feat: secrets pages (#3019)

Author: SkyeYoung

src/apis/secrets.ts

@@ -0,0 +1,63 @@
+import { API_SECRETS } from '@/config/constant';
+import { req } from '@/config/req';
+import type { APISIXType } from '@/types/schema/apisix';
+import type { PageSearchType } from '@/types/schema/pageSearch';
+import { queryOptions } from '@tanstack/react-query';
+
+/**
+ * `manager` does not exist in apisix secret, we parse it from `id`
+ * `id` (origin) is `manager/id`, we convert it to `id` and `manager`
+ */
+export const preParseSecretItem = <T extends APISIXType['RespSecretItem']>(
+  data: T
+) => {
+  const { id } = data.value;
+  if (!id) return data;
+  type IDTuple = [APISIXType['Secret']['manager'], string];
+  const idTuple = id.split('/') as IDTuple;
+  if (idTuple.length !== 2) return data;
+  const [manager, realId] = idTuple;
+  return { ...data, value: { ...data.value, manager, id: realId } };
+};
+
+export const getSecretListQueryOptions = (props: PageSearchType) => {
+  const { page, pageSize } = props;
+  return queryOptions({
+    queryKey: ['secrets', page, pageSize],
+    queryFn: () =>
+      req
+        .get<unknown, APISIXType['RespSecretList']>(API_SECRETS, {
+          params: { page, page_size: pageSize },
+        })
+        .then((v) => {
+          const { list, ...rest } = v.data;
+          return {
+            ...rest,
+            list: list.map(preParseSecretItem),
+          };
+        }),
+  });
+};
+
+export const getSecretQueryOptions = (
+  props: Pick<APISIXType['Secret'], 'id' | 'manager'>
+) => {
+  const { id, manager } = props;
+  return queryOptions({
+    queryKey: ['secret', manager, id],
+    queryFn: () =>
+      req
+        .get<unknown, APISIXType['RespSecretDetail']>(
+          `${API_SECRETS}/${manager}/${id}`
+        )
+        .then((v) => preParseSecretItem(v.data)),
+  });
+};
+
+export const putSecretReq = (data: APISIXType['Secret']) => {
+  const { manager, id, ...rest } = data;
+  return req.put<APISIXType['Secret'], APISIXType['RespSecretDetail']>(
+    `${API_SECRETS}/${manager}/${id}`,
+    rest
+  );
+};

src/components/form-slice/FormPartSecret.tsx

@@ -0,0 +1,172 @@
+import { useFormContext } from 'react-hook-form';
+import { APISIX, type APISIXType } from '@/types/schema/apisix';
+import { FormItemSwitch } from '@/components/form/Switch';
+import { FormItemTextInput } from '@/components/form/TextInput';
+import { useTranslation } from 'react-i18next';
+import { FormSection } from './FormSection';
+import { FormItemSelect } from '@/components/form/Select';
+import { Divider, InputWrapper } from '@mantine/core';
+import { FormItemTagsInput } from '../form/TagInput';
+
+const VaultSecretForm = () => {
+  const { t } = useTranslation();
+  const { control } = useFormContext<APISIXType['Secret']>();
+
+  return (
+    <>
+      <FormItemTextInput
+        control={control}
+        name="uri"
+        label={t('form.secrets.vault.uri')}
+      />
+      <FormItemTextInput
+        control={control}
+        name="prefix"
+        label={t('form.secrets.vault.prefix')}
+      />
+      <FormItemTextInput
+        control={control}
+        name="token"
+        label={t('form.secrets.vault.token')}
+      />
+      <FormItemTextInput
+        control={control}
+        name="namespace"
+        label={t('form.secrets.vault.namespace')}
+      />
+    </>
+  );
+};
+
+const AWSSecretForm = () => {
+  const { t } = useTranslation();
+  const { control } = useFormContext<APISIXType['Secret']>();
+
+  return (
+    <>
+      <FormItemTextInput
+        control={control}
+        name="access_key_id"
+        label={t('form.secrets.aws.access_key_id')}
+      />
+      <FormItemTextInput
+        control={control}
+        name="secret_access_key"
+        label={t('form.secrets.aws.secret_access_key')}
+      />
+      <FormItemTextInput
+        control={control}
+        name="session_token"
+        label={t('form.secrets.aws.session_token')}
+      />
+
+      <FormItemTextInput
+        control={control}
+        name="region"
+        label={t('form.secrets.aws.region')}
+      />
+      <FormItemTextInput
+        control={control}
+        name="endpoint_url"
+        label={t('form.secrets.aws.endpoint_url')}
+      />
+    </>
+  );
+};
+
+const GCPSecretForm = () => {
+  const { t } = useTranslation();
+  const { control } = useFormContext<APISIXType['Secret']>();
+
+  return (
+    <>
+      <InputWrapper label={t('form.secrets.gcp.ssl_verify')}>
+        <FormItemSwitch control={control} name="ssl_verify" />
+      </InputWrapper>
+      <FormSection legend={t('form.secrets.gcp.auth')}>
+        <FormItemTextInput
+          control={control}
+          name="auth_file"
+          label={t('form.secrets.gcp.auth_file')}
+        />
+        <Divider my="xs" label={t('or')} />
+        <FormSection legend={t('form.secrets.gcp.auth_config')}>
+          <FormItemTextInput
+            control={control}
+            name="auth_config.client_email"
+            label={t('form.secrets.gcp.client_email')}
+          />
+          <FormItemTextInput
+            control={control}
+            name="auth_config.private_key"
+            label={t('form.secrets.gcp.private_key')}
+          />
+          <FormItemTextInput
+            control={control}
+            name="auth_config.project_id"
+            label={t('form.secrets.gcp.project_id')}
+          />
+          <FormItemTextInput
+            control={control}
+            name="auth_config.token_uri"
+            label={t('form.secrets.gcp.token_uri')}
+          />
+          <FormItemTagsInput
+            control={control}
+            name="auth_config.scope"
+            label={t('form.secrets.gcp.scope')}
+          />
+          <FormItemTextInput
+            control={control}
+            name="auth_config.entries_uri"
+            label={t('form.secrets.gcp.entries_uri')}
+          />
+        </FormSection>
+      </FormSection>
+    </>
+  );
+};
+
+type FormSectionManagerProps = { readOnlyManager?: boolean };
+const FormSectionManager = (props: FormSectionManagerProps) => {
+  const { readOnlyManager } = props;
+  const { t } = useTranslation();
+  const { control } = useFormContext<APISIXType['Secret']>();
+  return (
+    <FormSection legend={t('form.secrets.manager')} disabled={readOnlyManager}>
+      <FormItemSelect
+        control={control}
+        name="manager"
+        defaultValue={APISIX.Secret.options[0].shape.manager.value}
+        data={APISIX.Secret.options.map((v) => v.shape.manager.value)}
+      />
+    </FormSection>
+  );
+};
+
+const FormSectionManagerConfig = () => {
+  const { t } = useTranslation();
+  const { watch } = useFormContext<APISIXType['Secret']>();
+  // useWatch not working here
+  const manager = watch('manager');
+  return (
+    <FormSection legend={t('form.secrets.managerConfig')}>
+      {manager === 'vault' && <VaultSecretForm />}
+      {manager === 'aws' && <AWSSecretForm />}
+      {manager === 'gcp' && <GCPSecretForm />}
+    </FormSection>
+  );
+};
+
+/**
+ * id and manager cannot be changed when editing
+ */
+export const FormPartSecret = (props: FormSectionManagerProps) => {
+  const { readOnlyManager } = props;
+  return (
+    <>
+      <FormSectionManager readOnlyManager={readOnlyManager} />
+      <FormSectionManagerConfig />
+    </>
+  );
+};

src/components/form-slice/FormSectionGeneral.tsx

@@ -22,7 +22,6 @@ const DisplayDate = () => {
 const FormItemID = () => {
   const { control } = useFormContext<APISIXType['Info']>();
   const { t } = useTranslation();
-
   return (
     <FormItemTextInput control={control} name="id" label={t('form.info.id')} />
   );
@@ -31,13 +30,18 @@ const FormItemID = () => {
 export type FormSectionGeneralProps = {
   showDate?: boolean;
   showID?: boolean;
+  readOnly?: boolean;
 };
 
 export const FormSectionGeneral = (props: FormSectionGeneralProps) => {
-  const { showDate = true, showID = true } = props;
+  const { showDate = true, showID = true, readOnly = false } = props;
   const { t } = useTranslation();
+  // we use fieldset disabled to show readonly state
+  // because mantine readOnly style looks like we can edit
+  // this is also the way rhf recommends,
+  // Using disable directly on the component will cause rhf to ignore the value
   return (
-    <FormSection legend={t('form.general.title')}>
+    <FormSection legend={t('form.general.title')} disabled={readOnly}>
       {showID && <FormItemID />}
       {showID && showDate && <Divider my="lg" />}
       {showDate && <DisplayDate />}

src/config/constant.ts

@@ -12,6 +12,7 @@ export const API_GLOBAL_RULES = '/global_rules';
 export const API_PLUGINS = '/plugins';
 export const API_PLUGINS_LIST = '/plugins/list';
 export const API_PLUGIN_METADATA = '/plugin_metadata';
+export const API_SECRETS = '/secrets';
 export const API_CONSUMERS = '/consumers';
 export const API_CREDENTIALS = (username: string) =>
   `${API_CONSUMERS}/${username}/credentials` as const;

src/locales/en/common.json

@@ -97,6 +97,36 @@
       "vars": "Vars"
     },
     "search": "Search",
+    "secrets": {
+      "aws": {
+        "access_key_id": "Access Key ID",
+        "endpoint_url": "Endpoint URL",
+        "region": "Region",
+        "secret_access_key": "Secret Access Key",
+        "session_token": "Session Token"
+      },
+      "gcp": {
+        "auth": "Auth",
+        "auth_config": "Auth Configuration",
+        "auth_file": "Auth File",
+        "client_email": "Client Email",
+        "private_key": "Private Key",
+        "project_id": "Project ID",
+        "token_uri": "Token URI",
+        "scope": "Scope",
+        "entries_uri": "Entries URI",
+        "ssl_verify": "SSL Verify"
+      },
+      "manager": "Secret Manager",
+      "managerConfig": "Manager Configuration",
+      "title": "Secret Configuration",
+      "vault": {
+        "namespace": "Namespace",
+        "prefix": "Prefix",
+        "token": "Token",
+        "uri": "URI"
+      }
+    },
     "ssls": {
       "cert": "Certificate",
       "cert_key_list": {
@@ -348,6 +378,19 @@
     "title": "Routes"
   },
   "seconds": "Seconds",
+  "secrets": {
+    "add": {
+      "success": "Add Secret Successfully",
+      "title": "Add Secret"
+    },
+    "detail": {
+      "title": "Secret Detail"
+    },
+    "edit": {
+      "success": "Edit Secret Successfully",
+      "title": "Edit Secret"
+    }
+  },
   "services": {
     "add": {
       "success": "Add Service Successfully",