3scale · jlledom · Nov 26, 2024 · Nov 26, 2024 · Nov 26, 2024 · Dec 4, 2024
diff --git a/app/controllers/provider/admin/user/access_tokens_controller.rb b/app/controllers/provider/admin/user/access_tokens_controller.rb
@@ -1,44 +1,59 @@
-class Provider::Admin::User::AccessTokensController < Provider::Admin::User::BaseController
-  inherit_resources
-  defaults route_prefix: 'provider_admin_user', resource_class: AccessToken
-  actions :index, :new, :create, :edit, :update, :destroy
-
-  authorize_resource
-  activate_menu :account, :personal, :tokens
-  before_action :authorize_access_tokens
-  before_action :disable_client_cache
-
-  def create
-    create! do |success, _failure|
-      success.html do
-        flash[:token] = @access_token.id
-        flash[:notice] = 'Access Token was successfully created.'
-        redirect_to(collection_url)
-      end
-    end
-  end
+# frozen_string_literal: true
 
-  def index
-    index!
-    @last_access_key = flash[:token]
-  end
+module Provider
+  module Admin
+    module User
+      class AccessTokensController < BaseController
+        inherit_resources
+        defaults route_prefix: 'provider_admin_user', resource_class: AccessToken
+        actions :index, :new, :create, :edit, :update, :destroy
 
-  def update
-    update! do |success, _failure|
-      success.html do
-        flash[:notice] = 'Access Token was successfully updated.'
-        redirect_to(collection_url)
-      end
-    end
-  end
+        authorize_resource
+        activate_menu :account, :personal, :tokens
+        before_action :authorize_access_tokens
+        before_action :disable_client_cache
+        before_action :load_presenter, only: %i[new create]
 
-  private
+        def new; end
 
-  def authorize_access_tokens
-    authorize! :manage, :access_tokens, current_user
-  end
+        def create
+          create! do |success, _failure|
+            success.html do
+              flash[:token] = @access_token.id
+              flash[:notice] = 'Access Token was successfully created.'
+              redirect_to(collection_url)
+            end
+          end
+        end
 
-  def begin_of_association_chain
-    current_user
+        def index
+          index!
+          @last_access_key = flash[:token]
+        end
+
+        def update
+          update! do |success, _failure|
+            success.html do
+              flash[:notice] = 'Access Token was successfully updated.'
+              redirect_to(collection_url)
+            end
+          end
+        end
+
+        private
+
+        def load_presenter
+          @presenter = AccessTokensNewPresenter.new(current_account)
+        end
+
+        def authorize_access_tokens
+          authorize! :manage, :access_tokens, current_user
+        end
+
+        def begin_of_association_chain
+          current_user
+        end
+      end
+    end
   end
 end
diff --git a/app/javascript/packs/expiration_date_picker.ts b/app/javascript/packs/expiration_date_picker.ts
@@ -0,0 +1,22 @@
+import { ExpirationDatePickerWrapper } from 'AccessTokens/components/ExpirationDatePicker'
+
+import type { Props } from 'AccessTokens/components/ExpirationDatePicker'
+
+import { safeFromJsonString } from '../src/utilities/json-utils'
+
+document.addEventListener('DOMContentLoaded', () => {
+  const containerId = 'expiration-date-picker-container'
+  const container = document.getElementById(containerId)
+
+  if (!container) {
+    throw new Error(`Missing container with id "${containerId}"`)
+  }
+
+  const props = safeFromJsonString<Props>(container.dataset.props)
+
+  if (!props) {
+    throw new Error('Missing props')
+  }
+
+  ExpirationDatePickerWrapper(props, containerId)
+})
diff --git a/app/javascript/src/AccessTokens/components/ExpirationDatePicker.scss b/app/javascript/src/AccessTokens/components/ExpirationDatePicker.scss
@@ -0,0 +1,14 @@
+@import '~@patternfly/patternfly/patternfly-addons.css';
+
+.pf-c-calendar-month, .pf-c-form-control-expiration {
+  width: 50%;
+}
+
+.pf-c-form-control-expiration {
+  margin-right: 1em;
+}
+
+button.pf-c-form__group-label-help {
+  min-width: auto;
+  width: auto;
+}
diff --git a/app/javascript/src/AccessTokens/components/ExpirationDatePicker.tsx b/app/javascript/src/AccessTokens/components/ExpirationDatePicker.tsx
@@ -0,0 +1,167 @@
+import { useState, useMemo } from 'react'
+import { Alert, CalendarMonth, FormGroup, FormSelect, FormSelectOption, Popover } from '@patternfly/react-core'
+import OutlinedQuestionCircleIcon from '@patternfly/react-icons/dist/js/icons/outlined-question-circle-icon'
+
+import { createReactWrapper } from 'utilities/createReactWrapper'
+
+import type { FunctionComponent, FormEvent } from 'react'
+
+import './ExpirationDatePicker.scss'
+
+interface ExpirationItem {
+  id: string;
+  label: string;
+  period: number; // In seconds
+}
+
+const collection: ExpirationItem[] = [
+  { id: '7', label: '7 days', period: 7 },
+  { id: '30', label: '30 days', period: 30 },
+  { id: '60', label: '60 days', period: 60 },
+  { id: '90', label: '90 days', period: 90 },
+  { id: 'custom', label: 'Custom...', period: 0 },
+  { id: 'no-exp', label: 'No expiration', period: 0 }
+]
+
+const dayMs = 60 * 60 * 24 * 1000
+
+interface Props {
+  id: string;
+  label: string | null;
+  tzOffset?: number;
+}
+
+const ExpirationDatePicker: FunctionComponent<Props> = ({ id, label, tzOffset }) => {
+  const [selectedItem, setSelectedItem] = useState(collection[0])
+  const [pickedDate, setPickedDate] = useState(new Date())
+  const fieldName = `human_${id}`
+  const fieldLabel = label ?? 'Expires in'
+
+  const fieldDate = useMemo(() => {
+    if (selectedItem.period === 0) return null
+
+    return new Date(new Date().getTime() + selectedItem.period * dayMs)
+  }, [selectedItem])
+
+  const dateValue = useMemo(() => {
+    let value = ''
+
+    if (fieldDate) {
+      value = fieldDate.toISOString()
+    } else if (selectedItem.id === 'custom' ) {
+      value = pickedDate.toISOString()
+    }
+
+    return value
+  }, [fieldDate, selectedItem, pickedDate])
+
+  const formattedDateValue = useMemo(() => {
+    if (!dateValue) return
+
+    const formatter = Intl.DateTimeFormat('en-US', {
+      month: 'long', day: 'numeric', year: 'numeric', hour: 'numeric', minute: 'numeric', hour12: false
+    })
+    const date = new Date(dateValue)
+
+    return formatter.format(date)
+  }, [dateValue])
+
+  const fieldHint = useMemo(() => {
+    if (!formattedDateValue) return
+
+    return `The token will expire on ${formattedDateValue}`
+  }, [formattedDateValue])
+
+  const tzMismatch = useMemo(() => {
+    if (tzOffset === undefined) return
+
+    // Timezone offset in the same format as ActiveSupport
+    const jsTzOffset = new Date().getTimezoneOffset() * -60
+
+    return jsTzOffset !== tzOffset
+  }, [tzOffset])
+
+  const labelIcon = useMemo(() => {
+    if (!tzMismatch) return
+
+    return (
+      <Popover
+        bodyContent={(
+          <p>
+            Your local time zone differs from the provider default.
+            The token will expire at the time you selected in your local time zone.
+          </p>
+        )}
+        headerContent={(
+          <span>Time zone mismatch</span>
+        )}
+      >
+        <button
+          aria-describedby="form-group-label-info"
+          aria-label="Time zone mismatch warning"
+          className="pf-c-form__group-label-help"
+          type="button"
+        >
+          <OutlinedQuestionCircleIcon noVerticalAlign />
+        </button>
+      </Popover>
+    )
+  }, [tzMismatch])
+
+  const handleOnChange = (_value: string, event: FormEvent<HTMLSelectElement>) => {
+    const value = (event.target as HTMLSelectElement).value
+    const selected = collection.find(i => i.id === value) ?? null
+
+    if (selected === null) return
+
+    setSelectedItem(selected)
+    setPickedDate(new Date())
+  }
+
+  return (
+    <>
+      <FormGroup
+        isRequired
+        fieldId={fieldName}
+        helperText={fieldHint}
+        label={fieldLabel}
+        labelIcon={labelIcon}
+      >
+        <FormSelect
+          className="pf-c-form-control-expiration"
+          id={fieldName}
+          value={selectedItem.id}
+          onChange={handleOnChange}
+        >
+          {collection.map((item: ExpirationItem) => {
+            return (
+              <FormSelectOption
+                key={item.id}
+                label={item.label}
+                value={item.id}
+              />
+            )
+          })}
+        </FormSelect>
+      </FormGroup>
+      <input id={id} name={id} type="hidden" value={dateValue} />
+      {selectedItem.id === 'custom' && (
+        <CalendarMonth className="pf-u-mt-md" date={pickedDate} onChange={setPickedDate} />
+      )}
+      {dateValue === '' && (
+        <>
+          <br />
+          <Alert title="Expiration is recommended" variant="warning">
+            It is strongly recommended that you set an expiration date for your token to help keep your information
+            secure
+          </Alert>
+        </>
+      )}
+    </>
+  )
+}
+
+const ExpirationDatePickerWrapper = (props: Props, containerId: string): void => { createReactWrapper(<ExpirationDatePicker id={props.id} label={props.label} tzOffset={props.tzOffset} />, containerId) }
+
+export type { ExpirationItem, Props }
+export { ExpirationDatePicker, ExpirationDatePickerWrapper }
diff --git a/app/models/access_token.rb b/app/models/access_token.rb
@@ -140,7 +140,7 @@ def validate_scope_exists
   def expires_at=(value)
     return if value.blank?
 
-    DateTime.strptime(value)
+    DateTime.parse(value)
 
     super value
   rescue StandardError

diff --git a/app/presenters/provider/admin/user/access_tokens_new_presenter.rb b/app/presenters/provider/admin/user/access_tokens_new_presenter.rb
@@ -0,0 +1,13 @@
+# frozen_string_literal: true
+
+class Provider::Admin::User::AccessTokensNewPresenter
+
+  def initialize(provider)
+    @provider = provider
+    @timezone = ActiveSupport::TimeZone.new(provider.timezone)
+  end
+
+  def provider_timezone_offset
+    @timezone.utc_offset
+  end
+end
diff --git a/app/views/provider/admin/user/access_tokens/_form.html.slim b/app/views/provider/admin/user/access_tokens/_form.html.slim
@@ -7,3 +7,14 @@
 = form.input :permission, as: :patternfly_select,
                           collection: @access_token.available_permissions,
                           include_blank: false
+
+- if @access_token.persisted?
+  .pf-c-form__group
+    .pf-c-form__group-label
+      label.pf-c-form__label
+        span.pf-c-form__label-text
+          = t('access_token_options.expires_at')
+    .pf-c-form__group-control
+      = @access_token.expires_at.present? ? l(@access_token.expires_at) : t('access_token_options.no_expiration')
+- else
+  div id='expiration-date-picker-container' data-props={ id: 'access_token[expires_at]', label: t('access_token_options.expires_in'), tzOffset: @presenter.provider_timezone_offset }.to_json
diff --git a/app/views/provider/admin/user/access_tokens/index.html.slim b/app/views/provider/admin/user/access_tokens/index.html.slim
@@ -31,6 +31,13 @@
           dd class="pf-c-description-list__description"
             div class="pf-c-description-list__text"
              = token.human_permission
+        div class="pf-c-description-list__group"
+          dt class="pf-c-description-list__term"
+            span class="pf-c-description-list__text"
+              | Expires at
+          dd class="pf-c-description-list__description"
+            div class="pf-c-description-list__text"
+              = token.expires_at.present? ? l(token.expires_at) : t('access_token_options.no_expiration')
         div class="pf-c-description-list__group"
           dt class="pf-c-description-list__term"
             span class="pf-c-description-list__text"
@@ -58,6 +65,7 @@
         tr role="row"
           th role="columnheader" scope="col" Name
           th role="columnheader" scope="col" Scopes
+          th role="columnheader" scope="col" Expiration
           th role="columnheader" scope="col" Permission
           th role="columnheader" scope="col" class="pf-c-table__action pf-m-fit-content"
             = fancy_link_to 'Add Access Token', new_provider_admin_user_access_token_path, class: 'new' if allowed_scopes.any?
@@ -67,6 +75,7 @@
             tr role="row"
               td role="cell" data-label="Name" = token.name
               td role="cell" data-label="Scopes" = token.human_scopes.to_sentence
+              td role="cell" data-label="Expiration" = token.expires_at.present? ? l(token.expires_at) : t('access_token_options.no_expiration')
               td role="cell" data-label="Permission" = token.human_permission
               td role="cell" class="pf-c-table__action"
                 div class="pf-c-overflow-menu"

diff --git a/app/views/provider/admin/user/access_tokens/new.html.slim b/app/views/provider/admin/user/access_tokens/new.html.slim
@@ -2,6 +2,7 @@
 
 - content_for :javascripts do
   = javascript_packs_with_chunks_tag 'pf_form'
+  = javascript_packs_with_chunks_tag 'expiration_date_picker'
 
 div class="pf-c-card"
   div class="pf-c-card__body"

diff --git a/config/locales/en.yml b/config/locales/en.yml
@@ -65,6 +65,9 @@ en:
     cms: 'Developer Portal API'
     ro: 'Read Only'
     rw: 'Read & Write'
+    no_expiration: 'Never expires'
+    expires_at: 'Expires at'
+    expires_in: 'Expires in'
   notification_category_titles:
     account: 'Accounts'
     application: 'Applications'