assing roles to principals functionality

Author: binarycat0

src/app/api/principals/[principalName]/principal-roles/[principalRoleName]/route.ts

@@ -0,0 +1,64 @@
+import {NextRequest, NextResponse} from 'next/server';
+import {apiManagementPrincipalPrincipalRolesUrl} from "@/app/constants";
+import {getRealmHeadersFromRequest} from "@/utils/auth";
+
+
+export async function DELETE(
+    request: NextRequest,
+    {params}: { params: Promise<{ principalName: string; principalRoleName: string }> }
+) {
+  try {
+    const authHeader = request.headers.get('Authorization');
+
+    if (!authHeader) {
+      return NextResponse.json(
+          {
+            error: {
+              message: 'Authorization header is required',
+              type: 'UnauthorizedError',
+              code: 401
+            }
+          },
+          {status: 401}
+      );
+    }
+
+    const {principalName, principalRoleName} = await params;
+    const url = `${apiManagementPrincipalPrincipalRolesUrl(principalName)}/${encodeURIComponent(principalRoleName)}`;
+
+    console.log('Removing principal role from principal:', principalName, principalRoleName);
+
+    const realmHeaders = getRealmHeadersFromRequest(request);
+
+    const response = await fetch(url, {
+      method: 'DELETE',
+      headers: {
+        'Authorization': authHeader,
+        'Content-Type': 'application/json',
+        ...realmHeaders,
+      },
+    });
+
+    if (!response.ok) {
+      const data = await response.json().catch(() => ({
+        error: {
+          message: 'Failed to remove principal role from principal',
+          type: 'DeleteError',
+          code: response.status
+        }
+      }));
+      console.error('Backend error response:', data);
+      return NextResponse.json(data, {status: response.status});
+    }
+
+    console.log('Principal role removed from principal successfully');
+    return NextResponse.json({success: true}, {status: 204});
+  } catch (error) {
+    console.error('Remove principal role from principal proxy error:', error);
+    return NextResponse.json(
+        {error: {message: 'Internal server error', type: 'InternalServerError', code: 500}},
+        {status: 500}
+    );
+  }
+}
+

src/app/api/principals/[principalName]/principal-roles/route.ts

@@ -64,3 +64,65 @@ export async function GET(
   }
 }
 
+export async function PUT(
+    request: NextRequest,
+    {params}: { params: Promise<{ principalName: string }> }
+) {
+  try {
+    const authHeader = request.headers.get('Authorization');
+
+    if (!authHeader) {
+      return NextResponse.json(
+          {
+            error: {
+              message: 'Authorization header is required',
+              type: 'UnauthorizedError',
+              code: 401
+            }
+          },
+          {status: 401}
+      );
+    }
+
+    const {principalName} = await params;
+    const url = apiManagementPrincipalPrincipalRolesUrl(principalName);
+
+    console.log('Assigning principal role to principal:', principalName);
+
+    const body = await request.json();
+    console.log('Request body:', body);
+
+    const realmHeaders = getRealmHeadersFromRequest(request);
+
+    const response = await fetch(url, {
+      method: 'PUT',
+      headers: {
+        'Authorization': authHeader,
+        'Content-Type': 'application/json',
+        ...realmHeaders,
+      },
+      body: JSON.stringify(body),
+    });
+
+    if (!response.ok) {
+      const data = await response.json().catch(() => ({
+        error: {
+          message: 'Failed to assign principal role',
+          type: 'AssignError',
+          code: response.status
+        }
+      }));
+      console.error('Backend error response:', data);
+      return NextResponse.json(data, {status: response.status});
+    }
+
+    console.log('Principal role assigned successfully');
+    return NextResponse.json({success: true}, {status: 201});
+  } catch (error) {
+    console.error('Assign principal role proxy error:', error);
+    return NextResponse.json(
+        {error: {message: 'Internal server error', type: 'InternalServerError', code: 500}},
+        {status: 500}
+    );
+  }
+}

src/app/principals/page.tsx

@@ -6,6 +6,7 @@ import {UserAddOutlined, UserOutlined} from '@ant-design/icons';
 import {useAuthenticatedFetch} from '@/hooks/useAuthenticatedFetch';
 import Principals, {Principal, PrincipalRoleItem} from '@/app/ui/principals';
 import CreatePrincipalModal from '@/app/ui/create-principal-modal';
+import AssignPrincipalRoleModal from '@/app/ui/assign-principal-role-modal';
 
 const {Title} = Typography;
 
@@ -22,6 +23,8 @@ export default function Page() {
   const [principalRoles, setPrincipalRoles] = useState<Record<string, PrincipalRoleItem[]>>({});
   const [rolesLoading, setRolesLoading] = useState<Record<string, boolean>>({});
   const [createModalVisible, setCreateModalVisible] = useState(false);
+  const [assignRoleModalVisible, setAssignRoleModalVisible] = useState(false);
+  const [selectedPrincipalForRole, setSelectedPrincipalForRole] = useState<string | null>(null);
   const {authenticatedFetch} = useAuthenticatedFetch();
 
   const getPrincipals = useCallback(async (): Promise<Principal[]> => {
@@ -130,6 +133,49 @@ export default function Page() {
     }
   };
 
+  const handleAddRole = (principalName: string) => {
+    setSelectedPrincipalForRole(principalName);
+    setAssignRoleModalVisible(true);
+  };
+
+  const handleAssignRoleSuccess = async () => {
+    if (selectedPrincipalForRole) {
+      // Refresh the principal roles for the selected principal
+      setRolesLoading(prev => ({...prev, [selectedPrincipalForRole]: true}));
+      try {
+        const roles = await getPrincipalRoles(selectedPrincipalForRole);
+        setPrincipalRoles(prev => ({...prev, [selectedPrincipalForRole]: roles}));
+      } finally {
+        setRolesLoading(prev => ({...prev, [selectedPrincipalForRole]: false}));
+      }
+    }
+  };
+
+  const handleDeletePrincipalRole = async (principalName: string, roleName: string) => {
+    try {
+      await authenticatedFetch(
+          `/api/principals/${encodeURIComponent(principalName)}/principal-roles/${encodeURIComponent(roleName)}`,
+          {
+            method: 'DELETE',
+          }
+      );
+
+      message.success(`Role "${roleName}" removed from principal "${principalName}" successfully!`);
+
+      // Refresh the principal roles for the selected principal
+      setRolesLoading(prev => ({...prev, [principalName]: true}));
+      try {
+        const roles = await getPrincipalRoles(principalName);
+        setPrincipalRoles(prev => ({...prev, [principalName]: roles}));
+      } finally {
+        setRolesLoading(prev => ({...prev, [principalName]: false}));
+      }
+    } catch (error) {
+      console.error('Error removing principal role:', error);
+      throw error; // Re-throw to let the modal handle the error display
+    }
+  };
+
   useEffect(() => {
     async function fetchPrincipals() {
       setLoading(true);
@@ -199,13 +245,25 @@ export default function Page() {
             rolesLoading={rolesLoading}
             onResetCredentials={handleResetCredentials}
             onDelete={handleDeletePrincipal}
+            onAddRole={handleAddRole}
+            onDeletePrincipalRole={handleDeletePrincipalRole}
         />
 
         <CreatePrincipalModal
             visible={createModalVisible}
             onClose={() => setCreateModalVisible(false)}
             onSuccess={handleCreateSuccess}
         />
+
+        <AssignPrincipalRoleModal
+            visible={assignRoleModalVisible}
+            principalName={selectedPrincipalForRole}
+            onClose={() => {
+              setAssignRoleModalVisible(false);
+              setSelectedPrincipalForRole(null);
+            }}
+            onSuccess={handleAssignRoleSuccess}
+        />
       </Space>
   );
 }