Merge d440685 into c8e48c4

Author: SmitGala

app/components/account-settings/security/mfa-app-enable/index.hbs

@@ -0,0 +1,15 @@
+<AkModal
+  @showHeader={{true}}
+  @headerTitle={{t 'modalCard.mfaTitle.enable'}}
+  @onClose={{this.closeAppEnable}}
+>
+  <AccountSettings::Security::MfaAppverify
+    @secret={{this.mfaAppSecret}}
+    @email='{{this.user.email}}'
+    @otp={{this.appOTP}}
+    @onContinue={{perform this.verifyAppOTP}}
+    @onCancel={{this.closeAppEnable}}
+    @waiting={{this.verifyAppOTP.isRunning}}
+    @loading={{this.noMFAEnableApp.isRunning}}
+  />
+</AkModal>

app/components/account-settings/security/mfa-app-enable/index.ts

@@ -0,0 +1,127 @@
+import Component from '@glimmer/component';
+import { tracked } from '@glimmer/tracking';
+import { service } from '@ember/service';
+import { action } from '@ember/object';
+import { task } from 'ember-concurrency';
+import Owner from '@ember/owner';
+import type IntlService from 'ember-intl/services/intl';
+
+import ENUMS from 'irene/enums';
+import type IreneAjaxService from 'irene/services/ajax';
+import type UserModel from 'irene/models/user';
+import type { AjaxError } from 'irene/services/ajax';
+
+type TokenData = {
+  token: string;
+  secret: string;
+};
+
+interface AccountSettingsSecurityMfaAppEnableSignature {
+  Args: {
+    user: UserModel;
+    closeModal: () => void;
+    reloadMfa: () => void;
+  };
+}
+
+export default class AccountSettingsSecurityMfaAppEnableComponent extends Component<AccountSettingsSecurityMfaAppEnableSignature> {
+  @service declare ajax: IreneAjaxService;
+  @service('notifications') declare notify: NotificationService;
+  @service declare intl: IntlService;
+
+  @tracked appOTP = '';
+  @tracked mfaAppSecret = '';
+  @tracked mfaAppToken = '';
+
+  mfaEndpoint = '/v2/mfa';
+
+  tEnterOTP: string;
+  tInvalidOTP: string;
+  tsomethingWentWrong: string;
+
+  constructor(
+    owner: Owner,
+    args: AccountSettingsSecurityMfaAppEnableSignature['Args']
+  ) {
+    super(owner, args);
+
+    this.tEnterOTP = this.intl.t('enterOTP');
+    this.tInvalidOTP = this.intl.t('invalidOTP');
+    this.tsomethingWentWrong = this.intl.t('somethingWentWrong');
+
+    this.noMFAEnableApp.perform();
+  }
+
+  get user() {
+    return this.args.user;
+  }
+
+  @action
+  closeAppEnable() {
+    this.args.closeModal();
+  }
+
+  noMFAEnableApp = task(async () => {
+    this.appOTP = '';
+
+    try {
+      const tokenData = await this.getMFAEnableAppToken.perform();
+
+      this.mfaAppSecret = tokenData.secret;
+
+      this.mfaAppToken = tokenData.token;
+    } catch (error) {
+      this.closeAppEnable();
+
+      this.notify.error(this.tsomethingWentWrong);
+    }
+  });
+
+  getMFAEnableAppToken = task(async () => {
+    return await this.ajax.post<TokenData>(this.mfaEndpoint, {
+      data: {
+        method: ENUMS.MFA_METHOD.TOTP,
+      },
+    });
+  });
+
+  verifyAppOTP = task(async () => {
+    const otp = this.appOTP;
+    const token = this.mfaAppToken;
+
+    if (!otp) {
+      this.notify.error(this.tEnterOTP);
+
+      return false;
+    }
+
+    try {
+      await this.ajax.post(this.mfaEndpoint, {
+        data: {
+          method: ENUMS.MFA_METHOD.TOTP,
+          otp: otp || '',
+          token: token,
+        },
+      });
+
+      this.args.reloadMfa();
+
+      this.closeAppEnable();
+    } catch (error) {
+      const errorObj = (error as AjaxError).payload || {};
+      const otpMsg = errorObj.otp && errorObj.otp[0];
+
+      if (otpMsg) {
+        this.notify.error(this.tInvalidOTP);
+      } else {
+        this.notify.error(this.tsomethingWentWrong);
+      }
+    }
+  });
+}
+
+declare module '@glint/environment-ember-loose/registry' {
+  export default interface Registry {
+    'AccountSettings::Security::MfaAppEnable': typeof AccountSettingsSecurityMfaAppEnableComponent;
+  }
+}

app/components/account-settings/security/mfa-appverify/index.hbs

@@ -1,37 +1,87 @@
 <div {{style width='450px'}}>
-  <AkStack
-    @direction='column'
-    @alignItems='center'
-    @justifyContent='center'
-    @spacing='2'
-  >
-    <AkTypography @variant='h4' @fontWeight='regular'>
-      {{t 'modalCard.enableMFAApp.scanBarcode'}}
-    </AkTypography>
-
-    <canvas {{did-insert this.onCanvasElementInsert}} />
-  </AkStack>
-
-  <form aria-label='Enable MFA App Otp'>
-    <AkTypography @color='textSecondary'>
-      {{t 'modalCard.enableMFAApp.enterCode'}}
-    </AkTypography>
-
-    <AkTextField @formControlClass='mt-2' @value={{@otp}} />
+  {{#if @loading}}
+    <AkStack
+      @direction='column'
+      @alignItems='center'
+      @justifyContent='center'
+      @spacing='2'
+    >
+      <AkSkeleton @height='28px' @width='340px' />
+
+      <AkSkeleton @height='250px' @width='250px' class='m-3' />
+    </AkStack>
+
+    <AkStack @direction='column'>
+      <AkSkeleton @height='38px' @width='100%' />
+
+      <AkSkeleton @height='35px' @width='100%' class='mt-2' />
 
+      <AkStack
+        class='mt-2'
+        @alignItems='center'
+        @justifyContent='flex-end'
+        @spacing='1.5'
+        @width='full'
+      >
+        <AkSkeleton @height='35px' @width='80px' />
+
+        <AkSkeleton @height='35px' @width='80px' />
+      </AkStack>
+    </AkStack>
+  {{else}}
     <AkStack
-      class='mt-2'
+      @direction='column'
       @alignItems='center'
-      @justifyContent='flex-end'
-      @spacing='1.5'
+      @justifyContent='center'
+      @spacing='2'
     >
-      <AkButton @loading={{@waiting}} {{on 'click' this.continue}}>
-        {{t 'continue'}}
-      </AkButton>
+      <AkTypography
+        @variant='h4'
+        @fontWeight='regular'
+        data-test-mfa-appverify-title
+      >
+        {{t 'modalCard.enableMFAApp.scanBarcode'}}
+      </AkTypography>
 
-      <AkButton @variant='outlined' @color='neutral' {{on 'click' this.cancel}}>
-        {{t 'cancel'}}
-      </AkButton>
+      <canvas
+        {{did-insert this.onCanvasElementInsert}}
+        data-test-mfa-appverify-qrcode
+      />
     </AkStack>
-  </form>
+
+    <form {{on 'submit' this.continue}} aria-label='Enable MFA App Otp'>
+      <AkTypography @color='textSecondary'>
+        {{t 'modalCard.enableMFAApp.enterCode'}}
+      </AkTypography>
+
+      <AkTextField
+        @formControlClass='mt-2'
+        @value={{@otp}}
+        data-test-mfa-appverify-textfield
+      />
+
+      <AkStack
+        class='mt-2'
+        @alignItems='center'
+        @justifyContent='flex-end'
+        @spacing='1.5'
+      >
+        <AkButton
+          @loading={{@waiting}}
+          {{on 'click' this.continue}}
+          data-test-mfa-appverify-continue-button
+        >
+          {{t 'continue'}}
+        </AkButton>
+
+        <AkButton
+          @variant='outlined'
+          @color='neutral'
+          {{on 'click' this.cancel}}
+        >
+          {{t 'cancel'}}
+        </AkButton>
+      </AkStack>
+    </form>
+  {{/if}}
 </div>

app/components/account-settings/security/mfa-appverify/index.ts

@@ -15,6 +15,7 @@ interface AccountSettingsSecurityMfaAppverifySignature {
     onContinue: (otp: string) => void;
     onCancel: () => void;
     waiting: boolean;
+    loading?: boolean;
   };
 }
 
@@ -45,7 +46,9 @@ export default class AccountSettingsSecurityMfaAppverifyComponent extends Compon
   }
 
   @action
-  continue() {
+  continue(event: Event) {
+    event.preventDefault();
+
     if (this.args.onContinue instanceof Function) {
       this.args.onContinue(this.args.otp);
     }

app/components/account-settings/security/mfa-disable/index.hbs

@@ -0,0 +1,99 @@
+<AkModal
+  @showHeader={{true}}
+  @headerTitle={{t 'modalCard.mfaTitle.disable'}}
+  @onClose={{this.closeMFADisable}}
+>
+  <:default>
+    {{#if (and this.showConfirmDisableMFA this.user.canDisableMfa)}}
+      <AkTypography data-test-mfa-disable-email-title>
+        {{t 'modalCard.enableMFAEmail.sendMailMsg'}}
+      </AkTypography>
+    {{else}}
+      <AkStack
+        @alignItems='center'
+        class='mb-2 p-2'
+        local-class='alert-success'
+        {{style width='450px'}}
+      >
+        <AkStack @alignItems='center' @spacing='1'>
+          <AkIcon @iconName='security' color='inherit' />
+
+          <AkTypography data-test-mfa-disable-denied>
+            {{t 'disableMFADenied'}}
+          </AkTypography>
+        </AkStack>
+      </AkStack>
+    {{/if}}
+
+    {{#if this.showDisableMFA}}
+      <AkTypography data-test-mfa-disable-desc>
+        {{t 'modalCard.disableMFA.enterOTP'}}
+
+        {{#if this.isEmailMFAEnabled}}
+          {{t 'modalCard.disableMFA.viaEmail'}}
+        {{/if}}
+
+        {{#if this.isAppMFAEnabled}}
+          {{t 'modalCard.disableMFA.viaApp'}}
+        {{/if}}
+      </AkTypography>
+
+      <form
+        {{on 'submit' (perform this.verifyDisableOTP)}}
+        aria-label='Disable Email MFA Otp'
+        class='mt-3'
+      >
+        <AkTextField
+          @value={{this.disableOTP}}
+          data-test-mfa-disable-textfield
+        />
+      </form>
+
+    {{/if}}
+  </:default>
+
+  <:footer>
+    <AkStack
+      class='px-3 py-2'
+      @alignItems='center'
+      @justifyContent='flex-end'
+      @spacing='1.5'
+    >
+      {{#if (and this.showConfirmDisableMFA this.user.canDisableMfa)}}
+        <AkButton
+          @loading={{this.sendDisableMFAOTPEmail.isRunning}}
+          {{on 'click' (perform this.continueDisableMFA)}}
+          data-test-mfa-disable-continue
+        >
+          {{t 'continue'}}
+        </AkButton>
+
+        <AkButton
+          @variant='outlined'
+          @color='neutral'
+          {{on 'click' this.closeMFADisable}}
+        >
+          {{t 'cancel'}}
+        </AkButton>
+      {{/if}}
+
+      {{#if this.showDisableMFA}}
+        <AkButton
+          @loading={{this.verifyDisableOTP.isRunning}}
+          {{on 'click' (perform this.verifyDisableOTP)}}
+          data-test-mfa-disable-confirm
+        >
+          {{t 'confirm'}}
+        </AkButton>
+
+        <AkButton
+          @variant='outlined'
+          @color='neutral'
+          {{on 'click' this.closeMFADisable}}
+        >
+          {{t 'cancel'}}
+        </AkButton>
+      {{/if}}
+    </AkStack>
+  </:footer>
+</AkModal>

app/components/account-settings/security/mfa-disable/index.scss

@@ -0,0 +1,8 @@
+.alert-success {
+  border: 1px solid
+    var(--account-settings-security-mfa-alert-success-border-color);
+  background-color: var(
+    --account-settings-security-mfa-alert-success-background
+  );
+  color: var(--account-settings-security-mfa-alert-success-text-color);
+}