fix(admin-ui): fix permissions for script

Author: mjatin-dev

admin-ui/app/utils/PermChecker.js

@@ -34,7 +34,7 @@ export const MAPPING_READ =
 export const MAPPING_WRITE =
   'https://jans.io/oauth/jans-auth-server/config/adminui/user/rolePermissionMapping.write'
 export const MAPPING_DELETE =
-  'https://jans.io/oauth/jans-auth-server/config/adminui/user/rolePermissionMapping.write'
+  'https://jans.io/oauth/jans-auth-server/config/adminui/user/rolePermissionMapping.delete'
 
 export const LICENSE_DETAILS_READ =
   BASE_URL + '/config/adminui/license.readonly'

admin-ui/plugins/admin/components/Mapping/MappingItem.js

@@ -10,6 +10,11 @@ import {
 } from 'Components'
 import { useDispatch, useSelector } from 'react-redux'
 import { DeleteOutlined } from '@material-ui/icons'
+import {
+  hasPermission,
+  MAPPING_WRITE,
+  MAPPING_DELETE
+} from 'Utils/PermChecker'
 import {
   updateMapping,
   addPermissionsToRole,
@@ -27,6 +32,7 @@ function MappingItem({ candidate, roles }) {
   const dispatch = useDispatch()
   const autocompleteRef = useRef(null)
   const permissions = useSelector((state) => state.apiPermissionReducer.items)
+  const authPermissions = useSelector((state) => state.authReducer.permissions)
   const [searchablePermissions, setSearchAblePermissions] = useState([])
   const [serverPermissions, setServerPermissions] = useState(null)
   const [isDeleteable, setIsDeleteable] = useState(false)
@@ -136,6 +142,7 @@ function MappingItem({ candidate, roles }) {
             </Accordion.Header>
             <Accordion.Body>
               <div style={{ marginTop: 10 }}></div>
+              {hasPermission(authPermissions, MAPPING_WRITE) ? 
               <Formik
                 initialValues={initialValues}
                 onSubmit={handleAddPermission}
@@ -170,10 +177,11 @@ function MappingItem({ candidate, roles }) {
                     </Form>
                   </>
                 )}
-              </Formik>
+              </Formik>:null}
               {candidate.permissions.map((permission, id) => (
                 <Row key={id}>
                   <Col sm={10}>{permission}</Col>
+                  {hasPermission(authPermissions, MAPPING_DELETE) ? 
                   <Col sm={2}>
                     <Button
                       type="button"
@@ -188,11 +196,13 @@ function MappingItem({ candidate, roles }) {
                       <i className="fa fa-trash mr-2"></i>
                       {t('actions.remove')}
                     </Button>
-                  </Col>
+                  </Col>:null
+                  }
                 </Row>
               ))}
               {/* Bottom Buttons  */}
               <FormGroup row />
+              {hasPermission(authPermissions, MAPPING_WRITE) ?
               <Row>
                 <Col sm={6}>
                   <Button
@@ -205,6 +215,7 @@ function MappingItem({ candidate, roles }) {
                     {t('actions.revert')}
                   </Button>
                 </Col>
+                
                 <Col sm={6} className="text-right">
                   <Button
                     type="button"
@@ -219,7 +230,7 @@ function MappingItem({ candidate, roles }) {
                     {t('actions.save')}
                   </Button>
                 </Col>
-              </Row>
+              </Row>:null}
               {/* Bottom Buttons  */}
             </Accordion.Body>
           </Accordion>

admin-ui/plugins/admin/components/Mapping/MappingPage.js

@@ -23,7 +23,8 @@ import MappingItem from './MappingItem'
 import {
   hasPermission,
   buildPayload,
-  ROLE_READ,
+  MAPPING_WRITE,
+  MAPPING_READ
 } from 'Utils/PermChecker'
 import SetTitle from 'Utils/SetTitle'
 import { ThemeContext } from 'Context/theme/themeContext'
@@ -79,7 +80,8 @@ function MappingPage({
     <GluuLoader blocking={loading || permissionLoading}>
       <Card style={applicationStyle.mainCard}>
         <CardBody>
-          <GluuViewWrapper canShow={hasPermission(permissions, ROLE_READ)}>
+          <GluuViewWrapper canShow={hasPermission(permissions, MAPPING_READ)}>
+            {hasPermission(permissions, MAPPING_WRITE) ? 
             <FormGroup row>
               <Col sm={10}></Col>
               <Col sm={2}>
@@ -95,7 +97,7 @@ function MappingPage({
                   </Button>
                 </Box>
               </Col>
-            </FormGroup>
+            </FormGroup>:null}
             {mapping.map((candidate, idx) => (
               <MappingItem key={idx} candidate={candidate} roles={apiRoles} />
             ))}

admin-ui/plugins/admin/components/Permissions/UiPermListPage.js

@@ -20,6 +20,7 @@ import {
   buildPayload,
   PERMISSION_READ,
   PERMISSION_WRITE,
+  PERMISSION_DELETE
 } from 'Utils/PermChecker'
 import SetTitle from 'Utils/SetTitle'
 import { ThemeContext } from 'Context/theme/themeContext'
@@ -106,6 +107,8 @@ function UiPermListPage({ apiPerms, permissions, loading, dispatch }) {
               return <UiPermDetailPage row={rowD} />
             }}
             editable={{
+              isDeleteHidden:() => !hasPermission(permissions, PERMISSION_DELETE),
+              isEditHidden:() => !hasPermission(permissions, PERMISSION_WRITE),
               onRowUpdate: (newData, oldData) =>
                 new Promise((resolve, reject) => {
                   buildPayload(userAction, 'Edit permision', newData)

admin-ui/plugins/admin/plugin-metadata.js

@@ -117,7 +117,7 @@ const pluginMetadata = {
     {
       component: CustomScriptEditPage,
       path: PLUGIN_BASE_APTH + '/script/edit:id',
-      permission: SCRIPT_WRITE,
+      permission: SCRIPT_READ,
     },
     {
       component: SettingsPage,