cameleer/design-system
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

refactor: use SplitPane and EntityList in Admin RBAC tabs

Browse Source 
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
This commit is contained in:
hsiegeln
2026-03-24 15:22:56 +01:00
parent eb62c80daf
commit bd4e22eafb
4 changed files with 519 additions and 642 deletions
Download Patch File Download Diff File Expand all files Collapse all files

361
src/pages/Admin/UserManagement/GroupsTab.tsx
View File

@@ -11,8 +11,10 @@ import { InlineEdit } from '../../../design-system/primitives/InlineEdit/InlineE
import { MultiSelect } from '../../../design-system/composites/MultiSelect/MultiSelect' import { MultiSelect } from '../../../design-system/composites/MultiSelect/MultiSelect'
import { ConfirmDialog } from '../../../design-system/composites/ConfirmDialog/ConfirmDialog' import { ConfirmDialog } from '../../../design-system/composites/ConfirmDialog/ConfirmDialog'
import { AlertDialog } from '../../../design-system/composites/AlertDialog/AlertDialog' import { AlertDialog } from '../../../design-system/composites/AlertDialog/AlertDialog'
import { SplitPane } from '../../../design-system/composites/SplitPane/SplitPane'
import { EntityList } from '../../../design-system/composites/EntityList/EntityList'
import { useToast } from '../../../design-system/composites/Toast/Toast' import { useToast } from '../../../design-system/composites/Toast/Toast'
import { MOCK_GROUPS, MOCK_USERS, MOCK_ROLES, getChildGroups, type MockGroup } from './rbacMocks' import { MOCK_GROUPS, MOCK_USERS, MOCK_ROLES, type MockGroup } from './rbacMocks'
import styles from './UserManagement.module.css' import styles from './UserManagement.module.css'
export function GroupsTab() { export function GroupsTab() {
@@ -83,207 +85,190 @@ export function GroupsTab() {
return ( return (
<> <>
<div className={styles.splitPane}> <SplitPane
<div className={styles.listPane}> list={
<div className={styles.listHeader}> <>
<Input {creating && (
placeholder="Search groups..." <div className={styles.createForm}>
value={search} <Input placeholder="Group name *" value={newName} onChange={(e) => setNewName(e.target.value)} />
onChange={(e) => setSearch(e.target.value)} {duplicateGroupName && <span style={{ color: 'var(--error)', fontSize: 11 }}>Group name already exists</span>}
onClear={() => setSearch('')} <Select
className={styles.listHeaderSearch} options={parentOptions}
/> value={newParent}
<Button size="sm" variant="secondary" onClick={() => setCreating(true)}> onChange={(e) => setNewParent(e.target.value)}
+ Add group />
</Button> <div className={styles.createFormActions}>
</div> <Button size="sm" variant="ghost" onClick={() => setCreating(false)}>Cancel</Button>
<Button size="sm" variant="primary" onClick={handleCreate} disabled={!newName.trim() || duplicateGroupName}>Create</Button>
{creating && (
<div className={styles.createForm}>
<Input placeholder="Group name *" value={newName} onChange={(e) => setNewName(e.target.value)} />
{duplicateGroupName && <span style={{ color: 'var(--error)', fontSize: 11 }}>Group name already exists</span>}
<Select
options={parentOptions}
value={newParent}
onChange={(e) => setNewParent(e.target.value)}
/>
<div className={styles.createFormActions}>
<Button size="sm" variant="ghost" onClick={() => setCreating(false)}>Cancel</Button>
<Button size="sm" variant="primary" onClick={handleCreate} disabled={!newName.trim() || duplicateGroupName}>Create</Button>
</div>
</div>
)}
<div className={styles.entityList} role="listbox" aria-label="Groups">
{filtered.map((group) => {
const groupChildren = groups.filter((g) => g.parentId === group.id)
const groupMembers = MOCK_USERS.filter((u) => u.directGroups.includes(group.id))
const groupParent = group.parentId ? groups.find((g) => g.id === group.parentId) : null
return (
<div
key={group.id}
className={`${styles.entityItem} ${selectedId === group.id ? styles.entityItemSelected : ''}`}
onClick={() => setSelectedId(group.id)}
role="option"
tabIndex={0}
aria-selected={selectedId === group.id}
onKeyDown={(e) => { if (e.key === 'Enter' || e.key === ' ') { e.preventDefault(); setSelectedId(group.id) } }}
>
<Avatar name={group.name} size="sm" />
<div className={styles.entityInfo}>
<div className={styles.entityName}>{group.name}</div>
<div className={styles.entityMeta}>
{groupParent ? `Child of ${groupParent.name}` : 'Top-level'}
{' · '}{groupChildren.length} children · {groupMembers.length} members
</div>
<div className={styles.entityTags}>
{group.directRoles.map((r) => <Badge key={r} label={r} color="warning" />)}
</div>
</div>
</div> </div>
) </div>
})}
{filtered.length === 0 && (
<div className={styles.emptySearch}>No groups match your search</div>
)} )}
</div>
</div>
<div className={styles.detailPane}> <EntityList
{selected ? ( items={filtered}
<> renderItem={(group) => {
<div className={styles.detailHeader}> const groupChildren = groups.filter((g) => g.parentId === group.id)
<Avatar name={selected.name} size="lg" /> const groupMembers = MOCK_USERS.filter((u) => u.directGroups.includes(group.id))
<div className={styles.detailHeaderInfo}> const groupParent = group.parentId ? groups.find((g) => g.id === group.parentId) : null
<div className={styles.detailName}> return (
{selected.builtIn ? selected.name : ( <>
<InlineEdit <Avatar name={group.name} size="sm" />
value={selected.name} <div className={styles.entityInfo}>
onSave={(v) => updateGroup(selected.id, { name: v })} <div className={styles.entityName}>{group.name}</div>
/> <div className={styles.entityMeta}>
)} {groupParent ? `Child of ${groupParent.name}` : 'Top-level'}
</div> {' · '}{groupChildren.length} children · {groupMembers.length} members
<div className={styles.detailEmail}> </div>
{parent ? `${parent.name} > ${selected.name}` : 'Top-level group'} <div className={styles.entityTags}>
{selected.builtIn && ' (built-in)'} {group.directRoles.map((r) => <Badge key={r} label={r} color="warning" />)}
</div> </div>
</div>
</>
)
}}
getItemId={(group) => group.id}
selectedId={selectedId ?? undefined}
onSelect={setSelectedId}
searchPlaceholder="Search groups..."
onSearch={setSearch}
addLabel="+ Add group"
onAdd={() => setCreating(true)}
emptyMessage="No groups match your search"
/>
</>
}
detail={selected ? (
<>
<div className={styles.detailHeader}>
<Avatar name={selected.name} size="lg" />
<div className={styles.detailHeaderInfo}>
<div className={styles.detailName}>
{selected.builtIn ? selected.name : (
<InlineEdit
value={selected.name}
onSave={(v) => updateGroup(selected.id, { name: v })}
/>
)}
</div>
<div className={styles.detailEmail}>
{parent ? `${parent.name} > ${selected.name}` : 'Top-level group'}
{selected.builtIn && ' (built-in)'}
</div> </div>
<Button
size="sm"
variant="danger"
onClick={() => setDeleteTarget(selected)}
disabled={selected.builtIn}
>
Delete
</Button>
</div> </div>
<Button
size="sm"
variant="danger"
onClick={() => setDeleteTarget(selected)}
disabled={selected.builtIn}
>
Delete
</Button>
</div>
<div className={styles.metaGrid}> <div className={styles.metaGrid}>
<span className={styles.metaLabel}>ID</span> <span className={styles.metaLabel}>ID</span>
<MonoText size="xs">{selected.id}</MonoText> <MonoText size="xs">{selected.id}</MonoText>
</div> </div>
{parent && ( {parent && (
<> <>
<SectionHeader>Member of</SectionHeader> <SectionHeader>Member of</SectionHeader>
<div className={styles.sectionTags}> <div className={styles.sectionTags}>
<Tag label={parent.name} color="auto" /> <Tag label={parent.name} color="auto" />
</div> </div>
</> </>
)} )}
<SectionHeader>Members (direct)</SectionHeader> <SectionHeader>Members (direct)</SectionHeader>
<div className={styles.sectionTags}> <div className={styles.sectionTags}>
{members.map((u) => ( {members.map((u) => (
<Tag <Tag
key={u.id} key={u.id}
label={u.displayName} label={u.displayName}
color="auto" color="auto"
onRemove={() => { onRemove={() => {
// Remove this group from the user's directGroups // Remove this group from the user's directGroups
// Note: in mock data we can't easily update MOCK_USERS, so this is visual only // Note: in mock data we can't easily update MOCK_USERS, so this is visual only
toast({ title: 'Member removed', description: u.displayName, variant: 'success' }) toast({ title: 'Member removed', description: u.displayName, variant: 'success' })
}}
/>
))}
{members.length === 0 && <span className={styles.inheritedNote}>(no members)</span>}
<MultiSelect
options={availableMembers}
value={[]}
onChange={(ids) => {
toast({ title: `${ids.length} member(s) added`, variant: 'success' })
}} }}
placeholder="+ Add"
/> />
</div> ))}
{children.length > 0 && ( {members.length === 0 && <span className={styles.inheritedNote}>(no members)</span>}
<span className={styles.inheritedNote}> <MultiSelect
+ all members of {children.map((c) => c.name).join(', ')} options={availableMembers}
</span> value={[]}
)} onChange={(ids) => {
toast({ title: `${ids.length} member(s) added`, variant: 'success' })
}}
placeholder="+ Add"
/>
</div>
{children.length > 0 && (
<span className={styles.inheritedNote}>
+ all members of {children.map((c) => c.name).join(', ')}
</span>
)}
<SectionHeader>Child groups</SectionHeader> <SectionHeader>Child groups</SectionHeader>
<div className={styles.sectionTags}> <div className={styles.sectionTags}>
{children.map((c) => ( {children.map((c) => (
<Tag <Tag
key={c.id} key={c.id}
label={c.name} label={c.name}
color="success" color="success"
onRemove={() => { onRemove={() => {
updateGroup(c.id, { parentId: null }) updateGroup(c.id, { parentId: null })
toast({ title: 'Child group removed', description: c.name, variant: 'success' }) toast({ title: 'Child group removed', description: c.name, variant: 'success' })
}} }}
/> />
))} ))}
{children.length === 0 && <span className={styles.inheritedNote}>(no child groups)</span>} {children.length === 0 && <span className={styles.inheritedNote}>(no child groups)</span>}
<MultiSelect <MultiSelect
options={availableChildGroups} options={availableChildGroups}
value={[]} value={[]}
onChange={(ids) => { onChange={(ids) => {
for (const id of ids) { for (const id of ids) {
updateGroup(id, { parentId: selected!.id }) updateGroup(id, { parentId: selected!.id })
}
toast({ title: `${ids.length} child group(s) added`, variant: 'success' })
}}
placeholder="+ Add"
/>
</div>
<SectionHeader>Assigned roles</SectionHeader>
<div className={styles.sectionTags}>
{selected.directRoles.map((r) => (
<Tag
key={r}
label={r}
color="warning"
onRemove={() => {
const memberCount = MOCK_USERS.filter((u) => u.directGroups.includes(selected.id)).length
if (memberCount > 0) {
setRemoveRoleTarget(r)
} else {
updateGroup(selected.id, { directRoles: selected.directRoles.filter((role) => role !== r) })
toast({ title: 'Role removed', variant: 'success' })
} }
toast({ title: `${ids.length} child group(s) added`, variant: 'success' })
}} }}
placeholder="+ Add"
/> />
</div> ))}
{selected.directRoles.length === 0 && <span className={styles.inheritedNote}>(no roles)</span>}
<SectionHeader>Assigned roles</SectionHeader> <MultiSelect
<div className={styles.sectionTags}> options={availableRoles}
{selected.directRoles.map((r) => ( value={[]}
<Tag onChange={(roles) => {
key={r} updateGroup(selected.id, { directRoles: [...selected.directRoles, ...roles] })
label={r} toast({ title: `${roles.length} role(s) added`, variant: 'success' })
color="warning" }}
onRemove={() => { placeholder="+ Add"
const memberCount = MOCK_USERS.filter((u) => u.directGroups.includes(selected.id)).length />
if (memberCount > 0) { </div>
setRemoveRoleTarget(r) </>
} else { ) : null}
updateGroup(selected.id, { directRoles: selected.directRoles.filter((role) => role !== r) }) emptyMessage="Select a group to view details"
toast({ title: 'Role removed', variant: 'success' }) />
}
}}
/>
))}
{selected.directRoles.length === 0 && <span className={styles.inheritedNote}>(no roles)</span>}
<MultiSelect
options={availableRoles}
value={[]}
onChange={(roles) => {
updateGroup(selected.id, { directRoles: [...selected.directRoles, ...roles] })
toast({ title: `${roles.length} role(s) added`, variant: 'success' })
}}
placeholder="+ Add"
/>
</div>
</>
) : (
<div className={styles.emptyDetail}>Select a group to view details</div>
)}
</div>
</div>
<ConfirmDialog <ConfirmDialog
open={deleteTarget !== null} open={deleteTarget !== null}

245
src/pages/Admin/UserManagement/RolesTab.tsx
View File

@@ -7,6 +7,8 @@ import { MonoText } from '../../../design-system/primitives/MonoText/MonoText'
import { SectionHeader } from '../../../design-system/primitives/SectionHeader/SectionHeader' import { SectionHeader } from '../../../design-system/primitives/SectionHeader/SectionHeader'
import { Tag } from '../../../design-system/primitives/Tag/Tag' import { Tag } from '../../../design-system/primitives/Tag/Tag'
import { ConfirmDialog } from '../../../design-system/composites/ConfirmDialog/ConfirmDialog' import { ConfirmDialog } from '../../../design-system/composites/ConfirmDialog/ConfirmDialog'
import { SplitPane } from '../../../design-system/composites/SplitPane/SplitPane'
import { EntityList } from '../../../design-system/composites/EntityList/EntityList'
import { useToast } from '../../../design-system/composites/Toast/Toast' import { useToast } from '../../../design-system/composites/Toast/Toast'
import { MOCK_ROLES, MOCK_GROUPS, MOCK_USERS, getEffectiveRoles, type MockRole } from './rbacMocks' import { MOCK_ROLES, MOCK_GROUPS, MOCK_USERS, getEffectiveRoles, type MockRole } from './rbacMocks'
import styles from './UserManagement.module.css' import styles from './UserManagement.module.css'
@@ -79,141 +81,124 @@ export function RolesTab() {
return ( return (
<> <>
<div className={styles.splitPane}> <SplitPane
<div className={styles.listPane}> list={
<div className={styles.listHeader}> <>
<Input {creating && (
placeholder="Search roles..." <div className={styles.createForm}>
value={search} <Input placeholder="Role name *" value={newName} onChange={(e) => setNewName(e.target.value)} />
onChange={(e) => setSearch(e.target.value)} {duplicateRoleName && <span style={{ color: 'var(--error)', fontSize: 11 }}>Role name already exists</span>}
onClear={() => setSearch('')} <Input placeholder="Description" value={newDesc} onChange={(e) => setNewDesc(e.target.value)} />
className={styles.listHeaderSearch} <div className={styles.createFormActions}>
/> <Button size="sm" variant="ghost" onClick={() => setCreating(false)}>Cancel</Button>
<Button size="sm" variant="secondary" onClick={() => setCreating(true)}> <Button size="sm" variant="primary" onClick={handleCreate} disabled={!newName.trim() || duplicateRoleName}>Create</Button>
+ Add role
</Button>
</div>
{creating && (
<div className={styles.createForm}>
<Input placeholder="Role name *" value={newName} onChange={(e) => setNewName(e.target.value)} />
{duplicateRoleName && <span style={{ color: 'var(--error)', fontSize: 11 }}>Role name already exists</span>}
<Input placeholder="Description" value={newDesc} onChange={(e) => setNewDesc(e.target.value)} />
<div className={styles.createFormActions}>
<Button size="sm" variant="ghost" onClick={() => setCreating(false)}>Cancel</Button>
<Button size="sm" variant="primary" onClick={handleCreate} disabled={!newName.trim() || duplicateRoleName}>Create</Button>
</div>
</div>
)}
<div className={styles.entityList} role="listbox" aria-label="Roles">
{filtered.map((role) => (
<div
key={role.id}
className={`${styles.entityItem} ${selectedId === role.id ? styles.entityItemSelected : ''}`}
onClick={() => setSelectedId(role.id)}
role="option"
tabIndex={0}
aria-selected={selectedId === role.id}
onKeyDown={(e) => { if (e.key === 'Enter' || e.key === ' ') { e.preventDefault(); setSelectedId(role.id) } }}
>
<Avatar name={role.name} size="sm" />
<div className={styles.entityInfo}>
<div className={styles.entityName}>
{role.name}
{role.system && <Badge label="system" color="auto" variant="outlined" className={styles.providerBadge} />}
</div>
<div className={styles.entityMeta}>
{role.description} · {getAssignmentCount(role)} assignments
</div>
<div className={styles.entityTags}>
{MOCK_GROUPS.filter((g) => g.directRoles.includes(role.name))
.map((g) => <Badge key={g.id} label={g.name} color="success" />)}
{MOCK_USERS.filter((u) => u.directRoles.includes(role.name))
.map((u) => <Badge key={u.id} label={u.username} color="auto" />)}
</div>
</div> </div>
</div> </div>
))}
{filtered.length === 0 && (
<div className={styles.emptySearch}>No roles match your search</div>
)} )}
</div>
</div>
<div className={styles.detailPane}> <EntityList
{selected ? ( items={filtered}
<> renderItem={(role) => (
<div className={styles.detailHeader}> <>
<Avatar name={selected.name} size="lg" /> <Avatar name={role.name} size="sm" />
<div className={styles.detailHeaderInfo}> <div className={styles.entityInfo}>
<div className={styles.detailName}>{selected.name}</div> <div className={styles.entityName}>
{selected.description && ( {role.name}
<div className={styles.detailEmail}>{selected.description}</div> {role.system && <Badge label="system" color="auto" variant="outlined" className={styles.providerBadge} />}
)} </div>
</div> <div className={styles.entityMeta}>
{!selected.system && ( {role.description} · {getAssignmentCount(role)} assignments
<Button </div>
size="sm" <div className={styles.entityTags}>
variant="danger" {MOCK_GROUPS.filter((g) => g.directRoles.includes(role.name))
onClick={() => setDeleteTarget(selected)} .map((g) => <Badge key={g.id} label={g.name} color="success" />)}
> {MOCK_USERS.filter((u) => u.directRoles.includes(role.name))
Delete .map((u) => <Badge key={u.id} label={u.username} color="auto" />)}
</Button> </div>
)} </div>
</div> </>
<div className={styles.metaGrid}>
<span className={styles.metaLabel}>ID</span>
<MonoText size="xs">{selected.id}</MonoText>
<span className={styles.metaLabel}>Scope</span>
<span className={styles.metaValue}>{selected.scope}</span>
{selected.system && (
<>
<span className={styles.metaLabel}>Type</span>
<span className={styles.metaValue}>System role (read-only)</span>
</>
)}
</div>
<SectionHeader>Assigned to groups</SectionHeader>
<div className={styles.sectionTags}>
{assignedGroups.map((g) => <Tag key={g.id} label={g.name} color="success" />)}
{assignedGroups.length === 0 && <span className={styles.inheritedNote}>(none)</span>}
</div>
<SectionHeader>Assigned to users (direct)</SectionHeader>
<div className={styles.sectionTags}>
{directUsers.map((u) => <Tag key={u.id} label={u.displayName} color="auto" />)}
{directUsers.length === 0 && <span className={styles.inheritedNote}>(none)</span>}
</div>
<SectionHeader>Effective principals</SectionHeader>
<div className={styles.sectionTags}>
{effectivePrincipals.map((u) => {
const isDirect = u.directRoles.includes(selected.name)
return (
<Badge
key={u.id}
label={u.displayName}
color="auto"
variant={isDirect ? 'filled' : 'dashed'}
/>
)
})}
{effectivePrincipals.length === 0 && <span className={styles.inheritedNote}>(none)</span>}
</div>
{effectivePrincipals.some((u) => !u.directRoles.includes(selected.name)) && (
<span className={styles.inheritedNote}>
Dashed entries inherit this role through group membership
</span>
)} )}
</> getItemId={(role) => role.id}
) : ( selectedId={selectedId ?? undefined}
<div className={styles.emptyDetail}>Select a role to view details</div> onSelect={setSelectedId}
)} searchPlaceholder="Search roles..."
</div> onSearch={setSearch}
</div> addLabel="+ Add role"
onAdd={() => setCreating(true)}
emptyMessage="No roles match your search"
/>
</>
}
detail={selected ? (
<>
<div className={styles.detailHeader}>
<Avatar name={selected.name} size="lg" />
<div className={styles.detailHeaderInfo}>
<div className={styles.detailName}>{selected.name}</div>
{selected.description && (
<div className={styles.detailEmail}>{selected.description}</div>
)}
</div>
{!selected.system && (
<Button
size="sm"
variant="danger"
onClick={() => setDeleteTarget(selected)}
>
Delete
</Button>
)}
</div>
<div className={styles.metaGrid}>
<span className={styles.metaLabel}>ID</span>
<MonoText size="xs">{selected.id}</MonoText>
<span className={styles.metaLabel}>Scope</span>
<span className={styles.metaValue}>{selected.scope}</span>
{selected.system && (
<>
<span className={styles.metaLabel}>Type</span>
<span className={styles.metaValue}>System role (read-only)</span>
</>
)}
</div>
<SectionHeader>Assigned to groups</SectionHeader>
<div className={styles.sectionTags}>
{assignedGroups.map((g) => <Tag key={g.id} label={g.name} color="success" />)}
{assignedGroups.length === 0 && <span className={styles.inheritedNote}>(none)</span>}
</div>
<SectionHeader>Assigned to users (direct)</SectionHeader>
<div className={styles.sectionTags}>
{directUsers.map((u) => <Tag key={u.id} label={u.displayName} color="auto" />)}
{directUsers.length === 0 && <span className={styles.inheritedNote}>(none)</span>}
</div>
<SectionHeader>Effective principals</SectionHeader>
<div className={styles.sectionTags}>
{effectivePrincipals.map((u) => {
const isDirect = u.directRoles.includes(selected.name)
return (
<Badge
key={u.id}
label={u.displayName}
color="auto"
variant={isDirect ? 'filled' : 'dashed'}
/>
)
})}
{effectivePrincipals.length === 0 && <span className={styles.inheritedNote}>(none)</span>}
</div>
{effectivePrincipals.some((u) => !u.directRoles.includes(selected.name)) && (
<span className={styles.inheritedNote}>
Dashed entries inherit this role through group membership
</span>
)}
</>
) : null}
emptyMessage="Select a role to view details"
/>
<ConfirmDialog <ConfirmDialog
open={deleteTarget !== null} open={deleteTarget !== null}

78
src/pages/Admin/UserManagement/UserManagement.module.css
View File

@@ -1,63 +1,3 @@
.splitPane {
display: grid;
grid-template-columns: 52fr 48fr;
gap: 1px;
background: var(--border-subtle);
border: 1px solid var(--border-subtle);
border-radius: var(--radius-lg);
min-height: 500px;
box-shadow: var(--shadow-card);
}
.listPane {
background: var(--bg-surface);
display: flex;
flex-direction: column;
border-radius: var(--radius-lg) 0 0 var(--radius-lg);
}
.detailPane {
background: var(--bg-surface);
overflow-y: auto;
padding: 20px;
border-radius: 0 var(--radius-lg) var(--radius-lg) 0;
}
.listHeader {
display: flex;
align-items: center;
gap: 8px;
padding: 12px;
border-bottom: 1px solid var(--border-subtle);
}
.listHeaderSearch {
flex: 1;
}
.entityList {
flex: 1;
overflow-y: auto;
}
.entityItem {
display: flex;
align-items: flex-start;
gap: 10px;
padding: 10px 12px;
cursor: pointer;
transition: background 0.1s;
border-bottom: 1px solid var(--border-subtle);
}
.entityItem:hover {
background: var(--bg-hover);
}
.entityItemSelected {
background: var(--bg-raised);
}
.entityInfo { .entityInfo {
flex: 1; flex: 1;
min-width: 0; min-width: 0;
@@ -140,16 +80,6 @@
max-width: 240px; max-width: 240px;
} }
.emptyDetail {
display: flex;
align-items: center;
justify-content: center;
height: 100%;
color: var(--text-faint);
font-size: 13px;
font-family: var(--font-body);
}
.createForm { .createForm {
padding: 12px; padding: 12px;
border-bottom: 1px solid var(--border-subtle); border-bottom: 1px solid var(--border-subtle);
@@ -190,14 +120,6 @@
margin-top: 16px; margin-top: 16px;
} }
.emptySearch {
padding: 32px;
text-align: center;
color: var(--text-faint);
font-size: 12px;
font-family: var(--font-body);
}
.securitySection { .securitySection {
margin-top: 8px; margin-top: 8px;
margin-bottom: 8px; margin-bottom: 8px;

477
src/pages/Admin/UserManagement/UsersTab.tsx
View File

@@ -12,6 +12,8 @@ import { InfoCallout } from '../../../design-system/primitives/InfoCallout/InfoC
import { MultiSelect } from '../../../design-system/composites/MultiSelect/MultiSelect' import { MultiSelect } from '../../../design-system/composites/MultiSelect/MultiSelect'
import { ConfirmDialog } from '../../../design-system/composites/ConfirmDialog/ConfirmDialog' import { ConfirmDialog } from '../../../design-system/composites/ConfirmDialog/ConfirmDialog'
import { AlertDialog } from '../../../design-system/composites/AlertDialog/AlertDialog' import { AlertDialog } from '../../../design-system/composites/AlertDialog/AlertDialog'
import { SplitPane } from '../../../design-system/composites/SplitPane/SplitPane'
import { EntityList } from '../../../design-system/composites/EntityList/EntityList'
import { useToast } from '../../../design-system/composites/Toast/Toast' import { useToast } from '../../../design-system/composites/Toast/Toast'
import { MOCK_USERS, MOCK_GROUPS, MOCK_ROLES, getEffectiveRoles, type MockUser } from './rbacMocks' import { MOCK_USERS, MOCK_GROUPS, MOCK_ROLES, getEffectiveRoles, type MockUser } from './rbacMocks'
import styles from './UserManagement.module.css' import styles from './UserManagement.module.css'
@@ -97,260 +99,243 @@ export function UsersTab() {
return ( return (
<> <>
<div className={styles.splitPane}> <SplitPane
<div className={styles.listPane}> list={
<div className={styles.listHeader}> <>
<Input {creating && (
placeholder="Search users..." <div className={styles.createForm}>
value={search} <RadioGroup name="provider" value={newProvider} onChange={(v) => setNewProvider(v as 'local' | 'oidc')} orientation="horizontal">
onChange={(e) => setSearch(e.target.value)} <RadioItem value="local" label="Local" />
onClear={() => setSearch('')} <RadioItem value="oidc" label="OIDC" />
className={styles.listHeaderSearch} </RadioGroup>
/> <div className={styles.createFormRow}>
<Button size="sm" variant="secondary" onClick={() => setCreating(true)}> <Input placeholder="Username *" value={newUsername} onChange={(e) => setNewUsername(e.target.value)} />
+ Add user <Input placeholder="Display name" value={newDisplay} onChange={(e) => setNewDisplay(e.target.value)} />
</Button> </div>
</div> {duplicateUsername && <span style={{ color: 'var(--error)', fontSize: 11 }}>Username already exists</span>}
<Input placeholder="Email" value={newEmail} onChange={(e) => setNewEmail(e.target.value)} />
{creating && ( {newProvider === 'local' && (
<div className={styles.createForm}> <Input placeholder="Password *" type="password" value={newPassword} onChange={(e) => setNewPassword(e.target.value)} />
<RadioGroup name="provider" value={newProvider} onChange={(v) => setNewProvider(v as 'local' | 'oidc')} orientation="horizontal"> )}
<RadioItem value="local" label="Local" /> {newProvider === 'oidc' && (
<RadioItem value="oidc" label="OIDC" /> <InfoCallout variant="amber">
</RadioGroup> OIDC users authenticate via the configured identity provider. Pre-register to assign roles/groups before their first login.
<div className={styles.createFormRow}> </InfoCallout>
<Input placeholder="Username *" value={newUsername} onChange={(e) => setNewUsername(e.target.value)} /> )}
<Input placeholder="Display name" value={newDisplay} onChange={(e) => setNewDisplay(e.target.value)} /> <div className={styles.createFormActions}>
</div> <Button size="sm" variant="ghost" onClick={() => setCreating(false)}>Cancel</Button>
{duplicateUsername && <span style={{ color: 'var(--error)', fontSize: 11 }}>Username already exists</span>} <Button
<Input placeholder="Email" value={newEmail} onChange={(e) => setNewEmail(e.target.value)} /> size="sm"
{newProvider === 'local' && ( variant="primary"
<Input placeholder="Password *" type="password" value={newPassword} onChange={(e) => setNewPassword(e.target.value)} /> onClick={handleCreate}
)} disabled={!newUsername.trim() || (newProvider === 'local' && !newPassword.trim()) || duplicateUsername}
{newProvider === 'oidc' && ( >
<InfoCallout variant="amber"> Create
OIDC users authenticate via the configured identity provider. Pre-register to assign roles/groups before their first login. </Button>
</InfoCallout>
)}
<div className={styles.createFormActions}>
<Button size="sm" variant="ghost" onClick={() => setCreating(false)}>Cancel</Button>
<Button
size="sm"
variant="primary"
onClick={handleCreate}
disabled={!newUsername.trim() || (newProvider === 'local' && !newPassword.trim()) || duplicateUsername}
>
Create
</Button>
</div>
</div>
)}
<div className={styles.entityList} role="listbox" aria-label="Users">
{filtered.map((user) => (
<div
key={user.id}
className={`${styles.entityItem} ${selectedId === user.id ? styles.entityItemSelected : ''}`}
onClick={() => { setSelectedId(user.id); setResettingPassword(false) }}
role="option"
tabIndex={0}
aria-selected={selectedId === user.id}
onKeyDown={(e) => { if (e.key === 'Enter' || e.key === ' ') { e.preventDefault(); setSelectedId(user.id); setResettingPassword(false) } }}
>
<Avatar name={user.displayName} size="sm" />
<div className={styles.entityInfo}>
<div className={styles.entityName}>
{user.displayName}
{user.provider !== 'local' && (
<Badge label={user.provider} color="running" variant="outlined" className={styles.providerBadge} />
)}
</div>
<div className={styles.entityMeta}>
{user.email} &middot; {getUserGroupPath(user)}
</div>
<div className={styles.entityTags}>
{user.directRoles.map((r) => <Badge key={r} label={r} color="warning" />)}
{user.directGroups.map((gId) => {
const g = MOCK_GROUPS.find((gr) => gr.id === gId)
return g ? <Badge key={gId} label={g.name} color="success" /> : null
})}
</div>
</div> </div>
</div> </div>
))}
{filtered.length === 0 && (
<div className={styles.emptySearch}>No users match your search</div>
)} )}
</div>
</div>
<div className={styles.detailPane}> <EntityList
{selected ? ( items={filtered}
<> renderItem={(user) => (
<div className={styles.detailHeader}> <>
<Avatar name={selected.displayName} size="lg" /> <Avatar name={user.displayName} size="sm" />
<div className={styles.detailHeaderInfo}> <div className={styles.entityInfo}>
<div className={styles.detailName}> <div className={styles.entityName}>
<InlineEdit {user.displayName}
value={selected.displayName} {user.provider !== 'local' && (
onSave={(v) => updateUser(selected.id, { displayName: v })} <Badge label={user.provider} color="running" variant="outlined" className={styles.providerBadge} />
/>
</div>
<div className={styles.detailEmail}>{selected.email}</div>
</div>
<Button
size="sm"
variant="danger"
onClick={() => setDeleteTarget(selected)}
disabled={selected.username === 'hendrik'}
>
Delete
</Button>
</div>
<SectionHeader>Status</SectionHeader>
<div className={styles.sectionTags}>
<Tag label="Active" color="success" />
</div>
<div className={styles.metaGrid}>
<span className={styles.metaLabel}>ID</span>
<MonoText size="xs">{selected.id}</MonoText>
<span className={styles.metaLabel}>Created</span>
<span className={styles.metaValue}>{new Date(selected.createdAt).toLocaleDateString()}</span>
<span className={styles.metaLabel}>Provider</span>
<span className={styles.metaValue}>{selected.provider}</span>
</div>
<SectionHeader>Security</SectionHeader>
<div className={styles.securitySection}>
{selected.provider === 'local' ? (
<>
<div className={styles.securityRow}>
<span className={styles.metaLabel}>Password</span>
<span className={styles.passwordDots}></span>
{!resettingPassword && (
<Button size="sm" variant="ghost" onClick={() => { setResettingPassword(true); setNewPw('') }}>
Reset password
</Button>
)} )}
</div> </div>
{resettingPassword && ( <div className={styles.entityMeta}>
<div className={styles.resetForm}> {user.email} &middot; {getUserGroupPath(user)}
<Input
placeholder="New password"
type="password"
value={newPw}
onChange={(e) => setNewPw(e.target.value)}
className={styles.resetInput}
/>
<Button size="sm" variant="ghost" onClick={() => setResettingPassword(false)}>Cancel</Button>
<Button
size="sm"
variant="primary"
onClick={() => { setResettingPassword(false); toast({ title: 'Password updated', description: selected.username, variant: 'success' }) }}
disabled={!newPw.trim()}
>
Set
</Button>
</div>
)}
</>
) : (
<>
<div className={styles.securityRow}>
<span className={styles.metaLabel}>Authentication</span>
<span className={styles.metaValue}>OIDC ({selected.provider})</span>
</div> </div>
<InfoCallout variant="amber"> <div className={styles.entityTags}>
Password managed by the identity provider. {user.directRoles.map((r) => <Badge key={r} label={r} color="warning" />)}
</InfoCallout> {user.directGroups.map((gId) => {
</> const g = MOCK_GROUPS.find((gr) => gr.id === gId)
)} return g ? <Badge key={gId} label={g.name} color="success" /> : null
</div> })}
</div>
<SectionHeader>Group membership (direct only)</SectionHeader> </div>
<div className={styles.sectionTags}> </>
{selected.directGroups.map((gId) => {
const g = MOCK_GROUPS.find((gr) => gr.id === gId)
return g ? (
<Tag
key={gId}
label={g.name}
color="success"
onRemove={() => {
const group = MOCK_GROUPS.find((gr) => gr.id === gId)
if (group && group.directRoles.length > 0) {
setRemoveGroupTarget(gId)
} else {
updateUser(selected.id, { directGroups: selected.directGroups.filter((id) => id !== gId) })
toast({ title: 'Group removed', variant: 'success' })
}
}}
/>
) : null
})}
{selected.directGroups.length === 0 && (
<span className={styles.inheritedNote}>(no groups)</span>
)}
<MultiSelect
options={availableGroups}
value={[]}
onChange={(ids) => {
updateUser(selected.id, { directGroups: [...selected.directGroups, ...ids] })
toast({ title: `${ids.length} group(s) added`, variant: 'success' })
}}
placeholder="+ Add"
/>
</div>
<SectionHeader>Effective roles (direct + inherited)</SectionHeader>
<div className={styles.sectionTags}>
{effectiveRoles.map(({ role, source }) =>
source === 'direct' ? (
<Tag
key={role}
label={role}
color="warning"
onRemove={() => {
updateUser(selected.id, { directRoles: selected.directRoles.filter((r) => r !== role) })
toast({ title: 'Role removed', description: role, variant: 'success' })
}}
/>
) : (
<Badge
key={role}
label={`${role}${source}`}
color="warning"
variant="dashed"
className={styles.inherited}
/>
)
)}
{effectiveRoles.length === 0 && (
<span className={styles.inheritedNote}>(no roles)</span>
)}
<MultiSelect
options={availableRoles}
value={[]}
onChange={(roles) => {
updateUser(selected.id, { directRoles: [...selected.directRoles, ...roles] })
toast({ title: `${roles.length} role(s) added`, variant: 'success' })
}}
placeholder="+ Add"
/>
</div>
{effectiveRoles.some((r) => r.source !== 'direct') && (
<span className={styles.inheritedNote}>
Roles with are inherited through group membership
</span>
)} )}
</> getItemId={(user) => user.id}
) : ( selectedId={selectedId ?? undefined}
<div className={styles.emptyDetail}>Select a user to view details</div> onSelect={(id) => { setSelectedId(id); setResettingPassword(false) }}
)} searchPlaceholder="Search users..."
</div> onSearch={setSearch}
</div> addLabel="+ Add user"
onAdd={() => setCreating(true)}
emptyMessage="No users match your search"
/>
</>
}
detail={selected ? (
<>
<div className={styles.detailHeader}>
<Avatar name={selected.displayName} size="lg" />
<div className={styles.detailHeaderInfo}>
<div className={styles.detailName}>
<InlineEdit
value={selected.displayName}
onSave={(v) => updateUser(selected.id, { displayName: v })}
/>
</div>
<div className={styles.detailEmail}>{selected.email}</div>
</div>
<Button
size="sm"
variant="danger"
onClick={() => setDeleteTarget(selected)}
disabled={selected.username === 'hendrik'}
>
Delete
</Button>
</div>
<SectionHeader>Status</SectionHeader>
<div className={styles.sectionTags}>
<Tag label="Active" color="success" />
</div>
<div className={styles.metaGrid}>
<span className={styles.metaLabel}>ID</span>
<MonoText size="xs">{selected.id}</MonoText>
<span className={styles.metaLabel}>Created</span>
<span className={styles.metaValue}>{new Date(selected.createdAt).toLocaleDateString()}</span>
<span className={styles.metaLabel}>Provider</span>
<span className={styles.metaValue}>{selected.provider}</span>
</div>
<SectionHeader>Security</SectionHeader>
<div className={styles.securitySection}>
{selected.provider === 'local' ? (
<>
<div className={styles.securityRow}>
<span className={styles.metaLabel}>Password</span>
<span className={styles.passwordDots}></span>
{!resettingPassword && (
<Button size="sm" variant="ghost" onClick={() => { setResettingPassword(true); setNewPw('') }}>
Reset password
</Button>
)}
</div>
{resettingPassword && (
<div className={styles.resetForm}>
<Input
placeholder="New password"
type="password"
value={newPw}
onChange={(e) => setNewPw(e.target.value)}
className={styles.resetInput}
/>
<Button size="sm" variant="ghost" onClick={() => setResettingPassword(false)}>Cancel</Button>
<Button
size="sm"
variant="primary"
onClick={() => { setResettingPassword(false); toast({ title: 'Password updated', description: selected.username, variant: 'success' }) }}
disabled={!newPw.trim()}
>
Set
</Button>
</div>
)}
</>
) : (
<>
<div className={styles.securityRow}>
<span className={styles.metaLabel}>Authentication</span>
<span className={styles.metaValue}>OIDC ({selected.provider})</span>
</div>
<InfoCallout variant="amber">
Password managed by the identity provider.
</InfoCallout>
</>
)}
</div>
<SectionHeader>Group membership (direct only)</SectionHeader>
<div className={styles.sectionTags}>
{selected.directGroups.map((gId) => {
const g = MOCK_GROUPS.find((gr) => gr.id === gId)
return g ? (
<Tag
key={gId}
label={g.name}
color="success"
onRemove={() => {
const group = MOCK_GROUPS.find((gr) => gr.id === gId)
if (group && group.directRoles.length > 0) {
setRemoveGroupTarget(gId)
} else {
updateUser(selected.id, { directGroups: selected.directGroups.filter((id) => id !== gId) })
toast({ title: 'Group removed', variant: 'success' })
}
}}
/>
) : null
})}
{selected.directGroups.length === 0 && (
<span className={styles.inheritedNote}>(no groups)</span>
)}
<MultiSelect
options={availableGroups}
value={[]}
onChange={(ids) => {
updateUser(selected.id, { directGroups: [...selected.directGroups, ...ids] })
toast({ title: `${ids.length} group(s) added`, variant: 'success' })
}}
placeholder="+ Add"
/>
</div>
<SectionHeader>Effective roles (direct + inherited)</SectionHeader>
<div className={styles.sectionTags}>
{effectiveRoles.map(({ role, source }) =>
source === 'direct' ? (
<Tag
key={role}
label={role}
color="warning"
onRemove={() => {
updateUser(selected.id, { directRoles: selected.directRoles.filter((r) => r !== role) })
toast({ title: 'Role removed', description: role, variant: 'success' })
}}
/>
) : (
<Badge
key={role}
label={`${role}${source}`}
color="warning"
variant="dashed"
className={styles.inherited}
/>
)
)}
{effectiveRoles.length === 0 && (
<span className={styles.inheritedNote}>(no roles)</span>
)}
<MultiSelect
options={availableRoles}
value={[]}
onChange={(roles) => {
updateUser(selected.id, { directRoles: [...selected.directRoles, ...roles] })
toast({ title: `${roles.length} role(s) added`, variant: 'success' })
}}
placeholder="+ Add"
/>
</div>
{effectiveRoles.some((r) => r.source !== 'direct') && (
<span className={styles.inheritedNote}>
Roles with are inherited through group membership
</span>
)}
</>
) : null}
emptyMessage="Select a user to view details"
/>
<ConfirmDialog <ConfirmDialog
open={deleteTarget !== null} open={deleteTarget !== null}