chore: Show ldap attribute sync settings on abac page (#40088)

Co-authored-by: Aleksander Nicacio da Silva <aleksander.silva@rocket.chat>

Author: KevLehman

apps/meteor/client/hooks/useLdapSync.tsx

@@ -0,0 +1,47 @@
+import { useStableCallback } from '@rocket.chat/fuselage-hooks';
+import { GenericModal } from '@rocket.chat/ui-client';
+import type { TranslationKey } from '@rocket.chat/ui-contexts';
+import { useSetModal, useToastMessageDispatch, useEndpoint } from '@rocket.chat/ui-contexts';
+import { useTranslation } from 'react-i18next';
+
+export const useLdapSync = () => {
+	const { t } = useTranslation();
+	const dispatchToastMessage = useToastMessageDispatch();
+	const setModal = useSetModal();
+	const testConnection = useEndpoint('POST', '/v1/ldap.testConnection');
+	const syncNow = useEndpoint('POST', '/v1/ldap.syncNow');
+	const closeModal = useStableCallback(() => setModal(null));
+
+	const handleSyncNow = async (): Promise<void> => {
+		closeModal();
+
+		try {
+			const { message } = await syncNow();
+			dispatchToastMessage({ type: 'success', message: t(message as TranslationKey) });
+		} catch (error) {
+			dispatchToastMessage({ type: 'error', message: error });
+		}
+	};
+
+	return async (): Promise<void> => {
+		try {
+			await testConnection();
+		} catch {
+			dispatchToastMessage({ type: 'error', message: t('Connection_failed') });
+			return;
+		}
+
+		setModal(
+			<GenericModal
+				variant='info'
+				confirmText={t('Sync')}
+				cancelText={t('Cancel')}
+				title={t('Execute_Synchronization_Now')}
+				onConfirm={handleSyncNow}
+				onClose={closeModal}
+			>
+				{t('LDAP_Sync_Now_Description')}
+			</GenericModal>,
+		);
+	};
+};

apps/meteor/client/views/admin/ABAC/ABACSettingTab/AbacEnabledToggle.tsx

@@ -11,9 +11,10 @@ import SettingSkeleton from '../../settings/Setting/SettingSkeleton';
 
 type ABACEnabledToggleProps = {
 	hasABAC: 'loading' | boolean;
+	className?: string;
 };
 
-const ABACEnabledToggle = ({ hasABAC }: ABACEnabledToggleProps) => {
+const ABACEnabledToggle = ({ className, hasABAC }: ABACEnabledToggleProps) => {
 	const setting = useEditableSetting('ABAC_Enabled');
 	const setModal = useSetModal();
 	const dispatch = useSettingsDispatch();
@@ -89,6 +90,7 @@ const ABACEnabledToggle = ({ hasABAC }: ABACEnabledToggleProps) => {
 			hasResetButton={hasABAC && setting.packageValue !== setting.value}
 			onChangeValue={(value: SettingValue) => onChange(value === true)}
 			onResetButtonClick={() => onReset()}
+			className={className}
 		/>
 	);
 };

apps/meteor/client/views/admin/ABAC/ABACSettingTab/SettingsPage.tsx

@@ -1,31 +1,40 @@
-import { Box, Callout, Margins } from '@rocket.chat/fuselage';
-import { Trans } from 'react-i18next';
+import { Accordion, AccordionItem, Box, Callout, FieldGroup } from '@rocket.chat/fuselage';
+import { useTranslation, Trans } from 'react-i18next';
 
 import AbacEnabledToggle from './AbacEnabledToggle';
 import SettingField from './SettingField';
 import { useHasLicenseModule } from '../../../../hooks/useHasLicenseModule';
 import { links } from '../../../../lib/links';
 
 const SettingsPage = () => {
+	const { t } = useTranslation();
 	const { data: hasABAC = false } = useHasLicenseModule('abac');
 	return (
-		<Box maxWidth='x600' w='full' alignSelf='center'>
-			<Box>
-				<Margins block={24}>
-					<AbacEnabledToggle hasABAC={hasABAC} />
-					<SettingField settingId='ABAC_ShowAttributesInRooms' />
-					<SettingField settingId='Abac_Cache_Decision_Time_Seconds' />
+		<Box maxWidth='x600' w='full' alignSelf='center' overflow='auto' mb={24}>
+			<FieldGroup>
+				<AbacEnabledToggle hasABAC={hasABAC} />
+				<SettingField settingId='ABAC_ShowAttributesInRooms' />
+				<SettingField settingId='Abac_Cache_Decision_Time_Seconds' />
 
-					<Callout>
-						<Trans i18nKey='ABAC_Enabled_callout'>
-							User attributes are synchronized via LDAP
-							<a href={links.go.abacLDAPDocs} rel='noopener noreferrer' target='_blank'>
-								Learn more
-							</a>
-						</Trans>
-					</Callout>
-				</Margins>
-			</Box>
+				<Accordion>
+					<AccordionItem title={t('LDAP_DataSync_ABAC')}>
+						<FieldGroup>
+							<SettingField settingId='LDAP_Background_Sync_ABAC_Attributes' />
+							<SettingField settingId='LDAP_Background_Sync_ABAC_Attributes_Interval' />
+							<SettingField settingId='LDAP_ABAC_AttributeMap' />
+						</FieldGroup>
+					</AccordionItem>
+				</Accordion>
+
+				<Callout>
+					<Trans i18nKey='ABAC_Enabled_callout'>
+						User attributes are synchronized via LDAP
+						<a href={links.go.abacLDAPDocs} rel='noopener noreferrer' target='_blank'>
+							Learn more
+						</a>
+					</Trans>
+				</Callout>
+			</FieldGroup>
 		</Box>
 	);
 };

apps/meteor/client/views/admin/ABAC/AdminABACPage.tsx

@@ -1,7 +1,7 @@
-import { Box, Button, Callout } from '@rocket.chat/fuselage';
+import { Box, Button, ButtonGroup, Callout } from '@rocket.chat/fuselage';
 import { useEffectEvent } from '@rocket.chat/fuselage-hooks';
 import { ContextualbarDialog, Page, PageContent, PageHeader } from '@rocket.chat/ui-client';
-import { useRouteParameter, useRouter } from '@rocket.chat/ui-contexts';
+import { useSetting, useRouteParameter, useRouter } from '@rocket.chat/ui-contexts';
 import { Trans, useTranslation } from 'react-i18next';
 
 import AttributesContextualBar from './ABACAttributesTab/AttributesContextualBar';
@@ -15,6 +15,7 @@ import SettingsPage from './ABACSettingTab/SettingsPage';
 import AdminABACTabs from './AdminABACTabs';
 import { useIsABACAvailable } from './hooks/useIsABACAvailable';
 import { useExternalLink } from '../../../hooks/useExternalLink';
+import { useLdapSync } from '../../../hooks/useLdapSync';
 import { links } from '../../../lib/links';
 
 type AdminABACPageProps = {
@@ -29,6 +30,10 @@ const AdminABACPage = ({ shouldShowWarning }: AdminABACPageProps) => {
 	const context = useRouteParameter('context');
 	const learnMore = useExternalLink();
 	const isABACAvailable = useIsABACAvailable();
+	const ldapEnabled = useSetting('LDAP_Enable');
+	const abacEnabled = useSetting('ABAC_Enabled');
+	const handleSyncNow = useLdapSync();
+	const isSyncDisabled = !ldapEnabled || !abacEnabled;
 
 	const handleCloseContextualbar = useEffectEvent((): void => {
 		if (!context) {
@@ -48,9 +53,18 @@ const AdminABACPage = ({ shouldShowWarning }: AdminABACPageProps) => {
 		<Page flexDirection='row'>
 			<Page>
 				<PageHeader title={t('ABAC')}>
-					<Button icon='new-window' secondary onClick={() => learnMore(links.go.abacDocs)}>
-						{t('ABAC_Learn_More')}
-					</Button>
+					<ButtonGroup>
+						<Button
+							disabled={isSyncDisabled}
+							title={isSyncDisabled ? t('Enable_ABAC_and_LDAP_to_sync') : undefined}
+							onClick={handleSyncNow}
+						>
+							{t('LDAP_Sync_Now')}
+						</Button>
+						<Button icon='new-window' secondary onClick={() => learnMore(links.go.abacDocs)}>
+							{t('ABAC_Learn_More')}
+						</Button>
+					</ButtonGroup>
 				</PageHeader>
 				{shouldShowWarning && (
 					<Box mi={24} mb={16}>

apps/meteor/client/views/admin/settings/groups/LDAPGroupPage.tsx

@@ -9,6 +9,7 @@ import { useTranslation } from 'react-i18next';
 
 import BaseGroupPage from './BaseGroupPage';
 import { useExternalLink } from '../../../../hooks/useExternalLink';
+import { useLdapSync } from '../../../../hooks/useLdapSync';
 import { links } from '../../../../lib/links';
 import { useEditableSettings } from '../../EditableSettingsContext';
 
@@ -20,11 +21,11 @@ function LDAPGroupPage({ _id, i18nLabel, onClickBack, ...group }: LDAPGroupPageP
 	const { t } = useTranslation();
 	const dispatchToastMessage = useToastMessageDispatch();
 	const testConnection = useEndpoint('POST', '/v1/ldap.testConnection');
-	const syncNow = useEndpoint('POST', '/v1/ldap.syncNow');
 	const testSearch = useEndpoint('POST', '/v1/ldap.testSearch');
 	const ldapEnabled = useSetting('LDAP_Enable');
 	const setModal = useSetModal();
 	const closeModal = useEffectEvent(() => setModal());
+	const handleSyncNow = useLdapSync();
 
 	const handleLinkClick = useExternalLink();
 
@@ -48,37 +49,6 @@ function LDAPGroupPage({ _id, i18nLabel, onClickBack, ...group }: LDAPGroupPageP
 		}
 	};
 
-	const handleSyncNowButtonClick = async (): Promise<void> => {
-		try {
-			await testConnection();
-			const confirmSync = async (): Promise<void> => {
-				closeModal();
-
-				try {
-					const { message } = await syncNow();
-					dispatchToastMessage({ type: 'success', message: t(message as Parameters<typeof t>[0]) });
-				} catch (error) {
-					error instanceof Error && dispatchToastMessage({ type: 'error', message: error });
-				}
-			};
-
-			setModal(
-				<GenericModal
-					variant='info'
-					confirmText={t('Sync')}
-					cancelText={t('Cancel')}
-					title={t('Execute_Synchronization_Now')}
-					onConfirm={confirmSync}
-					onClose={closeModal}
-				>
-					{t('LDAP_Sync_Now_Description')}
-				</GenericModal>,
-			);
-		} catch (error) {
-			error instanceof Error && dispatchToastMessage({ type: 'error', message: error });
-		}
-	};
-
 	const handleSearchTestButtonClick = async (): Promise<void> => {
 		try {
 			await testConnection();
@@ -144,7 +114,7 @@ function LDAPGroupPage({ _id, i18nLabel, onClickBack, ...group }: LDAPGroupPageP
 					<Button disabled={!ldapEnabled || changed} onClick={handleSearchTestButtonClick}>
 						{t('Test_LDAP_Search')}
 					</Button>
-					<Button disabled={!ldapEnabled || changed} onClick={handleSyncNowButtonClick}>
+					<Button disabled={!ldapEnabled || changed} onClick={handleSyncNow}>
 						{t('LDAP_Sync_Now')}
 					</Button>
 					<Button role='link' onClick={() => handleLinkClick(links.go.ldapDocs)}>

packages/i18n/src/locales/en.i18n.json

@@ -84,6 +84,7 @@
   "ABAC_Room_Attributes": "Room Attributes",
   "ABAC_Logs": "Logs",
   "ABAC_Invalid_attribute": "Invalid characters in attribute name or values",
+  "Enable_ABAC_and_LDAP_to_sync": "Enable ABAC and LDAP to be able to sync",
   "AI_Actions": "AI actions",
   "API": "API",
   "API_Add_Personal_Access_Token": "Add new Personal Access Token",