fix: add middleware to new abilities, better ux for selecting permissions, etc.

2024-12-09 10:28:34 +01:00
parent 78f0ac80c1
commit 5bbcd7bf76
7 changed files with 191 additions and 136 deletions
--- a/resources/views/livewire/security/api-tokens.blade.php
+++ b/resources/views/livewire/security/api-tokens.blade.php
@@ -30,21 +30,24 @@
                @endif
            </div>
        </div>
+
+        <h4>Token Permissions</h4>
+        <div class="w-64">
+            <x-forms.checkbox label="write" wire:model.live="permissions" domValue="write"
+                helper="Root access, be careful!" :checked="in_array('write', $permissions)"></x-forms.checkbox>
+            @if (!in_array('write', $permissions))
+                <x-forms.checkbox label="deploy" wire:model.live="permissions" domValue="deploy"
+                    helper="Can trigger deploy webhooks" :checked="in_array('deploy', $permissions)"></x-forms.checkbox>
+                <x-forms.checkbox label="read" domValue="read" wire:model.live="permissions" domValue="read"
+                    :checked="in_array('read', $permissions)"></x-forms.checkbox>
+                <x-forms.checkbox label="read:sensitive" wire:model.live="permissions" domValue="read:sensitive"
+                    helper="Responses will include secrets, logs, passwords, and compose file contents"
+                    :checked="in_array('read:sensitive', $permissions)"></x-forms.checkbox>
+            @endif
+        </div>
        @if (in_array('write', $permissions))
            <div class="font-bold text-warning">Root access, be careful!</div>
        @endif
-        <h4>Token Permissions</h4>
-        <div class="w-64">
-            <x-forms.checkbox label="read" wire:model.live="permissions" value="read"
-                :checked="in_array('read', $permissions)"></x-forms.checkbox>
-            <x-forms.checkbox label="read:sensitive" wire:model.live="permissions" value="read:sensitive"
-                helper="Responses will include secrets, logs, passwords, and compose file contents"
-                :checked="in_array('read:sensitive', $permissions)"></x-forms.checkbox>
-            <x-forms.checkbox label="write" wire:model.live="permissions" value="write"
-                helper="Root access, be careful!" :checked="in_array('write', $permissions)"></x-forms.checkbox>
-            <x-forms.checkbox label="deploy" wire:model.live="permissions" value="deploy"
-                helper="Can trigger deploy webhooks" :checked="in_array('deploy', $permissions)"></x-forms.checkbox>
-        </div>
    </form>
    @if (session()->has('token'))
        <div class="py-4 font-bold dark:text-warning">Please copy this token now. For your security, it won't be shown
@@ -60,7 +63,7 @@
                <div>Last used: {{ $token->last_used_at ? $token->last_used_at->diffForHumans() : 'Never' }}</div>
                <div class="flex gap-1">
                    @if ($token->abilities)
-                        Abilities:
+                        Permissions:
                        @foreach ($token->abilities as $ability)
                            <div class="font-bold dark:text-white">{{ $ability }}</div>
                        @endforeach