionUrl }}">
-            {{t "ExternalRegistrationUserOverview.BackButtonText"}}
-        </a>
-        <span class="fill-space"></span>
-        <button class="lgn-raised-button lgn-primary" id="submit-button" type="submit">{{t "ExternalRegistrationUserOverview.NextButtonText"}}</button>
-    </div>
-</form>
-
-<script src="{{ resourceUrl "scripts/input_suffix_offset.js" }}"></script>
-<script src="{{ resourceUrl "scripts/form_submit.js" }}"></script>
-<script src="{{ resourceUrl "scripts/default_form_validation.js" }}"></script>
-
-{{template "main-bottom" .}}
--- a/internal/api/ui/login/static/templates/login.html
+++ b/internal/api/ui/login/static/templates/login.html
@@ -47,7 +47,7 @@
        {{ $reqid := .AuthReqID}}
        {{range $provider := .IDPProviders}}
        <a href="{{ externalIDPAuthURL $reqid $provider.IDPConfigID}}"
-            class="lgn-idp {{idpProviderClass $provider.StylingType}}">
+            class="lgn-idp {{idpProviderClass $provider.IDPType}}">
            <span class="logo"></span>
            <span class="provider-name">{{$provider.Name}}</span>
        </a>
--- a/internal/api/ui/login/static/templates/register_option.html
+++ b/internal/api/ui/login/static/templates/register_option.html
@@ -27,7 +27,7 @@
            {{ $reqid := .AuthReqID}}
            {{range $provider := .IDPProviders}}
                <a href="{{ externalIDPRegisterURL $reqid $provider.IDPConfigID}}"
-                    class="lgn-idp {{idpProviderClass $provider.StylingType}}">
+                    class="lgn-idp {{idpProviderClass $provider.IDPType}}">
                    <span class="logo"></span>
                    <span class="provider-name">{{$provider.Name}}</span>
                </a>