mirror of
https://github.com/prowler-cloud/prowler.git
synced 2025-12-19 05:17:47 +00:00
4d5676f00e
Co-authored-by: Alan Buscaglia <alanbuscaglia@MacBook-Pro.local> Co-authored-by: alejandrobailo <alejandrobailo94@gmail.com> Co-authored-by: César Arroba <cesar@prowler.com> Co-authored-by: Alejandro Bailo <59607668+alejandrobailo@users.noreply.github.com>
425 lines
14 KiB
TypeScript
425 lines
14 KiB
TypeScript
"use client";
|
|
|
|
import { Button } from "@heroui/button";
|
|
import { Checkbox } from "@heroui/checkbox";
|
|
import { Divider } from "@heroui/divider";
|
|
import { zodResolver } from "@hookform/resolvers/zod";
|
|
import { Icon } from "@iconify/react";
|
|
import { useRouter, useSearchParams } from "next/navigation";
|
|
import { useEffect } from "react";
|
|
import { useForm } from "react-hook-form";
|
|
import { z } from "zod";
|
|
|
|
import { authenticate, createNewUser } from "@/actions/auth";
|
|
import { initiateSamlAuth } from "@/actions/integrations/saml";
|
|
import { PasswordRequirementsMessage } from "@/components/auth/oss/password-validator";
|
|
import { SocialButtons } from "@/components/auth/oss/social-buttons";
|
|
import { ProwlerExtended } from "@/components/icons";
|
|
import { ThemeSwitch } from "@/components/ThemeSwitch";
|
|
import { useToast } from "@/components/ui";
|
|
import { CustomButton, CustomInput } from "@/components/ui/custom";
|
|
import { CustomLink } from "@/components/ui/custom/custom-link";
|
|
import {
|
|
Form,
|
|
FormControl,
|
|
FormField,
|
|
FormMessage,
|
|
} from "@/components/ui/form";
|
|
import { ApiError, authFormSchema } from "@/types";
|
|
|
|
export const AuthForm = ({
|
|
type,
|
|
invitationToken,
|
|
isCloudEnv,
|
|
googleAuthUrl,
|
|
githubAuthUrl,
|
|
isGoogleOAuthEnabled,
|
|
isGithubOAuthEnabled,
|
|
}: {
|
|
type: string;
|
|
invitationToken?: string | null;
|
|
isCloudEnv?: boolean;
|
|
googleAuthUrl?: string;
|
|
githubAuthUrl?: string;
|
|
isGoogleOAuthEnabled?: boolean;
|
|
isGithubOAuthEnabled?: boolean;
|
|
}) => {
|
|
const formSchema = authFormSchema(type);
|
|
const router = useRouter();
|
|
const searchParams = useSearchParams();
|
|
const { toast } = useToast();
|
|
|
|
useEffect(() => {
|
|
const samlError = searchParams.get("sso_saml_failed");
|
|
|
|
if (samlError) {
|
|
// Add a delay to the toast to ensure it is rendered
|
|
setTimeout(() => {
|
|
toast({
|
|
variant: "destructive",
|
|
title: "SAML Authentication Error",
|
|
description:
|
|
"An error occurred while attempting to login via your Identity Provider (IdP). Please check your IdP configuration.",
|
|
});
|
|
}, 100);
|
|
}
|
|
}, [searchParams, toast]);
|
|
|
|
const form = useForm<z.infer<typeof formSchema>>({
|
|
resolver: zodResolver(formSchema),
|
|
mode: "onSubmit",
|
|
reValidateMode: "onSubmit",
|
|
defaultValues: {
|
|
email: "",
|
|
password: "",
|
|
isSamlMode: false,
|
|
...(type === "sign-up" && {
|
|
name: "",
|
|
company: "",
|
|
confirmPassword: "",
|
|
...(invitationToken && { invitationToken }),
|
|
}),
|
|
},
|
|
});
|
|
|
|
const isLoading = form.formState.isSubmitting;
|
|
const isSamlMode = form.watch("isSamlMode");
|
|
|
|
const onSubmit = async (data: z.infer<typeof formSchema>) => {
|
|
if (type === "sign-in") {
|
|
if (data.isSamlMode) {
|
|
const email = data.email.toLowerCase();
|
|
if (isSamlMode) {
|
|
form.setValue("password", "");
|
|
}
|
|
|
|
const result = await initiateSamlAuth(email);
|
|
|
|
if (result.success && result.redirectUrl) {
|
|
window.location.href = result.redirectUrl;
|
|
} else {
|
|
toast({
|
|
variant: "destructive",
|
|
title: "SAML Authentication Error",
|
|
description:
|
|
result.error || "An error occurred during SAML authentication.",
|
|
});
|
|
}
|
|
return;
|
|
}
|
|
|
|
const result = await authenticate(null, {
|
|
email: data.email.toLowerCase(),
|
|
password: data.password,
|
|
});
|
|
if (result?.message === "Success") {
|
|
router.push("/");
|
|
} else if (result?.errors && "credentials" in result.errors) {
|
|
const message =
|
|
result.errors.credentials ?? "Invalid email or password";
|
|
|
|
form.setError("email", { type: "server", message });
|
|
form.setError("password", { type: "server", message });
|
|
} else if (result?.message === "User email is not verified") {
|
|
router.push("/email-verification");
|
|
} else {
|
|
toast({
|
|
variant: "destructive",
|
|
title: "Oops! Something went wrong",
|
|
description: "An unexpected error occurred. Please try again.",
|
|
});
|
|
}
|
|
}
|
|
|
|
if (type === "sign-up") {
|
|
const newUser = await createNewUser(data);
|
|
|
|
if (!newUser.errors) {
|
|
toast({
|
|
title: "Success!",
|
|
description: "The user was registered successfully.",
|
|
});
|
|
form.reset();
|
|
|
|
if (isCloudEnv) {
|
|
router.push("/email-verification");
|
|
} else {
|
|
router.push("/sign-in");
|
|
}
|
|
} else {
|
|
newUser.errors.forEach((error: ApiError) => {
|
|
const errorMessage = error.detail;
|
|
const pointer = error.source?.pointer;
|
|
switch (pointer) {
|
|
case "/data/attributes/name":
|
|
form.setError("name", { type: "server", message: errorMessage });
|
|
break;
|
|
case "/data/attributes/email":
|
|
form.setError("email", { type: "server", message: errorMessage });
|
|
break;
|
|
case "/data/attributes/company_name":
|
|
form.setError("company", {
|
|
type: "server",
|
|
message: errorMessage,
|
|
});
|
|
break;
|
|
case "/data/attributes/password":
|
|
form.setError("password", {
|
|
type: "server",
|
|
message: errorMessage,
|
|
});
|
|
break;
|
|
case "/data":
|
|
form.setError("invitationToken", {
|
|
type: "server",
|
|
message: errorMessage,
|
|
});
|
|
break;
|
|
default:
|
|
toast({
|
|
variant: "destructive",
|
|
title: "Oops! Something went wrong",
|
|
description: errorMessage,
|
|
});
|
|
}
|
|
});
|
|
}
|
|
}
|
|
};
|
|
|
|
return (
|
|
<div className="relative flex h-screen w-screen">
|
|
{/* Auth Form */}
|
|
<div className="relative flex w-full items-center justify-center lg:w-full">
|
|
{/* Background Pattern */}
|
|
<div className="absolute h-full w-full bg-[radial-gradient(#6af400_1px,transparent_1px)] mask-[radial-gradient(ellipse_50%_50%_at_50%_50%,#000_10%,transparent_80%)] bg-size-[16px_16px]"></div>
|
|
|
|
<div className="rounded-large border-divider shadow-small dark:bg-background/85 relative z-10 flex w-full max-w-sm flex-col gap-4 border bg-white/90 px-8 py-10 md:max-w-md">
|
|
{/* Prowler Logo */}
|
|
<div className="absolute -top-[100px] left-1/2 z-10 flex h-fit w-fit -translate-x-1/2">
|
|
<ProwlerExtended width={300} />
|
|
</div>
|
|
<div className="flex items-center justify-between">
|
|
<p className="pb-2 text-xl font-medium">
|
|
{type === "sign-in"
|
|
? isSamlMode
|
|
? "Sign in with SAML SSO"
|
|
: "Sign in"
|
|
: "Sign up"}
|
|
</p>
|
|
<ThemeSwitch aria-label="Toggle theme" />
|
|
</div>
|
|
|
|
<Form {...form}>
|
|
<form
|
|
noValidate
|
|
method="post"
|
|
className="flex flex-col gap-4"
|
|
onSubmit={form.handleSubmit(onSubmit)}
|
|
>
|
|
{type === "sign-up" && (
|
|
<>
|
|
<CustomInput
|
|
control={form.control}
|
|
name="name"
|
|
type="text"
|
|
label="Name"
|
|
placeholder="Enter your name"
|
|
isInvalid={!!form.formState.errors.name}
|
|
/>
|
|
<CustomInput
|
|
control={form.control}
|
|
name="company"
|
|
type="text"
|
|
label="Company name"
|
|
placeholder="Enter your company name"
|
|
isRequired={false}
|
|
isInvalid={!!form.formState.errors.company}
|
|
/>
|
|
</>
|
|
)}
|
|
<CustomInput
|
|
control={form.control}
|
|
name="email"
|
|
type="email"
|
|
label="Email"
|
|
placeholder="Enter your email"
|
|
isInvalid={!!form.formState.errors.email}
|
|
// Always show field validation message, including on sign-in
|
|
showFormMessage
|
|
/>
|
|
{!isSamlMode && (
|
|
<>
|
|
<CustomInput
|
|
control={form.control}
|
|
name="password"
|
|
password
|
|
// Only mark invalid when the password field has an error
|
|
isInvalid={!!form.formState.errors.password}
|
|
/>
|
|
{type === "sign-up" && (
|
|
<PasswordRequirementsMessage
|
|
password={form.watch("password") || ""}
|
|
/>
|
|
)}
|
|
</>
|
|
)}
|
|
{/* {type === "sign-in" && (
|
|
<div className="flex items-center justify-between px-1 py-2">
|
|
<Checkbox name="remember" size="sm">
|
|
Remember me
|
|
</Checkbox>
|
|
<Link className="text-default-500" href="#">
|
|
Forgot password?
|
|
</Link>
|
|
</div>
|
|
)} */}
|
|
{type === "sign-up" && (
|
|
<>
|
|
<CustomInput
|
|
control={form.control}
|
|
name="confirmPassword"
|
|
confirmPassword
|
|
/>
|
|
{invitationToken && (
|
|
<CustomInput
|
|
control={form.control}
|
|
name="invitationToken"
|
|
type="text"
|
|
label="Invitation Token"
|
|
placeholder={invitationToken}
|
|
defaultValue={invitationToken}
|
|
isRequired={false}
|
|
isInvalid={!!form.formState.errors.invitationToken}
|
|
isDisabled={invitationToken !== null && true}
|
|
/>
|
|
)}
|
|
|
|
{process.env.NEXT_PUBLIC_IS_CLOUD_ENV === "true" && (
|
|
<FormField
|
|
control={form.control}
|
|
name="termsAndConditions"
|
|
render={({ field }) => (
|
|
<>
|
|
<FormControl>
|
|
<Checkbox
|
|
isRequired
|
|
className="py-4"
|
|
size="sm"
|
|
checked={field.value}
|
|
onChange={(e) => field.onChange(e.target.checked)}
|
|
>
|
|
I agree with the
|
|
<CustomLink
|
|
href="https://prowler.com/terms-of-service/"
|
|
size="sm"
|
|
>
|
|
Terms of Service
|
|
</CustomLink>
|
|
of Prowler
|
|
</Checkbox>
|
|
</FormControl>
|
|
<FormMessage className="text-system-error dark:text-system-error" />
|
|
</>
|
|
)}
|
|
/>
|
|
)}
|
|
</>
|
|
)}
|
|
|
|
<CustomButton
|
|
type="submit"
|
|
ariaLabel={type === "sign-in" ? "Log in" : "Sign up"}
|
|
ariaDisabled={isLoading}
|
|
className="w-full"
|
|
variant="solid"
|
|
color="action"
|
|
size="md"
|
|
radius="md"
|
|
isLoading={isLoading}
|
|
isDisabled={isLoading}
|
|
>
|
|
{isLoading ? (
|
|
<span>Loading</span>
|
|
) : (
|
|
<span>{type === "sign-in" ? "Log in" : "Sign up"}</span>
|
|
)}
|
|
</CustomButton>
|
|
</form>
|
|
</Form>
|
|
|
|
{!invitationToken && type === "sign-in" && (
|
|
<>
|
|
<div className="flex items-center gap-4 py-2">
|
|
<Divider className="flex-1" />
|
|
<p className="text-tiny text-default-500 shrink-0">OR</p>
|
|
<Divider className="flex-1" />
|
|
</div>
|
|
<div className="flex flex-col gap-2">
|
|
{!isSamlMode && (
|
|
<SocialButtons
|
|
googleAuthUrl={googleAuthUrl}
|
|
githubAuthUrl={githubAuthUrl}
|
|
isGoogleOAuthEnabled={isGoogleOAuthEnabled}
|
|
isGithubOAuthEnabled={isGithubOAuthEnabled}
|
|
/>
|
|
)}
|
|
<Button
|
|
startContent={
|
|
!isSamlMode && (
|
|
<Icon
|
|
className="text-default-500"
|
|
icon="mdi:shield-key"
|
|
width={24}
|
|
/>
|
|
)
|
|
}
|
|
variant="bordered"
|
|
className="w-full"
|
|
onClick={() => {
|
|
form.setValue("isSamlMode", !isSamlMode);
|
|
}}
|
|
>
|
|
{isSamlMode ? "Back" : "Continue with SAML SSO"}
|
|
</Button>
|
|
</div>
|
|
</>
|
|
)}
|
|
{!invitationToken && type === "sign-up" && (
|
|
<>
|
|
<div className="flex items-center gap-4 py-2">
|
|
<Divider className="flex-1" />
|
|
<p className="text-tiny text-default-500 shrink-0">OR</p>
|
|
<Divider className="flex-1" />
|
|
</div>
|
|
<div className="flex flex-col gap-2">
|
|
<SocialButtons
|
|
googleAuthUrl={googleAuthUrl}
|
|
githubAuthUrl={githubAuthUrl}
|
|
isGoogleOAuthEnabled={isGoogleOAuthEnabled}
|
|
isGithubOAuthEnabled={isGithubOAuthEnabled}
|
|
/>
|
|
</div>
|
|
</>
|
|
)}
|
|
{type === "sign-in" ? (
|
|
<p className="text-small text-center">
|
|
Need to create an account?
|
|
<CustomLink size="base" href="/sign-up" target="_self">
|
|
Sign up
|
|
</CustomLink>
|
|
</p>
|
|
) : (
|
|
<p className="text-small text-center">
|
|
Already have an account?
|
|
<CustomLink size="base" href="/sign-in" target="_self">
|
|
Log in
|
|
</CustomLink>
|
|
</p>
|
|
)}
|
|
</div>
|
|
</div>
|
|
</div>
|
|
);
|
|
};
|