consul/ui/packages/consul-ui/app/abilities/acl.js

/**
 * Copyright (c) HashiCorp, Inc.
 * SPDX-License-Identifier: BUSL-1.1
 */

import BaseAbility from './base';
import { inject as service } from '@ember/service';

export default class ACLAbility extends BaseAbility {
  @service('env') env;

  resource = 'acl';
  segmented = false;
  // Access is very similar to read, but when ACLs are disabled you still need
  // access to ACLs in order to see the ACLs disabled page, which is accessing
  // the ACLs area, but without read
  get canAccess() {
    return this.env.var('CONSUL_ACLS_ENABLED') ? this.canRead : true;
  }

  get canRead() {
    return this.env.var('CONSUL_ACLS_ENABLED') && super.canRead;
  }

  get canDuplicate() {
    return this.env.var('CONSUL_ACLS_ENABLED') && super.canWrite;
  }

  get canDelete() {
    return this.env.var('CONSUL_ACLS_ENABLED') && this.item.ID !== 'anonymous' && super.canWrite;
  }

  get canUse() {
    return this.env.var('CONSUL_ACLS_ENABLED');
  }
}
Add UI copyright headers files (#16614) * Add copyright headers to UI files * Ensure copywrite file ignores external libs 2023-03-14 13:18:55 +00:00			`/**`
			`* Copyright (c) HashiCorp, Inc.`
[COMPLIANCE] License changes (#18443) * Adding explicit MPL license for sub-package This directory and its subdirectories (packages) contain files licensed with the MPLv2 `LICENSE` file in this directory and are intentionally licensed separately from the BSL `LICENSE` file at the root of this repository. * Adding explicit MPL license for sub-package This directory and its subdirectories (packages) contain files licensed with the MPLv2 `LICENSE` file in this directory and are intentionally licensed separately from the BSL `LICENSE` file at the root of this repository. * Updating the license from MPL to Business Source License Going forward, this project will be licensed under the Business Source License v1.1. Please see our blog post for more details at <Blog URL>, FAQ at www.hashicorp.com/licensing-faq, and details of the license at www.hashicorp.com/bsl. * add missing license headers * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 --------- Co-authored-by: hashicorp-copywrite[bot] <110428419+hashicorp-copywrite[bot]@users.noreply.github.com> 2023-08-11 13:12:13 +00:00			`* SPDX-License-Identifier: BUSL-1.1`
Add UI copyright headers files (#16614) * Add copyright headers to UI files * Ensure copywrite file ignores external libs 2023-03-14 13:18:55 +00:00			`*/`

ui: Restrict the viewing/editing of certain UI elements based on the users ACLs (#9687) This commit use the internal authorize endpoint along wiht ember-can to further restrict user access to certain UI features and navigational elements depending on the users ACL token 2021-02-19 16:42:16 +00:00			`import BaseAbility from './base';`
			`import { inject as service } from '@ember/service';`

			`export default class ACLAbility extends BaseAbility {`
			`@service('env') env;`

			`resource = 'acl';`
			`segmented = false;`
ui: Show the correct 'ACLs Disabled' page when ACLs are disabled (#10604) Adds 'can access ACLs' which means one of two things 1. When ACLs are disabled I can access the 'please enable ACLs' page 2. When ACLs are enabled, its the same as canRead 2021-07-14 17:52:13 +00:00			`// Access is very similar to read, but when ACLs are disabled you still need`
			`// access to ACLs in order to see the ACLs disabled page, which is accessing`
			`// the ACLs area, but without read`
			`get canAccess() {`
			`return this.env.var('CONSUL_ACLS_ENABLED') ? this.canRead : true;`
			`}`
ui: Restrict the viewing/editing of certain UI elements based on the users ACLs (#9687) This commit use the internal authorize endpoint along wiht ember-can to further restrict user access to certain UI features and navigational elements depending on the users ACL token 2021-02-19 16:42:16 +00:00
			`get canRead() {`
			`return this.env.var('CONSUL_ACLS_ENABLED') && super.canRead;`
			`}`
ui: Adds warning icon to side menu when ACLs are disabled (#9864) * ui: Adds warning icon to side menu when ACLs are are disabled 2021-03-17 11:23:00 +00:00
ui: Implement ACLs access based on ACLs (#9835) Adds restrictions to everything within the ACLs (and nspaces) area based on your ACLs (including readonly views etc.) 2021-03-11 09:29:11 +00:00			`get canDuplicate() {`
			`return this.env.var('CONSUL_ACLS_ENABLED') && super.canWrite;`
			`}`
ui: Adds warning icon to side menu when ACLs are disabled (#9864) * ui: Adds warning icon to side menu when ACLs are are disabled 2021-03-17 11:23:00 +00:00
ui: Implement ACLs access based on ACLs (#9835) Adds restrictions to everything within the ACLs (and nspaces) area based on your ACLs (including readonly views etc.) 2021-03-11 09:29:11 +00:00			`get canDelete() {`
			`return this.env.var('CONSUL_ACLS_ENABLED') && this.item.ID !== 'anonymous' && super.canWrite;`
			`}`
ui: Adds warning icon to side menu when ACLs are disabled (#9864) * ui: Adds warning icon to side menu when ACLs are are disabled 2021-03-17 11:23:00 +00:00
			`get canUse() {`
			`return this.env.var('CONSUL_ACLS_ENABLED');`
			`}`
ui: Restrict the viewing/editing of certain UI elements based on the users ACLs (#9687) This commit use the internal authorize endpoint along wiht ember-can to further restrict user access to certain UI features and navigational elements depending on the users ACL token 2021-02-19 16:42:16 +00:00			`}`