awx/awx/ui/static/js/forms/Credentials.js

/*********************************************
 *  Copyright (c) 2015 AnsibleWorks, Inc.
 *
 *  Credentials.js
 *  Form definition for Credential model
 *
 */
 /**
 * @ngdoc function
 * @name forms.function:Credentials
 * @description This form is for adding/editing a Credential
*/

export default
    angular.module('CredentialFormDefinition', [])
        .value('CredentialForm', {

            addTitle: 'Create Credential', //Legend in add mode
            editTitle: '{{ name }}', //Legend in edit mode
            name: 'credential',
            well: true,
            forceListeners: true,

            actions: {
                stream: {
                    ngClick: "showActivity()",
                    awToolTip: "View Activity Stream",
                    mode: 'edit',
                    awFeature: 'activity_streams'
                }
            },

            fields: {
                name: {
                    label: 'Name',
                    type: 'text',
                    addRequired: true,
                    editRequired: true,
                    autocomplete: false
                },
                description: {
                    label: 'Description',
                    type: 'text',
                    addRequired: false,
                    editRequired: false
                },
                owner: {
                    label: "Does this credential belong to a team or user?",
                    type: 'radio_group',
                    ngChange: "ownerChange()",
                    options: [{
                        label: 'User',
                        value: 'user',
                        selected: true
                    }, {
                        label: 'Team',
                        value: 'team'
                    }],
                    awPopOver: "<p>A credential must be associated with either a user or a team. Choosing a user allows only the selected user access " +
                        "to the credential. Choosing a team shares the credential with all team members.</p>",
                    dataTitle: 'Owner',
                    dataPlacement: 'right',
                    dataContainer: "body"
                },
                user: {
                    label: 'User that owns this credential',
                    type: 'lookup',
                    sourceModel: 'user',
                    sourceField: 'username',
                    ngClick: 'lookUpUser()',
                    ngShow: "owner == 'user'",
                    awRequiredWhen: {
                        variable: "user_required",
                        init: "false"
                    }
                },
                team: {
                    label: 'Team that owns this credential',
                    type: 'lookup',
                    sourceModel: 'team',
                    sourceField: 'name',
                    ngClick: 'lookUpTeam()',
                    ngShow: "owner == 'team'",
                    awRequiredWhen: {
                        variable: "team_required",
                        init: "false"
                    }
                },
                kind: {
                    label: 'Type',
                    excludeModal: true,
                    type: 'select',
                    ngOptions: 'kind.label for kind in credential_kind_options track by kind.value', //  select as label for value in array 'kind.label for kind in credential_kind_options',
                    ngChange: 'kindChange()',
                    addRequired: true,
                    editRequired: true,
                    awPopOver:'<dl>\n' +
                            '<dt>Machine</dt>\n' +
                            '<dd>Authentication for remote machine access. This can include SSH keys, usernames, passwords, ' +
                            'and sudo information. Machine credentials are used when submitting jobs to run playbooks against ' +
                            'remote hosts.</dd>' +
                            '<dt>Source Control</dt>\n' +
                            '<dd>Used to check out and synchronize playbook repositories with a remote source control ' +
                            'management system such as Git, Subversion (svn), or Mercurial (hg). These credentials are ' +
                            'used on the Projects tab.</dd>\n' +
                            '<dt>Others (Cloud Providers)</dt>\n' +
                            '<dd>Access keys for authenticating to the specific ' +
                            'cloud provider, usually used for inventory sync ' +
                            'and deployment.</dd>\n' +
                            '</dl>\n',
                    dataTitle: 'Type',
                    dataPlacement: 'right',
                    dataContainer: "body"
                    // helpCollapse: [{
                    //     hdr: 'Select a Credential Type',
                    //     content: '<dl>\n' +
                    //         '<dt>Machine</dt>\n' +
                    //         '<dd>Authentication for remote machine access. This can include SSH keys, usernames, passwords, ' +
                    //         'and sudo information. Machine credentials are used when submitting jobs to run playbooks against ' +
                    //         'remote hosts.</dd>' +
                    //         '<dt>Source Control</dt>\n' +
                    //         '<dd>Used to check out and synchronize playbook repositories with a remote source control ' +
                    //         'management system such as Git, Subversion (svn), or Mercurial (hg). These credentials are ' +
                    //         'used on the Projects tab.</dd>\n' +
                    //         '<dt>Others (Cloud Providers)</dt>\n' +
                    //         '<dd>Access keys for authenticating to the specific ' +
                    //         'cloud provider, usually used for inventory sync ' +
                    //         'and deployment.</dd>\n' +
                    //         '</dl>\n'
                    // }]
                },
                access_key: {
                    label: 'Access Key',
                    type: 'text',
                    ngShow: "kind.value == 'aws'",
                    awRequiredWhen: {
                        variable: "aws_required",
                        init: false
                    },
                    autocomplete: false,
                    apiField: 'username'
                },
                secret_key: {
                    label: 'Secret Key',
                    type: 'sensitive',
                    ngShow: "kind.value == 'aws'",
                    awRequiredWhen: {
                        variable: "aws_required",
                        init: false
                    },
                    autocomplete: false,
                    ask: false,
                    clear: false,
                    hasShowInputButton: true,
                    apiField: 'passwowrd'
                },
                "host": {
                    labelBind: 'hostLabel',
                    type: 'text',
                    ngShow: "kind.value == 'vmware' || kind.value == 'openstack'",
                    awPopOverWatch: "hostPopOver",
                    awPopOver: "set in helpers/credentials",
                    dataTitle: 'Host',
                    dataPlacement: 'right',
                    dataContainer: "body",
                    autocomplete: false,
                    awRequiredWhen: {
                        variable: 'host_required',
                        init: false
                    }
                },
                "username": {
                    labelBind: 'usernameLabel',
                    type: 'text',
                    ngShow: "kind.value && kind.value !== 'aws' && " +
                            "kind.value !== 'gce' && kind.value!=='azure'",
                    awRequiredWhen: {
                        variable: 'username_required',
                        init: false
                    },
                    autocomplete: false
                },
                "email_address": {
                    labelBind: 'usernameLabel',
                    type: 'email',
                    ngShow: "kind.value === 'gce'",
                    awRequiredWhen: {
                        variable: 'email_required',
                        init: false
                    },
                    autocomplete: false,
                    awPopOver: '<p>The email address assigned to the Google Compute Engine <b><i>service account.</b></i></p>',
                    dataTitle: 'Email',
                    dataPlacement: 'right',
                    dataContainer: "body"
                },
                "subscription_id": {
                    labelBind: "usernameLabel",
                    type: 'text',
                    ngShow: "kind.value == 'azure'",
                    awRequiredWhen: {
                        variable: 'subscription_required',
                        init: false
                    },
                    addRequired: false,
                    editRequired: false,
                    autocomplete: false,
                    awPopOver: '<p>Subscription ID is an Azure construct, which is mapped to a username.</p>',
                    dataTitle: 'Subscription ID',
                    dataPlacement: 'right',
                    dataContainer: "body"

                },
                "api_key": {
                    label: 'API Key',
                    type: 'sensitive',
                    ngShow: "kind.value == 'rax'",
                    awRequiredWhen: {
                        variable: "rackspace_required",
                        init: false
                    },
                    autocomplete: false,
                    ask: false,
                    hasShowInputButton: true,
                    clear: false,
                },
                "password": {
                    labelBind: 'passwordLabel',
                    type: 'sensitive',
                    ngShow: "kind.value == 'scm' || kind.value == 'vmware' || kind.value == 'openstack'",
                    addRequired: false,
                    editRequired: false,
                    ask: false,
                    clear: false,
                    autocomplete: false,
                    hasShowInputButton: true,
                    awRequiredWhen: {
                        variable: "password_required",
                        init: false
                    }
                },
                "ssh_password": {
                    label: 'Password', // formally 'SSH Password'
                    type: 'sensitive',
                    ngShow: "kind.value == 'ssh'",
                    addRequired: false,
                    editRequired: false,
                    ask: true,
                    hasShowInputButton: true,
                    autocomplete: false
                },
                "ssh_key_data": {
                    labelBind: 'sshKeyDataLabel',
                    type: 'textarea',
                    ngShow: "kind.value == 'ssh' || kind.value == 'scm' || " +
                            "kind.value == 'gce' || kind.value == 'azure'",
                    awRequiredWhen: {
                        variable: 'key_required',
                        init: true
                    },
                    hintText: "{{ key_hint }}",
                    addRequired: false,
                    editRequired: false,
                    awDropFile: true,
                    'class': 'ssh-key-field',
                    rows: 10,
                    awPopOver: "SSH key description",
                    awPopOverWatch:   "key_description",
                    dataTitle: 'Help',
                    dataPlacement: 'right',
                    dataContainer: "body"
                },
                "ssh_key_unlock": {
                    label: 'Private Key Passphrase',
                    type: 'sensitive',
                    ngShow: "kind.value == 'ssh' || kind.value == 'scm'",
                    addRequired: false,
                    editRequired: false,
                    ask: true,
                    hasShowInputButton: true,
                    askShow: "kind.value == 'ssh'",  // Only allow ask for machine credentials
                },
                "become_method": {
                    label: "Privilege Escalation",
                    // hintText: "If your playbooks use privilege escalation (\"sudo: true\", \"su: true\", etc), you can specify the username to become, and the password to use here.",
                    type: 'select',
                    ngShow: "kind.value == 'ssh'",
                    dataTitle: 'Privilege Escalation',
                    ngOptions: 'become.label for become in become_options track by become.value',
                    awPopOver: "<p>Specify a username for 'become' operations. " +
                    "This is equivalent to specifying the <code>--become-method=BECOME_METHOD</code> parameter, where <code>BECOME_METHOD</code> could be "+
                    "<code>sudo | su | pbrun | pfexec | runas</code> <br>(defaults to <code>sudo</code>)</p>",
                    dataPlacement: 'right',
                    dataContainer: "body"
                },
                "become_username": {
                    label: 'Privilege Escalation Username',
                    type: 'text',
                    ngShow: "kind.value == 'ssh' && become_method",
                    addRequired: false,
                    editRequired: false,
                    autocomplete: false
                },
                "become_password": {
                    label: 'Privilege Escalation Password',
                    type: 'sensitive',
                    ngShow: "kind.value == 'ssh' && become_method",
                    addRequired: false,
                    editRequired: false,
                    ask: true,
                    hasShowInputButton: true,
                    autocomplete: false
                },
                "project": {
                    labelBind: 'projectLabel',
                    type: 'text',
                    ngShow: "kind.value == 'gce' || kind.value == 'openstack'",
                    awPopOverWatch: "projectPopOver",
                    awPopOver: "set in helpers/credentials",
                    dataTitle: 'Project ID',
                    dataPlacement: 'right',
                    dataContainer: "body",
                    addRequired: false,
                    editRequired: false,
                    awRequiredWhen: {
                        variable: 'project_required',
                        init: false
                    }
                },
                "vault_password": {
                    label: "Vault Password",
                    type: 'sensitive',
                    ngShow: "kind.value == 'ssh'",
                    addRequired: false,
                    editRequired: false,
                    ask: true,
                    hasShowInputButton: true,
                    autocomplete: false
                }
            },

            buttons: {
                save: {
                    label: 'Save',
                    ngClick: 'formSave()', //$scope.function to call on click, optional
                    ngDisabled: true //Disable when $pristine or $invalid, optional
                },
                reset: {
                    ngClick: 'formReset()',
                    ngDisabled: true //Disabled when $pristine
                }
            },

            related: {}

        });