Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Introduce Rule-based Password Expiry #6753

Merged
merged 19 commits into from
Sep 2, 2024
Merged

Introduce Rule-based Password Expiry #6753

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
19 commits
Select commit Hold shift + click to select a range
a8186a2
Introduce rule-based password expiry
PasinduYeshan Aug 12, 2024
a419af3
Retrieve all the roles
PasinduYeshan Aug 12, 2024
962cb1c
Merge remote-tracking branch 'upstream/master' into feature/rule-base…
PasinduYeshan Aug 12, 2024
166f512
Resolve merge conflict
PasinduYeshan Aug 12, 2024
28b9cdc
Refactor
PasinduYeshan Aug 12, 2024
821c929
Merge branch 'master' into feature/rule-based-password-expiry
pavinduLakshan Aug 12, 2024
8f448a2
Address comments
PasinduYeshan Aug 13, 2024
17f7d9c
Merge remote-tracking branch 'refs/remotes/origin/feature/rule-based-…
PasinduYeshan Aug 13, 2024
4f74280
Refactor
PasinduYeshan Aug 13, 2024
ca1acd6
Add changeset
PasinduYeshan Aug 13, 2024
8fa6999
Change order of dependencies
PasinduYeshan Aug 13, 2024
d124516
Merge remote-tracking branch 'upstream/master' into feature/rule-base…
PasinduYeshan Aug 13, 2024
c37c80c
Update dependency versions
PasinduYeshan Aug 13, 2024
510db3d
Fix lint issues
PasinduYeshan Aug 13, 2024
e757348
Fix lint
PasinduYeshan Aug 13, 2024
bb89947
Address comments
PasinduYeshan Aug 15, 2024
35f908b
Add max limit for rules and values
PasinduYeshan Aug 15, 2024
5c8ef39
Change i18 changeset to patch
PasinduYeshan Aug 16, 2024
b32ea25
Add missing componentIds
PasinduYeshan Aug 21, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
8 changes: 8 additions & 0 deletions .changeset/rotten-grapes-clap.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,8 @@
---
"@wso2is/admin.server-configurations.v1": minor
"@wso2is/admin.extensions.v1": minor
"@wso2is/admin.validation.v1": minor
"@wso2is/i18n": patch
---

Introduce rule based password expiry
4 changes: 3 additions & 1 deletion apps/console/src/public/deployment.config.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -692,7 +692,9 @@
"console:loginAndRegistration"
],
"read": [
"internal_governance_view"
"internal_governance_view",
pavinduLakshan marked this conversation as resolved.
Show resolved Hide resolved
"internal_group_mgt_view",
"internal_role_mgt_view"
],
"update": [
"internal_config_update",
Expand Down
5 changes: 4 additions & 1 deletion features/admin.extensions.v1/components/password-expiry/components/password-expiry.tsx
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,6 +20,7 @@ import {
GovernanceConnectorConstants
} from "@wso2is/admin.server-configurations.v1/constants/governance-connector-constants";
import { Field } from "@wso2is/form/src";
import { Heading } from "@wso2is/react-components";
import React, { ReactElement } from "react";
import { TFunction } from "react-i18next";

Expand All @@ -32,7 +33,9 @@ export const generatePasswordExpiry = (
): ReactElement => {
return (
<>
<h5>{ t("extensions:manage.serverConfigurations.passwordExpiry.heading") }</h5>
<Heading as="h4">
{ t("extensions:manage.serverConfigurations.passwordExpiry.heading") }
</Heading>
<div className="criteria">
<Field.Checkbox
ariaLabel="Enable/Disable Password Expiry"
Expand Down
17 changes: 8 additions & 9 deletions ...min.extensions.v1/components/password-history-count/components/password-history-count.tsx
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -16,11 +16,11 @@
* under the License.
*/

import Alert from "@oxygen-ui/react/Alert";
import { Field } from "@wso2is/form/src";
import { Message } from "@wso2is/react-components/src";
import { Heading } from "@wso2is/react-components";
import React, { ReactElement } from "react";
import { TFunction } from "react-i18next";
import { Divider, Icon } from "semantic-ui-react";

export const generatePasswordHistoryCount = (
componentId: string,
Expand All @@ -31,7 +31,12 @@ export const generatePasswordHistoryCount = (
): ReactElement => {
return (
<>
<h5>{ t("extensions:manage.serverConfigurations.passwordHistoryCount.heading") }</h5>
<Heading as="h4">
{ t("extensions:manage.serverConfigurations.passwordHistoryCount.heading") }
</Heading>
<Alert severity="info" className="info-box">
{ t("extensions:manage.serverConfigurations.passwordHistoryCount.message") }
</Alert>
<div className="criteria">
<Field.Checkbox
ariaLabel="Enable/Disable Password History Count"
Expand Down Expand Up @@ -70,12 +75,6 @@ export const generatePasswordHistoryCount = (
/>
<label>{ t("extensions:manage.serverConfigurations.passwordHistoryCount.label2") }</label>
</div>
<Message info>
<Icon name="info circle" />
{ t("extensions:manage.serverConfigurations.passwordHistoryCount.message") }
</Message>
<Divider className="mt-6 mb-6" />
<h5>{ t("extensions:manage.serverConfigurations.passwordValidationHeading") }</h5>
</>
);
};
2 changes: 2 additions & 0 deletions features/admin.extensions.v1/configs/models/server-configuration.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -95,4 +95,6 @@ export interface PasswordPoliciesInterface extends ValidationFormInterface {
passwordExpiryEnabled?: boolean;
passwordHistoryCount?: number | string;
passwordHistoryCountEnabled?: boolean;
passwordExpiryRules?: Record<string, string>;
passwordExpirySkipFallback?: boolean;
}
41 changes: 30 additions & 11 deletions features/admin.extensions.v1/configs/server-configuration.tsx
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -241,22 +241,50 @@ const serverConfigurationConfig: ServerConfigurationConfig = {
processPasswordPoliciesSubmitData: (data: PasswordPoliciesInterface, isLegacy: boolean) => {
let passwordExpiryTime: number | undefined = parseInt((data.passwordExpiryTime as string));
const passwordExpiryEnabled: boolean | undefined = data.passwordExpiryEnabled;
const passwordExpirySkipFallback: boolean | undefined = data.passwordExpirySkipFallback || false;
const passwordExpiryRules: Record<string, string> | undefined =
data?.passwordExpiryRules || {};
let passwordHistoryCount: number | undefined = parseInt((data.passwordHistoryCount as string));
const passwordHistoryCountEnabled: boolean | undefined = data.passwordHistoryCountEnabled;

delete data.passwordExpiryTime;
delete data.passwordExpiryEnabled;
delete data.passwordHistoryCount;
delete data.passwordHistoryCountEnabled;
delete data.skipPasswordExpiryFallback;
delete data.passwordExpiryRules;

if (passwordExpiryEnabled && passwordExpiryTime === 0) {
// Default password expiry time.
if (passwordExpiryEnabled && !passwordExpirySkipFallback && passwordExpiryTime === 0) {
passwordExpiryTime = 30;
}

if (passwordHistoryCountEnabled && passwordHistoryCount === 0) {
passwordHistoryCount = 1;
}

const passwordExpiryProperties: UpdateGovernanceConnectorConfigPropertyInterface[] = [
{
name: ServerConfigurationsConstants.PASSWORD_EXPIRY_ENABLE,
value: passwordExpiryEnabled?.toString()
},
{
name: ServerConfigurationsConstants.PASSWORD_EXPIRY_TIME,
value: passwordExpiryTime?.toString()
},
{
name: ServerConfigurationsConstants.PASSWORD_EXPIRY_SKIP_IF_NO_APPLICABLE_RULES,
value: passwordExpirySkipFallback?.toString()
}
];

Object.entries(passwordExpiryRules as Record<string, string>).forEach(([ key, value ]: [ string, string ]) => {
passwordExpiryProperties.push({
name: key,
value: value
});
});

const legacyPasswordPoliciesData: {
id: string, properties: UpdateGovernanceConnectorConfigPropertyInterface[] } = {
id: ServerConfigurationsConstants.PASSWORD_POLICY_CONNECTOR_ID,
Expand Down Expand Up @@ -298,16 +326,7 @@ const serverConfigurationConfig: ServerConfigurationConfig = {
connectors: [
{
id: ServerConfigurationsConstants.PASSWORD_EXPIRY_CONNECTOR_ID,
properties: [
{
name: ServerConfigurationsConstants.PASSWORD_EXPIRY_ENABLE,
value: passwordExpiryEnabled?.toString()
},
{
name: ServerConfigurationsConstants.PASSWORD_EXPIRY_TIME,
value: passwordExpiryTime?.toString()
}
]
properties: passwordExpiryProperties
},
{
id: ServerConfigurationsConstants.PASSWORD_HISTORY_CONNECTOR_ID,
Expand Down
7 changes: 4 additions & 3 deletions features/admin.server-configurations.v1/constants/governance-connector-constants.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -45,7 +45,6 @@ export class GovernanceConnectorConstants {
EXPIRY_TIME_MIN_LENGTH: number;
EXPIRY_TIME_MIN_VALUE: number;
} = {

EXPIRY_TIME_MAX_LENGTH: 5,
EXPIRY_TIME_MAX_VALUE: 10080,
EXPIRY_TIME_MIN_LENGTH: 1,
Expand Down Expand Up @@ -75,7 +74,6 @@ export class GovernanceConnectorConstants {
SMS_OTP_CODE_LENGTH_MIN_LENGTH: number;
SMS_OTP_CODE_LENGTH_MIN_VALUE: number;
} = {

EXPIRY_TIME_MAX_LENGTH: 5,
EXPIRY_TIME_MAX_VALUE: 10080,
EXPIRY_TIME_MIN_LENGTH: 1,
Expand Down Expand Up @@ -113,7 +111,6 @@ export class GovernanceConnectorConstants {
FAILED_ATTEMPTS_MIN_LENGTH: number;
FAILED_ATTEMPTS_MIN_VALUE: number;
} = {

ACCOUNT_LOCK_INCREMENT_FACTOR_MAX_LENGTH: 2,
ACCOUNT_LOCK_INCREMENT_FACTOR_MAX_VALUE: 10,
ACCOUNT_LOCK_INCREMENT_FACTOR_MIN_LENGTH: 1,
Expand All @@ -136,7 +133,11 @@ export class GovernanceConnectorConstants {
EXPIRY_TIME_MAX_VALUE: number;
EXPIRY_TIME_MIN_LENGTH: number;
EXPIRY_TIME_MIN_VALUE: number;
EXPIRY_RULES_MAX_COUNT: number;
EXPIRY_RULE_MAX_VALUES_PER_RULE: number;
} = {
EXPIRY_RULES_MAX_COUNT: 10,
EXPIRY_RULE_MAX_VALUES_PER_RULE: 5,
EXPIRY_TIME_MAX_LENGTH: 5,
EXPIRY_TIME_MAX_VALUE: 10080,
EXPIRY_TIME_MIN_LENGTH: 1,
Expand Down
Loading
Loading