From fcdc064cac03bdadc756b2849b3ae216273a36f6 Mon Sep 17 00:00:00 2001
From: Jens Langhammer <jens.langhammer@beryju.org>
Date: Fri, 2 Apr 2021 17:09:19 +0200
Subject: [PATCH] policies/password: migrate to web

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
---
 authentik/policies/password/forms.py          |  36 -----
 authentik/policies/password/models.py         |   8 +-
 .../policies/password/PasswordPolicyForm.ts   | 125 ++++++++++++++++++
 3 files changed, 127 insertions(+), 42 deletions(-)
 delete mode 100644 authentik/policies/password/forms.py
 create mode 100644 web/src/pages/policies/password/PasswordPolicyForm.ts

diff --git a/authentik/policies/password/forms.py b/authentik/policies/password/forms.py
deleted file mode 100644
index df2de293f..000000000
--- a/authentik/policies/password/forms.py
+++ /dev/null
@@ -1,36 +0,0 @@
-"""authentik Policy forms"""
-
-from django import forms
-from django.utils.translation import gettext as _
-
-from authentik.policies.forms import PolicyForm
-from authentik.policies.password.models import PasswordPolicy
-
-
-class PasswordPolicyForm(PolicyForm):
-    """PasswordPolicy Form"""
-
-    class Meta:
-
-        model = PasswordPolicy
-        fields = PolicyForm.Meta.fields + [
-            "password_field",
-            "amount_uppercase",
-            "amount_lowercase",
-            "amount_symbols",
-            "length_min",
-            "symbol_charset",
-            "error_message",
-        ]
-        widgets = {
-            "name": forms.TextInput(),
-            "password_field": forms.TextInput(),
-            "symbol_charset": forms.TextInput(),
-            "error_message": forms.TextInput(),
-        }
-        labels = {
-            "amount_uppercase": _("Minimum amount of Uppercase Characters"),
-            "amount_lowercase": _("Minimum amount of Lowercase Characters"),
-            "amount_symbols": _("Minimum amount of Symbols Characters"),
-            "length_min": _("Minimum Length"),
-        }
diff --git a/authentik/policies/password/models.py b/authentik/policies/password/models.py
index e66957cfe..286033eec 100644
--- a/authentik/policies/password/models.py
+++ b/authentik/policies/password/models.py
@@ -1,9 +1,7 @@
 """user field matcher models"""
 import re
-from typing import Type
 
 from django.db import models
-from django.forms import ModelForm
 from django.utils.translation import gettext as _
 from rest_framework.serializers import BaseSerializer
 from structlog.stdlib import get_logger
@@ -38,10 +36,8 @@ class PasswordPolicy(Policy):
         return PasswordPolicySerializer
 
     @property
-    def form(self) -> Type[ModelForm]:
-        from authentik.policies.password.forms import PasswordPolicyForm
-
-        return PasswordPolicyForm
+    def component(self) -> str:
+        return "ak-policy-password-form"
 
     def passes(self, request: PolicyRequest) -> PolicyResult:
         if self.password_field not in request.context:
diff --git a/web/src/pages/policies/password/PasswordPolicyForm.ts b/web/src/pages/policies/password/PasswordPolicyForm.ts
new file mode 100644
index 000000000..466bac18f
--- /dev/null
+++ b/web/src/pages/policies/password/PasswordPolicyForm.ts
@@ -0,0 +1,125 @@
+import { PasswordPolicy, PoliciesApi } from "authentik-api";
+import { gettext } from "django";
+import { customElement, property } from "lit-element";
+import { html, TemplateResult } from "lit-html";
+import { DEFAULT_CONFIG } from "../../../api/Config";
+import { Form } from "../../../elements/forms/Form";
+import { ifDefined } from "lit-html/directives/if-defined";
+import "../../../elements/forms/HorizontalFormElement";
+import "../../../elements/forms/FormGroup";
+
+@customElement("ak-policy-password-form")
+export class PasswordPolicyForm extends Form<PasswordPolicy> {
+
+    set policyUUID(value: string) {
+        new PoliciesApi(DEFAULT_CONFIG).policiesPasswordRead({
+            policyUuid: value,
+        }).then(policy => {
+            this.policy = policy;
+        });
+    }
+
+    @property({attribute: false})
+    policy?: PasswordPolicy;
+
+    getSuccessMessage(): string {
+        if (this.policy) {
+            return gettext("Successfully updated policy.");
+        } else {
+            return gettext("Successfully created policy.");
+        }
+    }
+
+    send = (data: PasswordPolicy): Promise<PasswordPolicy> => {
+        if (this.policy) {
+            return new PoliciesApi(DEFAULT_CONFIG).policiesPasswordUpdate({
+                policyUuid: this.policy.pk || "",
+                data: data
+            });
+        } else {
+            return new PoliciesApi(DEFAULT_CONFIG).policiesPasswordCreate({
+                data: data
+            });
+        }
+    };
+
+    renderForm(): TemplateResult {
+        return html`<form class="pf-c-form pf-m-horizontal">
+            <ak-form-element-horizontal
+                label=${gettext("Name")}
+                ?required=${true}
+                name="name">
+                <input type="text" value="${ifDefined(this.policy?.name || "")}" class="pf-c-form-control" required>
+            </ak-form-element-horizontal>
+            <ak-form-element-horizontal name="executionLogging">
+                <div class="pf-c-check">
+                    <input type="checkbox" class="pf-c-check__input" ?checked=${this.policy?.executionLogging || false}>
+                    <label class="pf-c-check__label">
+                        ${gettext("Execution logging")}
+                    </label>
+                </div>
+                <p class="pf-c-form__helper-text">${gettext("When this option is enabled, all executions of this policy will be logged. By default, only execution errors are logged.")}</p>
+            </ak-form-element-horizontal>
+            <ak-form-group .expanded=${true}>
+                <span slot="header">
+                    ${gettext("Policy-specific settings")}
+                </span>
+                <div slot="body" class="pf-c-form">
+                    <ak-form-element-horizontal
+                        label=${gettext("Password field")}
+                        ?required=${true}
+                        name="passwordField">
+                        <input type="text" value="${ifDefined(this.policy?.passwordField || "password")}" class="pf-c-form-control" required>
+                        <p class="pf-c-form__helper-text">${gettext("Field key to check, field keys defined in Prompt stages are available.")}</p>
+                    </ak-form-element-horizontal>
+
+                    <ak-form-element-horizontal
+                        label=${gettext("Minimum length")}
+                        ?required=${true}
+                        name="lengthMin">
+                        <input type="number" value="${ifDefined(this.policy?.lengthMin || 10)}" class="pf-c-form-control" required>
+                    </ak-form-element-horizontal>
+                    <ak-form-element-horizontal
+                        label=${gettext("Minimum amount of Uppercase Characters")}
+                        ?required=${true}
+                        name="amountUppercase">
+                        <input type="number" value="${ifDefined(this.policy?.amountUppercase || 2)}" class="pf-c-form-control" required>
+                    </ak-form-element-horizontal>
+                    <ak-form-element-horizontal
+                        label=${gettext("Minimum amount of Lowercase Characters")}
+                        ?required=${true}
+                        name="amountLowercase">
+                        <input type="number" value="${ifDefined(this.policy?.amountLowercase || 2)}" class="pf-c-form-control" required>
+                    </ak-form-element-horizontal>
+                    <ak-form-element-horizontal
+                        label=${gettext("Minimum amount of Symbols Characters")}
+                        ?required=${true}
+                        name="amountSymbols">
+                        <input type="number" value="${ifDefined(this.policy?.amountSymbols || 2)}" class="pf-c-form-control" required>
+                    </ak-form-element-horizontal>
+                    <ak-form-element-horizontal
+                        label=${gettext("Error message")}
+                        ?required=${true}
+                        name="errorMessage">
+                        <input type="text" value="${ifDefined(this.policy?.errorMessage)}" class="pf-c-form-control" required>
+                    </ak-form-element-horizontal>
+                </div>
+            </ak-form-group>
+            <ak-form-group>
+                <span slot="header">
+                    ${gettext("Advanced settings")}
+                </span>
+                <div slot="body" class="pf-c-form">
+                    <ak-form-element-horizontal
+                        label=${gettext("Symbol charset")}
+                        ?required=${true}
+                        name="symbolCharset">
+                        <input type="text" value="${ifDefined(this.policy?.symbolCharset || "!\\\"#$%&'()*+,-./:;<=>?@[\]^_`{|}~ ")}" class="pf-c-form-control" required>
+                        <p class="pf-c-form__helper-text">${gettext("Characters which are considered as symbols.")}</p>
+                    </ak-form-element-horizontal>
+                </div>
+            </ak-form-group>
+        </form>`;
+    }
+
+}