cameleer/cameleer-saas
2
0
Fork 0
Code Issues 24 Pull Requests Actions 1 Packages Projects Releases Wiki Activity
Files
22752ffcb16a5ce2a9222d53d71bc7fc86f7d633
cameleer-saas/ui/src/router.tsx
hsiegeln 45bcc954ac
All checks were successful
CI / build (push) Successful in 1m8s
Details
CI / docker (push) Successful in 45s
Details
feat: certificate management with stage/activate/restore lifecycle 
Provider-based architecture (Docker now, K8s later):
- CertificateManager interface + DockerCertificateManager (file-based)
- Atomic swap via .wip files for safe cert replacement
- Stage -> Activate -> Archive lifecycle with one-deep rollback
- Bootstrap supports user-supplied certs via CERT_FILE/KEY_FILE/CA_FILE
- CA bundle aggregates platform + tenant CAs, distributed to containers
- Vendor UI: Certificates page with upload, activate, restore, discard
- Stale tenant tracking (ca_applied_at) with restart banner
- Conditional TLS skip removal when CA bundle exists

Includes design spec, migration V012, service + controller tests.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-04-10 18:29:02 +02:00

99 lines
4.1 KiB
TypeScript
Raw Blame History

import { Routes, Route, Navigate } from 'react-router';
import { LoginPage } from './auth/LoginPage';
import { CallbackPage } from './auth/CallbackPage';
import { ProtectedRoute } from './auth/ProtectedRoute';
import { OrgResolver } from './auth/OrgResolver';
import { Layout } from './components/Layout';
import { RequireScope } from './components/RequireScope';
import { useScopes } from './auth/useScopes';
import { useOrgStore } from './auth/useOrganization';
import { VendorTenantsPage } from './pages/vendor/VendorTenantsPage';
import { CreateTenantPage } from './pages/vendor/CreateTenantPage';
import { TenantDetailPage } from './pages/vendor/TenantDetailPage';
import { VendorAuditPage } from './pages/vendor/VendorAuditPage';
import { CertificatesPage } from './pages/vendor/CertificatesPage';
import { TenantDashboardPage } from './pages/tenant/TenantDashboardPage';
import { TenantLicensePage } from './pages/tenant/TenantLicensePage';
import { SsoPage } from './pages/tenant/SsoPage';
import { TeamPage } from './pages/tenant/TeamPage';
import { SettingsPage } from './pages/tenant/SettingsPage';
import { TenantAuditPage } from './pages/tenant/TenantAuditPage';
function LandingRedirect() {
const scopes = useScopes();
const { organizations, currentOrgId } = useOrgStore();
const currentOrg = organizations.find((o) => o.id === currentOrgId);
// Wait for scopes to be resolved — they're loaded async by OrgResolver.
// An empty set means "not yet loaded" (even viewer gets observe:read).
if (scopes.size === 0) {
return null; // OrgResolver is still fetching tokens
}
// Vendor → vendor console
if (scopes.has('platform:admin')) {
return <Navigate to="/vendor/tenants" replace />;
}
// Tenant admin → tenant portal
if (scopes.has('tenant:manage')) {
return <Navigate to="/tenant" replace />;
}
// Regular user (operator/viewer) → server dashboard directly
const serverUrl = currentOrg?.slug ? `/t/${currentOrg.slug}/` : '/server/';
window.location.href = serverUrl;
return null;
}
export function AppRouter() {
return (
<Routes>
<Route path="/login" element={<LoginPage />} />
<Route path="/callback" element={<CallbackPage />} />
<Route element={<ProtectedRoute />}>
<Route element={<OrgResolver />}>
<Route element={<Layout />}>
{/* Vendor console */}
<Route path="/vendor/tenants" element={
<RequireScope scope="platform:admin" fallback={<Navigate to="/tenant" replace />}>
<VendorTenantsPage />
</RequireScope>
} />
<Route path="/vendor/tenants/new" element={
<RequireScope scope="platform:admin" fallback={<Navigate to="/tenant" replace />}>
<CreateTenantPage />
</RequireScope>
} />
<Route path="/vendor/tenants/:id" element={
<RequireScope scope="platform:admin" fallback={<Navigate to="/tenant" replace />}>
<TenantDetailPage />
</RequireScope>
} />
<Route path="/vendor/audit" element={
<RequireScope scope="platform:admin" fallback={<Navigate to="/tenant" replace />}>
<VendorAuditPage />
</RequireScope>
} />
<Route path="/vendor/certificates" element={
<RequireScope scope="platform:admin" fallback={<Navigate to="/tenant" replace />}>
<CertificatesPage />
</RequireScope>
} />
{/* Tenant portal */}
<Route path="/tenant" element={<TenantDashboardPage />} />
<Route path="/tenant/license" element={<TenantLicensePage />} />
<Route path="/tenant/sso" element={<SsoPage />} />
<Route path="/tenant/team" element={<TeamPage />} />
<Route path="/tenant/audit" element={<TenantAuditPage />} />
<Route path="/tenant/settings" element={<SettingsPage />} />
{/* Default redirect — vendor goes to /vendor/tenants, customer to /tenant */}
<Route index element={<LandingRedirect />} />
</Route>
</Route>
</Route>
</Routes>
);
}
Reference in New Issue View Git Blame Copy Permalink