DGNum/demarches-normaliennes
13
1
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity

Merge pull request #9097 from mfo/US/improve-api-token-acl-ux

Browse source 
amelioration(users/profil): ETQ admin, j'ai du mal a comprendre l'interface qui me permet de gerer les autorisations qu'un jeton a
This commit is contained in:
mfo 2023-05-31 15:59:43 +00:00 committed by GitHub
commit 38d8566995
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
3 changed files with 25 additions and 19 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
app/components/profile/api_token_component/api_token_component.en.yml
View file

@ -3,11 +3,13 @@ en:
allowed_procedures_html: allowed_procedures_html:
zero: This token has no access to <strong>any</strong> process. zero: This token has no access to <strong>any</strong> process.
one: This token has access to a selected process one: This token has access to a selected process
other: This token has access to %{count} selected steps other: This token has access to %{count} selected procedures
security_one: For security reasons, it will not be re-posted, please note. security_one: For security reasons, it will not be re-posted, please note.
security_two: For security reasons, we can only show it to you when it is created. security_two: For security reasons, we can only show it to you when it is created.
prompt_choose_procedure: "-- Please, choose a procedure --"
security_title: "Security options"
action_all: Allow access to all procedures action_all: Allow access to all procedures
action_choice: Allow access only to selected steps action_choice: "If you want to grant access to selected procedures only :"
add: Add add: Add
delete: Delete delete: Delete
token_procedures: This token has access to the procedures token_procedures: This token has access to the procedures

4
app/components/profile/api_token_component/api_token_component.fr.yml
View file

@ -6,8 +6,10 @@ fr:
other: Ce jeton a accès a %{count} démarches sélectionnées other: Ce jeton a accès a %{count} démarches sélectionnées
security_one: Pour des raisons de sécurité, il ne sera plus ré-affiché, notez-le bien. security_one: Pour des raisons de sécurité, il ne sera plus ré-affiché, notez-le bien.
security_two: Pour des raisons de sécurité, nous ne pouvons vous lafficher que lors de sa création. security_two: Pour des raisons de sécurité, nous ne pouvons vous lafficher que lors de sa création.
security_title: "Options de sécurité"
action_all: Autoriser laccès a toutes les démarches action_all: Autoriser laccès a toutes les démarches
action_choice: Autoriser laccès seulement a des démarches choisies prompt_choose_procedure: "-- Veuillez sélectionner une procédure à ajouter --"
action_choice: Si vous souhaitez autoriser laccès seulement a des démarches choisies, ajouter les au jeton
add: Ajouter add: Ajouter
delete: Supprimer delete: Supprimer
token_procedures: Ce jeton a accès aux démarches token_procedures: Ce jeton a accès aux démarches

34
app/components/profile/api_token_component/api_token_component.html.haml
View file

@ -20,22 +20,24 @@
%p %p
= t('.security_two') = t('.security_two')
- if @api_token.full_access? = render Dsfr::AlertComponent.new(state: :info, title: t(".security_title"), heading_level: :h4) do |c|
%p.fr-text--lg - c.body do
= t('.allowed_full_access_html') - if @api_token.full_access?
- else %p.fr-text--lg
%p.fr-text--lg = t('.allowed_full_access_html')
= t('.allowed_procedures_html', count: @api_token.allowed_procedures.size) - else
%p.fr-text--lg
= t('.allowed_procedures_html', count: @api_token.allowed_procedures.size)
- if @api_token.allowed_procedures.empty? - if @api_token.allowed_procedures.empty?
= button_to t('.action_all'), @api_token, method: :patch, params: { api_token: { disallow_procedure_id: '0' } }, class: "fr-btn fr-btn--secondary" = button_to t('.action_all'), @api_token, method: :patch, params: { api_token: { disallow_procedure_id: '0' } }, class: "fr-btn fr-btn--secondary"
- else - else
%ul %ul
- @api_token.allowed_procedures.each do |procedure| - @api_token.allowed_procedures.each do |procedure|
%li.flex.justify-between.align-center %li.flex.justify-between.align-center
.truncate-80 .truncate-80
= "#{procedure.id} #{procedure.libelle}" = "#{procedure.id} #{procedure.libelle}"
= button_to t('.delete'), @api_token, method: :patch, params: { api_token: { disallow_procedure_id: procedure.id } }, class: "fr-btn fr-btn--secondary" = button_to t('.delete'), @api_token, method: :patch, params: { api_token: { disallow_procedure_id: procedure.id } }, class: "fr-btn fr-btn--secondary"
.fr-card__end .fr-card__end
= form_for @api_token, namespace: dom_id(@api_token, :allowed_procedures), html: { class: 'form form-ds-fr-white mb-3', data: { turbo: true } } do |f| = form_for @api_token, namespace: dom_id(@api_token, :allowed_procedures), html: { class: 'form form-ds-fr-white mb-3', data: { turbo: true } } do |f|
@ -44,7 +46,7 @@
- @api_token.allowed_procedures.each do |procedure| - @api_token.allowed_procedures.each do |procedure|
= f.hidden_field :allowed_procedure_ids, value: procedure.id, multiple: true, id: dom_id(procedure, :allowed_procedure) = f.hidden_field :allowed_procedure_ids, value: procedure.id, multiple: true, id: dom_id(procedure, :allowed_procedure)
.flex.justify-between.align-center{ 'data-turbo-force': true } .flex.justify-between.align-center{ 'data-turbo-force': true }
= f.select :allowed_procedure_ids, procedures_to_allow_options, procedures_to_allow_select_options, { class: 'no-margin width-66 small', name: "api_token[allowed_procedure_ids][]" } = f.select :allowed_procedure_ids, procedures_to_allow_options, {prompt: t('.prompt_choose_procedure')}, { class: 'no-margin width-66 small', name: "api_token[allowed_procedure_ids][]" }
= f.button type: :submit, class: "fr-btn fr-btn--secondary" do = f.button type: :submit, class: "fr-btn fr-btn--secondary" do
= t('.add') = t('.add')