New page to assign one auth source to multiple users - refs BT#22986

Author: AngelFQC

assets/vue/router/accessurl.js

@@ -0,0 +1,13 @@
+export default {
+  meta: { requiresAdmin: true },
+  path: "/access-url",
+  component: () => import("../components/layout/SimpleRouterViewLayout.vue"),
+  children: [
+    {
+      path: "auth-sources",
+      name: "AccessUrlAuthSourcesAssign",
+      meta: { requiresAuth: true },
+      component: () => import("../views/accessurl/AccessUrlAuthSourcesAssign.vue"),
+    },
+  ],
+}

assets/vue/router/index.js

@@ -16,6 +16,7 @@ import publicPageRoutes from "./publicPage"
 import socialNetworkRoutes from "./social"
 import fileManagerRoutes from "./filemanager"
 import skillRoutes from "./skill"
+import accessUrlRoutes from "./accessurl"
 
 //import courseCategoryRoutes from './coursecategory';
 import documents from "./documents"
@@ -259,6 +260,7 @@ const router = createRouter({
     publicPageRoutes,
     skillRoutes,
     sessionAdminRoutes,
+    accessUrlRoutes,
   ],
 })
 

assets/vue/services/accessurlService.js

@@ -10,3 +10,9 @@ export async function findUserActivePortals(userIri) {
 
   return items
 }
+
+export async function findAll() {
+  const { items } = await baseService.getCollection("/api/access_urls")
+
+  return items
+}

assets/vue/services/baseService.js

@@ -33,7 +33,7 @@ export default {
     }
 
     return {
-      totalItems: data.totalItems,
+      totalItems: data["hydra:totalItems"] || data.totalItems,
       items: data["hydra:member"],
       nextPageParams,
     }

assets/vue/views/accessurl/AccessUrlAuthSourcesAssign.vue

@@ -0,0 +1,159 @@
+<script setup>
+import { ref } from "vue"
+import { useI18n } from "vue-i18n"
+import { useRouter } from "vue-router"
+import SectionHeader from "../../components/layout/SectionHeader.vue"
+import BaseButton from "../../components/basecomponents/BaseButton.vue"
+import BaseToolbar from "../../components/basecomponents/BaseToolbar.vue"
+import BaseSelect from "../../components/basecomponents/BaseSelect.vue"
+import BaseTable from "../../components/basecomponents/BaseTable.vue"
+import baseService from "../../services/baseService"
+import { findAll as listAccessUrl } from "../../services/accessurlService"
+import userService from "../../services/userService"
+import { useNotification } from "../../composables/notification"
+
+const { t } = useI18n()
+const router = useRouter()
+
+const { showErrorNotification, showSuccessNotification } = useNotification()
+
+const accessUrlList = ref([])
+const authSourceList = ref([])
+const userList = ref([])
+const userListTotal = ref(0)
+
+const accessUrl = ref(null)
+const authSource = ref(null)
+const selectedUsers = ref([])
+const isLoadingUserList = ref(true)
+const isLoadingAssign = ref(false)
+
+async function listAuthSourcesByAccessUrl({ value: accessUrlIri }) {
+  authSourceList.value = []
+  authSource.value = null
+
+  try {
+    const data = await baseService.get("/access-url/auth-sources/list", { access_url: accessUrlIri })
+
+    authSourceList.value = data.map((methodName) => ({ label: methodName, value: methodName }))
+  } catch (error) {
+    showErrorNotification(error)
+  }
+}
+
+async function listUsers({ page, rows }) {
+  isLoadingUserList.value = true
+
+  try {
+    const { totalItems, items } = await userService.findAll({
+      page: page + 1,
+      itemsPerPage: rows,
+    })
+
+    userListTotal.value = totalItems
+    userList.value = items
+  } catch (error) {
+    showErrorNotification(error)
+  } finally {
+    isLoadingUserList.value = false
+  }
+}
+
+async function onPage({ page, rows }) {
+  await listUsers({ page, rows })
+}
+
+async function assignAuthSources() {
+  isLoadingAssign.value = true
+
+  try {
+    await baseService.post(
+      "/access-url/auth-sources/assign",
+      {
+        users: selectedUsers.value.map((userInfo) => userInfo["@id"]),
+        auth_source: authSource.value,
+        access_url: accessUrl.value,
+      },
+      true,
+    )
+
+    showSuccessNotification(t("Auth sources assigned successfully"))
+
+    selectedUsers.value = []
+  } catch (e) {
+    showErrorNotification(e)
+  } finally {
+    isLoadingAssign.value = false
+  }
+}
+
+listAccessUrl().then((items) => (accessUrlList.value = items))
+listUsers({ page: 0, rows: 20 })
+</script>
+
+<template>
+  <SectionHeader :title="t('Assign auth sources to users')" />
+
+  <BaseToolbar>
+    <template #start>
+      <BaseButton
+        :title="t('Back to user assignment page')"
+        icon="back"
+        only-icon
+        type="black"
+        @click="router.back()"
+      />
+    </template>
+  </BaseToolbar>
+
+  <div class="grid grid-flow-row-dense md:grid-cols-3 gap-4">
+    <div class="md:col-span-2">
+      <BaseTable
+        v-model:selected-items="selectedUsers"
+        :is-loading="isLoadingUserList"
+        :total-items="userListTotal"
+        :values="userList"
+        data-key="@id"
+        lazy
+        @page="onPage"
+      >
+        <Column selectionMode="multiple" />
+
+        <Column
+          field="fullName"
+          :header="t('Full name')"
+        />
+      </BaseTable>
+    </div>
+
+    <div>
+      <BaseSelect
+        id="access_url"
+        v-model="accessUrl"
+        :disabled="0 === accessUrlList.length"
+        :label="t('Access URL')"
+        :options="accessUrlList"
+        option-label="url"
+        option-value="@id"
+        @change="listAuthSourcesByAccessUrl"
+      />
+
+      <BaseSelect
+        id="auth_source"
+        v-model="authSource"
+        :disabled="0 === authSourceList.length"
+        :label="t('Auth source')"
+        :options="authSourceList"
+      />
+
+      <BaseButton
+        :disabled="!accessUrl || !authSource || 0 === selectedUsers.length || isLoadingAssign"
+        :is-loading="isLoadingAssign"
+        :label="t('Assign')"
+        icon="save"
+        type="primary"
+        @click="assignAuthSources"
+      />
+    </div>
+  </div>
+</template>

public/main/admin/access_urls.php

@@ -171,6 +171,10 @@
         Display::getMdiIcon('file-tree-outline', 'ch-tool-icon', null, ICON_SIZE_MEDIUM, get_lang('Manage course categories')),
         api_get_path(WEB_CODE_PATH).'admin/access_url_edit_course_category_to_url.php'
     );
+    $actions .= Display::url(
+        Display::getMdiIcon('clipboard-account', 'ch-tool-icon', null, ICON_SIZE_MEDIUM, get_lang('Assign auth sources to users')),
+        "/access-url/auth-sources"
+    );
 }
 
 // 6) If still localhost, show the tooltip inline next to the button

src/CoreBundle/Controller/AccessUrlController.php

@@ -6,13 +6,17 @@
 
 namespace Chamilo\CoreBundle\Controller;
 
+use ApiPlatform\Api\IriConverterInterface;
 use Chamilo\CoreBundle\Entity\AccessUrl;
 use Chamilo\CoreBundle\Entity\User;
+use Chamilo\CoreBundle\Helpers\AuthenticationConfigHelper;
 use Doctrine\ORM\EntityManagerInterface;
+use Exception;
 use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
+use Symfony\Component\HttpFoundation\JsonResponse;
 use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\Response;
-use Symfony\Component\Routing\Annotation\Route;
+use Symfony\Component\Routing\Attribute\Route;
 use Symfony\Component\Security\Http\Attribute\IsGranted;
 use Symfony\Contracts\Translation\TranslatorInterface;
 
@@ -172,4 +176,75 @@ private function formatReport(string $icon, string $message, array $params): str
 
         return \sprintf('<i class="mdi mdi-%s text-base me-1"></i> %s', $icon, $text);
     }
+
+    #[Route('/auth-sources/list', methods: ['GET'])]
+    #[IsGranted('ROLE_ADMIN')]
+    public function authSourcesList(
+        Request $request,
+        AuthenticationConfigHelper $authConfigHelper,
+        IriConverterInterface $iriConverter,
+    ): JsonResponse {
+        $accessUrlIri = $request->query->get('access_url', '');
+
+        if (!$accessUrlIri) {
+            throw $this->createNotFoundException('Access URL not found');
+        }
+
+        try {
+            /** @var AccessUrl $accessUrl */
+            $accessUrl = $iriConverter->getResourceFromIri($accessUrlIri);
+        } catch (Exception) {
+            throw $this->createNotFoundException('Access URL not found');
+        }
+
+        $authSources = $authConfigHelper->getAuthSourceAuthentications($accessUrl);
+
+        return new JsonResponse($authSources);
+    }
+
+    /**
+     * @throws Exception
+     */
+    #[Route('/auth-sources/assign', methods: ['POST'])]
+    #[IsGranted('ROLE_ADMIN')]
+    public function authSourcesAssign(
+        Request $request,
+        AuthenticationConfigHelper $authConfigHelper,
+        IriConverterInterface $iriConverter,
+        EntityManagerInterface $entityManager,
+    ): Response {
+        $data = json_decode($request->getContent(), true);
+
+        if (empty($data['users']) || empty($data['access_url'] || empty($data['auth_source']))) {
+            throw new Exception('Missing required parameters');
+        }
+
+        try {
+            /** @var AccessUrl $accessUrl */
+            $accessUrl = $iriConverter->getResourceFromIri($data['access_url']);
+        } catch (Exception) {
+            throw $this->createNotFoundException('Access URL not found');
+        }
+
+        $authSources = $authConfigHelper->getAuthSourceAuthentications($accessUrl);
+
+        if (!in_array($data['auth_source'], $authSources)) {
+            throw new Exception('User authentication method not allowed');
+        }
+
+        foreach ($data['users'] as $userIri) {
+            try {
+                /** @var User $user */
+                $user = $iriConverter->getResourceFromIri($userIri);
+            } catch (Exception) {
+                continue;
+            }
+
+            $user->addAuthSourceByAuthentication($data['auth_source'], $accessUrl);
+        }
+
+        $entityManager->flush();
+
+        return new Response(null, Response::HTTP_NO_CONTENT);
+    }
 }

src/CoreBundle/Controller/IndexController.php

@@ -35,6 +35,7 @@ class IndexController extends BaseController
     #[Route('/admin-dashboard/{vueRouting}', name: 'admin_dashboard_vue_entry', requirements: ['vueRouting' => '.+'])]
     #[Route('/p/{slug}', name: 'public_page')]
     #[Route('/skill/wheel', name: 'skill_wheel')]
+    #[Route('/access-url/auth-sources', methods: ['GET'])]
     public function index(): Response
     {
         return $this->render('@ChamiloCore/Layout/no_layout.html.twig', ['content' => '']);

src/CoreBundle/Entity/User.php

@@ -2538,12 +2538,16 @@ public function addAuthSource(UserAuthSource $authSource): static
 
     public function addAuthSourceByAuthentication(string $authentication, AccessUrl $url): static
     {
-        $authSource = (new UserAuthSource())
-            ->setAuthentication($authentication)
-            ->setUrl($url)
-        ;
+        $authSource = $this->getAuthSourceByAuthentication($authentication, $url);
+
+        if (!$authSource) {
+            $authSource = (new UserAuthSource())
+                ->setAuthentication($authentication)
+                ->setUrl($url)
+            ;
 
-        $this->addAuthSource($authSource);
+            $this->addAuthSource($authSource);
+        }
 
         return $this;
     }
@@ -2556,10 +2560,11 @@ public function hasAuthSourceByAuthentication(string $authentication): bool
         );
     }
 
-    public function getAuthSourceByAuthentication(string $authentication): UserAuthSource
+    public function getAuthSourceByAuthentication(string $authentication, AccessUrl $accessUrl): ?UserAuthSource
     {
         return $this->authSources->findFirst(
-            fn (UserAuthSource $authSource) => $authSource->getAuthentication() === $authentication
+            fn (int $index, UserAuthSource $authSource) => $authSource->getAuthentication() === $authentication
+                && $authSource->getUrl()->getId() === $accessUrl->getId()
         );
     }