From 00c44a965de84f731f39fdb8862f0d837854851c Mon Sep 17 00:00:00 2001
From: Yibo Wang <yibow@amazon.com>
Date: Tue, 30 Aug 2022 08:03:58 -0700
Subject: [PATCH] Refactor of credential editing page layout & refactor backend
 field validation method

---
 .../create_credential_form.tsx                |   6 +-
 .../common/components/header/header.tsx       |   9 +-
 .../components/edit_credential.tsx            | 338 ++++++++++++------
 .../edit_credential_wizard.tsx                |   6 +-
 .../data_source/common/credentials/types.ts   |   2 +-
 ...credential_saved_objects_client_wrapper.ts |  56 +--
 6 files changed, 275 insertions(+), 142 deletions(-)

diff --git a/src/plugins/credential_management/public/components/common/components/create_credential_form/create_credential_form.tsx b/src/plugins/credential_management/public/components/common/components/create_credential_form/create_credential_form.tsx
index 592a8d9dc524..91971f9b9b6f 100644
--- a/src/plugins/credential_management/public/components/common/components/create_credential_form/create_credential_form.tsx
+++ b/src/plugins/credential_management/public/components/common/components/create_credential_form/create_credential_form.tsx
@@ -16,6 +16,7 @@ import {
   EuiSpacer,
   EuiText,
 } from '@elastic/eui';
+import { i18n } from '@osd/i18n';
 import { FormattedMessage } from '@osd/i18n/react';
 import { DocLinksStart } from 'src/core/public';
 import { context as contextType } from '../../../../../../opensearch_dashboards_react/public';
@@ -150,11 +151,14 @@ export class CredentialForm extends React.Component<CredentialFormProps, Credent
     }
   };
 
+  createCredentialHeader = i18n.translate('credentialManagement.createIndexPatternHeader', {
+    defaultMessage: 'Create Stored Credential',
+  });
   /* Render methods */
 
   renderHeader() {
     const { docLinks } = this.props;
-    return <Header docLinks={docLinks} />;
+    return <Header docLinks={docLinks} headerTitle={this.createCredentialHeader} />;
   }
 
   renderContent = () => {
diff --git a/src/plugins/credential_management/public/components/common/components/header/header.tsx b/src/plugins/credential_management/public/components/common/components/header/header.tsx
index 95cccfa99c2d..a78e24e45aa3 100644
--- a/src/plugins/credential_management/public/components/common/components/header/header.tsx
+++ b/src/plugins/credential_management/public/components/common/components/header/header.tsx
@@ -16,23 +16,22 @@ import { CredentialManagementContext } from '../../../../types';
 export const Header = ({
   prompt,
   docLinks,
+  headerTitle,
 }: {
   prompt?: React.ReactNode;
   docLinks: DocLinksStart;
+  headerTitle: string;
 }) => {
   const changeTitle = useOpenSearchDashboards<CredentialManagementContext>().services.chrome
     .docTitle.change;
-  const createCredentialHeader = i18n.translate('credentialManagement.createIndexPatternHeader', {
-    defaultMessage: 'Create Stored Credential',
-  });
 
-  changeTitle(createCredentialHeader);
+  changeTitle(headerTitle);
 
   return (
     <div>
       <EuiTitle>
         <h1>
-          {createCredentialHeader}
+          {headerTitle}
           <>
             {' '}
             <EuiBetaBadge
diff --git a/src/plugins/credential_management/public/components/edit_credential_wizard/components/edit_credential.tsx b/src/plugins/credential_management/public/components/edit_credential_wizard/components/edit_credential.tsx
index 4b036d7d2e87..ee6dbda686ad 100644
--- a/src/plugins/credential_management/public/components/edit_credential_wizard/components/edit_credential.tsx
+++ b/src/plugins/credential_management/public/components/edit_credential_wizard/components/edit_credential.tsx
@@ -14,8 +14,6 @@ import {
   EuiDescribedFormGroup,
   EuiFormRow,
   EuiFieldText,
-  EuiSelect,
-  EuiLink,
   EuiButton,
   EuiPageContent,
   EuiFieldPassword,
@@ -25,6 +23,16 @@ import {
   EuiConfirmModal,
   EuiLoadingSpinner,
   EuiOverlayMask,
+  EuiFlexGroup,
+  EuiText,
+  EuiSpacer,
+  EuiBottomBar,
+  EuiButtonEmpty,
+  EuiModal,
+  EuiModalBody,
+  EuiModalFooter,
+  EuiModalHeader,
+  EuiModalHeaderTitle,
 } from '@elastic/eui';
 import { DocLinksStart } from 'src/core/public';
 import {
@@ -42,17 +50,20 @@ import { LocalizedContent } from '../../common/text_content';
 interface EditCredentialState {
   credentialName: string;
   credentialMaterialsType: string;
+  credentialDescription: string;
   username?: string;
   password?: string;
   dual: boolean;
   toasts: EuiGlobalToastListToast[];
   docLinks: DocLinksStart;
-  isVisible: boolean;
+  isDeleteModalVisible: boolean;
+  isUpdateModalVisible: boolean;
   isLoading: boolean;
 }
 
 export interface EditCredentialProps extends RouteComponentProps {
   credential: EditCredentialItem;
+  originalCredential: EditCredentialItem;
 }
 
 export class EditCredentialComponent extends React.Component<
@@ -63,76 +74,44 @@ export class EditCredentialComponent extends React.Component<
   public readonly context!: CredentialManagmentContextValue;
   constructor(props: EditCredentialProps, context: CredentialManagmentContextValue) {
     super(props, context);
-
     context.services.setBreadcrumbs(getCreateBreadcrumbs());
 
     this.state = {
       credentialName: props.credential.title,
       credentialMaterialsType: CredentialMaterialsType.UsernamePasswordType,
-      username: undefined,
+      credentialDescription: props.credential.description || '',
+      username: props.credential.username || '',
       password: undefined,
       dual: true,
       toasts: [],
       docLinks: context.services.docLinks,
-      isVisible: false,
+      isDeleteModalVisible: false,
+      isUpdateModalVisible: false,
       isLoading: false,
     };
   }
 
-  confirmDelete = async () => {
-    const { savedObjects } = this.context.services;
-    this.setState({ isLoading: true });
-    try {
-      await savedObjects.client.delete(CREDENTIAL_SAVED_OBJECT_TYPE, this.props.credential.id);
-      this.props.history.push('');
-    } catch (e) {
-      const deleteCredentialFailMsg = (
-        <FormattedMessage
-          id="credentialManagement.editCredential.deleteCredentialFailMsg"
-          defaultMessage="The credential delete failed with some errors. Please try it again.'"
-        />
-      );
-      this.setState((prevState) => ({
-        toasts: prevState.toasts.concat([
-          {
-            title: deleteCredentialFailMsg,
-            id: deleteCredentialFailMsg.props.id,
-            color: 'warning',
-            iconType: 'alert',
-          },
-        ]),
-      }));
-    }
-    this.setState({ isLoading: false });
-  };
-
   delelteButtonRender() {
     return (
       <>
-        <div
-          style={{
-            display: 'flex',
-            alignItems: 'center',
-            justifyContent: 'end',
-          }}
-        >
-          <EuiFlexItem>
-            <EuiToolTip content={LocalizedContent.deleteCredentialButtonDescription}>
-              <EuiButtonIcon
-                color="danger"
-                onClick={this.removeCredential}
-                iconType="trash"
-                aria-label={LocalizedContent.deleteCredentialButtonDescription}
-              />
-            </EuiToolTip>
-          </EuiFlexItem>
-        </div>
+        {/* <EuiFlexGroup justifyContent="spaceBetween"> */}
+
+        <EuiFlexItem grow={false}>
+          <EuiToolTip content={LocalizedContent.deleteCredentialButtonDescription}>
+            <EuiButtonIcon
+              color="danger"
+              onClick={this.removeCredential}
+              iconType="trash"
+              aria-label={LocalizedContent.deleteCredentialButtonDescription}
+            />
+          </EuiToolTip>
+        </EuiFlexItem>
 
-        {this.state.isVisible ? (
+        {this.state.isDeleteModalVisible ? (
           <EuiConfirmModal
             title={LocalizedContent.deleteButtonOnConfirmText}
             onCancel={() => {
-              this.setState({ isVisible: false });
+              this.setState({ isDeleteModalVisible: false });
             }}
             onConfirm={this.confirmDelete}
             cancelButtonText={LocalizedContent.cancelButtonOnDeleteCancelText}
@@ -148,87 +127,156 @@ export class EditCredentialComponent extends React.Component<
     );
   }
 
-  renderContent() {
+  updatePasswordRender() {
+    const closeModal = () => this.setState({ isUpdateModalVisible: false });
+    return (
+      <>
+        <EuiButton onClick={this.updateCredentialPassword}>Update Password</EuiButton>
+
+        {this.state.isUpdateModalVisible ? (
+          <EuiModal onClose={closeModal}>
+            <EuiModalHeader>
+              <EuiModalHeaderTitle>
+                <h1>Update password</h1>
+              </EuiModalHeaderTitle>
+            </EuiModalHeader>
+
+            <EuiModalBody>
+              <EuiFieldPassword
+                placeholder="Passord field(focus)"
+                type={this.state.dual ? 'dual' : undefined}
+                value={this.state.password || ''}
+                onChange={(e) => this.setState({ password: e.target.value })}
+              />
+            </EuiModalBody>
+
+            <EuiModalFooter>
+              <EuiButtonEmpty onClick={closeModal}>Cancel</EuiButtonEmpty>
+              <EuiButton
+                type="submit"
+                form="modalFormId"
+                onClick={() => this.updateCredential(true)}
+                fill
+              >
+                Update
+              </EuiButton>
+            </EuiModalFooter>
+          </EuiModal>
+        ) : null}
+      </>
+    );
+  }
+
+  renderContent = () => {
     const options = [
       {
         value: CredentialMaterialsType.UsernamePasswordType,
         text: 'Username and Password Credential',
       },
     ];
-
     return (
-      <EuiPageContent>
+      <EuiForm component="form">
         {this.delelteButtonRender()}
-        <EuiHorizontalRule />
-        <EuiForm component="form">
+        <EuiSpacer size="l" />
+        <EuiPageContent>
+          <EuiFlexGroup justifyContent="spaceBetween">
+            <EuiFlexItem grow={false}>
+              <EuiText>
+                <h3>Save Credentials</h3>
+              </EuiText>
+            </EuiFlexItem>
+          </EuiFlexGroup>
+          <EuiHorizontalRule />
+
           <EuiDescribedFormGroup
-            title={<h3>Credential Name</h3>}
-            description={<p>The name of credential that you want to create</p>}
+            title={<h4>Credential Details</h4>}
+            description={
+              <p>
+                The credential information is used for reference in tables and when adding to a data
+                source connection
+              </p>
+            }
           >
-            <EuiFormRow label="Credential Name">
+            <EuiFormRow label="Credential Title">
               <EuiFieldText
-                placeholder="Your Credential Name"
+                placeholder="Your credential title"
                 value={this.state.credentialName || ''}
                 onChange={(e) => this.setState({ credentialName: e.target.value })}
               />
             </EuiFormRow>
+            <EuiFormRow label="Credential Description">
+              <EuiFieldText
+                placeholder="Your credential description"
+                value={this.state.credentialDescription || ''}
+                onChange={(e) => this.setState({ credentialDescription: e.target.value })}
+              />
+            </EuiFormRow>
           </EuiDescribedFormGroup>
+        </EuiPageContent>
+        <br />
+        <EuiPageContent>
+          <EuiFlexGroup justifyContent="spaceBetween">
+            <EuiFlexItem grow={false}>
+              <EuiText>
+                <h3>Authentication Details</h3>
+              </EuiText>
+            </EuiFlexItem>
+          </EuiFlexGroup>
+
+          <EuiHorizontalRule />
 
           <EuiDescribedFormGroup
-            title={<h3>Credential Type</h3>}
+            title={<h4>Authentication Details</h4>}
             description={
-              <div>
-                <p>
-                  The type of credential that you want to create{' '}
-                  <EuiLink href="#/display/text">
-                    <strong>Credential Types Supported</strong>
-                  </EuiLink>
-                </p>
-                <ul>
-                  <li>
-                    For <b>username_password_credential</b> type: this type can be used for{' '}
-                    credentials in format of username, password.{' '}
-                  </li>
-                  <li> Ex: OpenSearch basic auth </li>
-                </ul>
-                <ul>
-                  <li>
-                    For <b>aws_iam_credential</b> type: this type can only be used for aws iam
-                    credential, with aws_access_key_id, aws_secret_access_key, and region (optional)
-                  </li>
-                </ul>
-              </div>
+              <p>Modify these to update the authentication type and associated details</p>
             }
           >
-            <EuiFormRow label="Credential Type">
-              <EuiSelect
-                onChange={(e) => this.setState({ credentialMaterialsType: e.target.value })}
-                options={options}
-              />
+            <EuiFormRow label="Authentication Method">
+              <EuiText size="s">Username & password</EuiText>
             </EuiFormRow>
-            <EuiFormRow label="User Name">
+
+            <EuiSpacer />
+            <EuiFormRow label="Username">
               <EuiFieldText
-                placeholder="Your User Name"
-                value={this.state.username || undefined}
+                placeholder="Your username"
+                value={this.state.username || ''}
                 onChange={(e) => this.setState({ username: e.target.value })}
               />
             </EuiFormRow>
             <EuiFormRow label="Password">
-              <EuiFieldPassword
-                placeholder="Your Password"
-                type={this.state.dual ? 'dual' : undefined}
-                value={this.state.password || undefined}
-                onChange={(e) => this.setState({ password: e.target.value })}
-              />
+              <EuiFlexGroup>
+                <EuiFlexItem>
+                  <EuiText size="s">*********</EuiText>
+                </EuiFlexItem>
+                <EuiFlexItem>{this.updatePasswordRender()}</EuiFlexItem>
+              </EuiFlexGroup>
             </EuiFormRow>
           </EuiDescribedFormGroup>
-          <EuiButton fill onClick={this.updateCredential}>
-            Update
-          </EuiButton>
-        </EuiForm>
-      </EuiPageContent>
+
+          {/* bottom bar implementation */}
+          <EuiBottomBar>
+            <EuiFlexGroup justifyContent="flexEnd">
+              <EuiFlexItem grow={false}>
+                <EuiButtonEmpty color="ghost" size="s">
+                  Cancel changes
+                </EuiButtonEmpty>
+              </EuiFlexItem>
+              <EuiFlexItem grow={false}>
+                <EuiButton
+                  color="success"
+                  fill
+                  size="s"
+                  onClick={() => this.updateCredential(false)}
+                >
+                  Save changes
+                </EuiButton>
+              </EuiFlexItem>
+            </EuiFlexGroup>
+          </EuiBottomBar>
+        </EuiPageContent>
+      </EuiForm>
     );
-  }
+  };
 
   removeToast = (id: string) => {
     this.setState((prevState) => ({
@@ -258,24 +306,63 @@ export class EditCredentialComponent extends React.Component<
   }
 
   removeCredential = async () => {
-    this.setState({ isVisible: true });
+    this.setState({ isDeleteModalVisible: true });
+  };
+
+  updateCredentialPassword = async () => {
+    this.setState({ isUpdateModalVisible: true });
   };
 
-  updateCredential = async () => {
+  updateCredential = async (isUpdatePassword: boolean) => {
     const { savedObjects } = this.context.services;
-    this.setState({ isLoading: true });
+    const { originalCredential } = this.props;
+
+    this.setState({ isLoading: true, isUpdateModalVisible: false });
+
     try {
-      await savedObjects.client.update('credential', this.props.credential.id, {
-        title: this.state.credentialName,
+      const credentialAttributes = {
+        title: isUpdatePassword ? originalCredential.title : this.state.credentialName,
+        description: isUpdatePassword
+          ? originalCredential.description
+          : this.state.credentialDescription,
         credentialMaterials: {
           credentialMaterialsType: this.state.credentialMaterialsType,
           credentialMaterialsContent: {
-            username: this.state.username,
+            username: isUpdatePassword ? originalCredential.username : this.state.username,
             password: this.state.password,
           },
         },
-      });
-      this.props.history.push('');
+      };
+      if (!isUpdatePassword) {
+        delete credentialAttributes.credentialMaterials.credentialMaterialsContent.password;
+      }
+      await savedObjects.client.update(
+        CREDENTIAL_SAVED_OBJECT_TYPE,
+        this.props.credential.id,
+        credentialAttributes
+      );
+      if (isUpdatePassword) {
+        this.setState({ password: '' });
+
+        const editCredentialSuccessMsg = (
+          <FormattedMessage
+            id="credentialManagement.editCredential.loadEditCredentialSuccessMsg"
+            defaultMessage="Success!!"
+          />
+        );
+        this.setState((prevState) => ({
+          toasts: prevState.toasts.concat([
+            {
+              title: editCredentialSuccessMsg,
+              id: editCredentialSuccessMsg.props.id,
+              color: 'success',
+              iconType: 'check',
+            },
+          ]),
+        }));
+      } else {
+        this.props.history.push('');
+      }
     } catch (e) {
       const editCredentialFailMsg = (
         <FormattedMessage
@@ -296,6 +383,33 @@ export class EditCredentialComponent extends React.Component<
     }
     this.setState({ isLoading: false });
   };
+
+  confirmDelete = async () => {
+    const { savedObjects } = this.context.services;
+    this.setState({ isLoading: true });
+    try {
+      await savedObjects.client.delete(CREDENTIAL_SAVED_OBJECT_TYPE, this.props.credential.id);
+      this.props.history.push('');
+    } catch (e) {
+      const deleteCredentialFailMsg = (
+        <FormattedMessage
+          id="credentialManagement.editCredential.deleteCredentialFailMsg"
+          defaultMessage="The credential delete failed with some errors. Please try it again.'"
+        />
+      );
+      this.setState((prevState) => ({
+        toasts: prevState.toasts.concat([
+          {
+            title: deleteCredentialFailMsg,
+            id: deleteCredentialFailMsg.props.id,
+            color: 'warning',
+            iconType: 'alert',
+          },
+        ]),
+      }));
+    }
+    this.setState({ isLoading: false });
+  };
 }
 
 export const EditCredential = withRouter(EditCredentialComponent);
diff --git a/src/plugins/credential_management/public/components/edit_credential_wizard/edit_credential_wizard.tsx b/src/plugins/credential_management/public/components/edit_credential_wizard/edit_credential_wizard.tsx
index 8975c5542134..fe36a05c355e 100644
--- a/src/plugins/credential_management/public/components/edit_credential_wizard/edit_credential_wizard.tsx
+++ b/src/plugins/credential_management/public/components/edit_credential_wizard/edit_credential_wizard.tsx
@@ -28,6 +28,7 @@ const EditCredentialWizard: React.FunctionComponent<RouteComponentProps<{ id: st
 
   /* State Variables */
   const [credential, setCredential] = useState<EditCredentialItem>();
+  const [originalCredential, setOriginalCredential] = useState<EditCredentialItem>();
   const [toasts, setToasts] = useState<EuiGlobalToastListToast[]>([]);
 
   /* Fetch credential by id*/
@@ -49,6 +50,7 @@ const EditCredentialWizard: React.FunctionComponent<RouteComponentProps<{ id: st
           password: '',
         };
         setCredential(object);
+        setOriginalCredential({ ...object });
         setBreadcrumbs(getEditBreadcrumbs(object));
       } catch (e) {
         handleDisplayToastMessage({
@@ -78,8 +80,8 @@ const EditCredentialWizard: React.FunctionComponent<RouteComponentProps<{ id: st
     }
   };
 
-  if (credential) {
-    return <EditCredential credential={credential} />;
+  if (credential && originalCredential) {
+    return <EditCredential credential={credential} originalCredential={originalCredential} />;
   } else {
     return <h1>Credential not found!</h1>;
   }
diff --git a/src/plugins/data_source/common/credentials/types.ts b/src/plugins/data_source/common/credentials/types.ts
index 8888a1a1ba9f..4ee42e3d8f50 100644
--- a/src/plugins/data_source/common/credentials/types.ts
+++ b/src/plugins/data_source/common/credentials/types.ts
@@ -25,5 +25,5 @@ export interface CredentialMaterials extends SavedObjectAttributes {
 
 export interface UsernamePasswordTypedContent extends SavedObjectAttributes {
   username: string;
-  password: string;
+  password?: string;
 }
diff --git a/src/plugins/data_source/server/saved_objects/credential_saved_objects_client_wrapper.ts b/src/plugins/data_source/server/saved_objects/credential_saved_objects_client_wrapper.ts
index 4e116ce61023..829b96d40d9a 100644
--- a/src/plugins/data_source/server/saved_objects/credential_saved_objects_client_wrapper.ts
+++ b/src/plugins/data_source/server/saved_objects/credential_saved_objects_client_wrapper.ts
@@ -20,6 +20,7 @@ import { SavedObjectsErrorHelpers } from '../../../../core/server';
 import { CryptographyClient } from '../cryptography';
 
 import { CredentialMaterialsType, CREDENTIAL_SAVED_OBJECT_TYPE } from '../../common';
+import { credential } from './credential_saved_objects_type';
 
 /**
  * Describes the Credential Saved Objects Client Wrapper class,
@@ -138,15 +139,14 @@ export class CredentialSavedObjectsClientWrapper {
   }
 
   private async validateAndEncryptPartialAttributes<T = unknown>(attributes: T) {
-    this.validateCredentialMaterials(attributes.credentialMaterials);
+    this.validateAttributes(attributes);
 
     return await this.encryptCredentialMaterials(attributes);
   }
 
   private validateAttributes<T = unknown>(attributes: T) {
     const { title, credentialMaterials } = attributes;
-
-    if (title === undefined) {
+    if (!title) {
       throw SavedObjectsErrorHelpers.createBadRequestError('attribute "title" required');
     }
 
@@ -175,33 +175,33 @@ export class CredentialSavedObjectsClientWrapper {
     }
   }
 
-  private validateUsernamePasswordTypedContent<T = unknown>(credentialMaterialsContent: T) {
-    const { username, password } = credentialMaterialsContent;
-
-    if (username === undefined) {
-      throw SavedObjectsErrorHelpers.createBadRequestError('attribute "username" required');
-    }
-
-    if (password === undefined) {
-      throw SavedObjectsErrorHelpers.createBadRequestError('attribute "password" required');
-    }
-
-    return;
-  }
-
   private async encryptCredentialMaterials<T = unknown>(attributes: T) {
     const { credentialMaterials } = attributes;
 
     const { credentialMaterialsType, credentialMaterialsContent } = credentialMaterials;
+    const { username, password } = credentialMaterialsContent;
 
     switch (credentialMaterialsType) {
       case CredentialMaterialsType.UsernamePasswordType:
-        this.validateUsernamePasswordTypedContent(credentialMaterialsContent);
+        this.validateUsername(username);
+        if (password !== undefined) {
+          this.validatePassword(password);
+
+          return {
+            ...attributes,
+            credentialMaterials: await this.encryptUsernamePasswordTypedCredentialMaterials(
+              credentialMaterials
+            ),
+          };
+        }
         return {
           ...attributes,
-          credentialMaterials: await this.encryptUsernamePasswordTypedCredentialMaterials(
-            credentialMaterials
-          ),
+          credentialMaterials: {
+            credentialMaterialsType,
+            credentialMaterialsContent: {
+              username,
+            },
+          },
         };
       default:
         throw SavedObjectsErrorHelpers.createBadRequestError(
@@ -210,6 +210,20 @@ export class CredentialSavedObjectsClientWrapper {
     }
   }
 
+  private validateUsername<T = unknown>(username: T) {
+    if (!username) {
+      throw SavedObjectsErrorHelpers.createBadRequestError('attribute "username" required');
+    }
+    return;
+  }
+
+  private validatePassword<T = unknown>(password: T) {
+    if (!password) {
+      throw SavedObjectsErrorHelpers.createBadRequestError('attribute "password" required');
+    }
+    return;
+  }
+
   private async encryptUsernamePasswordTypedCredentialMaterials<T = unknown>(
     credentialMaterials: T
   ) {