Fixup

Author: phrocker

.local.env

@@ -1,4 +1,4 @@
-SENTRIUS_VERSION=1.1.334
+SENTRIUS_VERSION=1.1.341
 SENTRIUS_SSH_VERSION=1.1.41
 SENTRIUS_KEYCLOAK_VERSION=1.1.53
 SENTRIUS_AGENT_VERSION=1.1.42

.local.env.bak

@@ -1,4 +1,4 @@
-SENTRIUS_VERSION=1.1.334
+SENTRIUS_VERSION=1.1.341
 SENTRIUS_SSH_VERSION=1.1.41
 SENTRIUS_KEYCLOAK_VERSION=1.1.53
 SENTRIUS_AGENT_VERSION=1.1.42

api/src/main/java/io/sentrius/sso/controllers/api/UserApiController.java

@@ -6,6 +6,7 @@
 import java.util.HashMap;
 import java.util.List;
 import java.util.Map;
+import java.util.Objects;
 import com.fasterxml.jackson.core.JsonProcessingException;
 import com.fasterxml.jackson.databind.JsonNode;
 import com.fasterxml.jackson.databind.node.BooleanNode;
@@ -15,7 +16,10 @@
 import io.sentrius.sso.core.annotations.LimitAccess;
 import io.sentrius.sso.core.config.SystemOptions;
 import io.sentrius.sso.core.controllers.BaseController;
+import io.sentrius.sso.core.dto.HostGroupDTO;
+import io.sentrius.sso.core.dto.UserPublicKeyDTO;
 import io.sentrius.sso.core.exceptions.ZtatException;
+import io.sentrius.sso.core.model.hostgroup.HostGroup;
 import io.sentrius.sso.core.model.security.UserType;
 import io.sentrius.sso.core.model.security.enums.UserAccessEnum;
 import io.sentrius.sso.core.model.users.User;
@@ -24,6 +28,7 @@
 import io.sentrius.sso.core.model.users.UserConfig;
 import io.sentrius.sso.core.model.users.UserPublicKey;
 import io.sentrius.sso.core.model.users.UserSettings;
+import io.sentrius.sso.core.services.ConfigurationService;
 import io.sentrius.sso.core.services.ErrorOutputService;
 import io.sentrius.sso.core.services.HostGroupService;
 import io.sentrius.sso.core.services.SessionService;
@@ -438,24 +443,51 @@ private List<Map<String, Object>> getAgentSessionDurations() {
     // Public Key Management Endpoints
 
     @GetMapping("/publickeys")
-    public ResponseEntity<List<UserPublicKey>> getUserPublicKeys(HttpServletRequest request, HttpServletResponse response) {
+    public ResponseEntity<List<UserPublicKeyDTO>> getUserPublicKeys(HttpServletRequest request,
+                                                                  HttpServletResponse response) {
         var user = userService.getOperatingUser(request, response, null);
         var publicKeys = userPublicKeyService.getPublicKeysForUser(user.getId());
-        return ResponseEntity.ok(publicKeys);
+        List<UserPublicKeyDTO> publicKeyDTOs = new ArrayList<>();
+        for (UserPublicKey key : publicKeys) {
+            UserPublicKeyDTO dto = UserPublicKeyDTO.builder().build();
+            //dto.setId(key.getId());
+            dto.setKeyName(key.getKeyName());
+            dto.setKeyType(key.getKeyType());
+            dto.setPublicKey(key.getPublicKey());
+            dto.setIsEnabled(key.getIsEnabled());
+            if (key.getHostGroup() != null) {
+                dto.setHostGroup( HostGroupDTO.builder().groupId(key.getHostGroup().getId()).build());
+                //dto.setHostGroupName(key.getHostGroup().getName());
+            }
+            publicKeyDTOs.add(dto);
+        }
+        return ResponseEntity.ok(publicKeyDTOs);
     }
 
     @PostMapping("/publickeys")
-    public ResponseEntity<ObjectNode> addPublicKey(HttpServletRequest request, HttpServletResponse response, @RequestBody UserPublicKey publicKey) {
+    public ResponseEntity<ObjectNode> addPublicKey(HttpServletRequest request, HttpServletResponse response, @RequestBody
+    UserPublicKeyDTO publicKey) {
         ObjectNode node = JsonUtil.MAPPER.createObjectNode();
         try {
+
+            HostGroup hostGroup = hostGroupService.getHostGroup(publicKey.getHostGroup().getGroupId());
+            Objects.requireNonNull(hostGroup);
+
+            UserPublicKey key = new UserPublicKey();
+            key.setKeyName(publicKey.getKeyName());
+            key.setKeyType(publicKey.getKeyType());
+            key.setPublicKey(publicKey.getPublicKey());
+            key.setIsEnabled(publicKey.getIsEnabled());
+            key.setHostGroup(hostGroup);
+
             var user = userService.getOperatingUser(request, response, null);
-            publicKey.setUser(user);
+            key.setUser(user);
 
-            if (publicKey.getCreatedAt() == null) {
-                publicKey.setCreatedAt(new java.sql.Timestamp(System.currentTimeMillis()));
+            if (key.getCreatedAt() == null) {
+                key.setCreatedAt(new java.sql.Timestamp(System.currentTimeMillis()));
             }
 
-            var savedKey = userPublicKeyService.addPublicKey(publicKey);
+            var savedKey = userPublicKeyService.addPublicKey(key);
             node.put("status", "Public key successfully added");
             node.put("id", savedKey.getId());
             return ResponseEntity.ok(node);

api/src/main/resources/templates/sso/users/user_settings.html

@@ -3,8 +3,6 @@
 
 <head>
     <meta th:replace="~{fragments/header}">
-    <link href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/css/bootstrap.min.css" rel="stylesheet">
-    <link href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta3/css/all.min.css" rel="stylesheet">
     <style>
         .center-container {
             display: flex;
@@ -142,6 +140,7 @@
 <div class="container-fluid">
     <div class="row flex-nowrap">
         <!-- Sidebar -->
+        <input type="hidden" id="csrf-token" th:value="${_csrf.token}" />
         <div th:replace="~{fragments/sidebar}" class="col-auto sidebar" style="width: 180px;"></div>
 
         <!-- Main content -->
@@ -390,11 +389,14 @@ <h5 class="modal-title" id="assignModalLabel">
                 }
             });
 
+            const csrfToken = document.getElementById("csrf-token").value;
+
             fetch('/api/v1/users/settings/workhours', {
                 method: 'POST',
                 headers: { 
                     'Content-Type': 'application/json',
-                    'X-Requested-With': 'XMLHttpRequest'
+                    'X-Requested-With': 'XMLHttpRequest',
+                    "X-CSRF-TOKEN": csrfToken
                 },
                 body: JSON.stringify(workHours)
             }).then(response => {
@@ -430,14 +432,17 @@ <h5 class="modal-title" id="assignModalLabel">
 
         // Add host group if selected
         if (hostGroupId) {
-            keyData.hostGroup = { id: parseInt(hostGroupId) };
+            keyData.hostGroup = { groupId: parseInt(hostGroupId) };
         }
 
+        const csrfToken = document.getElementById("csrf-token").value;
+
         fetch('/api/v1/users/publickeys', {
             method: 'POST',
             headers: {
                 'Content-Type': 'application/json',
-                'X-Requested-With': 'XMLHttpRequest'
+                'X-Requested-With': 'XMLHttpRequest',
+                "X-CSRF-TOKEN": csrfToken
             },
             body: JSON.stringify(keyData)
         })
@@ -472,11 +477,14 @@ <h5 class="modal-title" id="assignModalLabel">
             return;
         }
 
+        const csrfToken = document.getElementById("csrf-token").value;
+
         fetch(`/api/v1/users/publickeys/${keyId}/assign`, {
             method: 'POST',
             headers: {
                 'Content-Type': 'application/x-www-form-urlencoded',
-                'X-Requested-With': 'XMLHttpRequest'
+                'X-Requested-With': 'XMLHttpRequest',
+                "X-CSRF-TOKEN": csrfToken
             },
             body: `hostGroupId=${hostGroupId}`
         })
@@ -498,11 +506,13 @@ <h5 class="modal-title" id="assignModalLabel">
     }
 
     function deleteKey(keyId) {
+        const csrfToken = document.getElementById("csrf-token").value;
         if (confirm('Are you sure you want to delete this public key? This action cannot be undone.')) {
             fetch(`/api/v1/users/publickeys/${keyId}`, {
                 method: 'DELETE',
                 headers: {
-                    'X-Requested-With': 'XMLHttpRequest'
+                    'X-Requested-With': 'XMLHttpRequest',
+                    "X-CSRF-TOKEN": csrfToken
                 }
             })
             .then(response => response.json())
@@ -543,4 +553,4 @@ <h5 class="modal-title" id="assignModalLabel">
 </script>
 </body>
 
-</html>
+</html>

api/src/test/java/io/sentrius/sso/controllers/api/UserPublicKeyApiControllerTest.java

@@ -2,6 +2,7 @@
 
 import com.fasterxml.jackson.databind.ObjectMapper;
 import io.sentrius.sso.core.config.SystemOptions;
+import io.sentrius.sso.core.dto.UserPublicKeyDTO;
 import io.sentrius.sso.core.model.users.User;
 import io.sentrius.sso.core.model.users.UserPublicKey;
 import io.sentrius.sso.core.model.hostgroup.HostGroup;
@@ -141,7 +142,7 @@ public void testAddPublicKey() {
         user.setId(1L);
         user.setUsername("testuser");
 
-        UserPublicKey newKey = new UserPublicKey();
+        UserPublicKeyDTO newKey = UserPublicKeyDTO.builder().build();
         newKey.setKeyName("New Test Key");
         newKey.setKeyType("RSA");
         newKey.setPublicKey("ssh-rsa AAAAB3NzaC1yc2EAAA...");

core/src/main/java/io/sentrius/sso/core/dto/UserPublicKeyDTO.java

@@ -0,0 +1,19 @@
+package io.sentrius.sso.core.dto;
+
+import java.util.ArrayList;
+import java.util.List;
+import lombok.Builder;
+import lombok.Getter;
+import lombok.Setter;
+
+@Getter
+@Setter
+@Builder
+public class UserPublicKeyDTO {
+    private String keyName;
+    private String keyType;
+    private String publicKey;
+    private Boolean isEnabled;
+    @Builder.Default
+    private HostGroupDTO hostGroup = new HostGroupDTO();
+}