import { PermissionAction } from '@supabase/shared-types/out/constants' import { useParams } from 'common' import { useEffect } from 'react' import toast from 'react-hot-toast' import { AlertDescription_Shadcn_, AlertTitle_Shadcn_, Alert_Shadcn_, Form, IconAlertCircle, InputNumber, Toggle, } from 'ui' import { boolean, number, object } from 'yup' import { FormActions, FormHeader, FormPanel, FormSection, FormSectionContent, FormSectionLabel, } from 'components/ui/Forms' import { useAuthConfigQuery } from 'data/auth/auth-config-query' import { useOrgSubscriptionQuery } from 'data/subscriptions/org-subscription-query' import { useAuthConfigUpdateMutation } from 'data/auth/auth-config-update-mutation' import { useCheckPermissions, useSelectedOrganization } from 'hooks' import { IS_PLATFORM } from 'lib/constants' import UpgradeToPro from 'components/ui/UpgradeToPro' const schema = object({ JWT_EXP: number() .max(604800, 'Must be less than 604800') .required('Must have a JWT expiry value'), REFRESH_TOKEN_ROTATION_ENABLED: boolean().required(), SECURITY_REFRESH_TOKEN_REUSE_INTERVAL: number() .min(0, 'Must be a value more than 0') .required('Must have a Reuse Interval value'), MFA_MAX_ENROLLED_FACTORS: number() .min(0, 'Must be be a value more than 0') .max(30, 'Must be a value no greater than 30'), DB_MAX_POOL_SIZE: number() .min(1, 'Must be 1 or larger') .max(200, 'Must be a value no greater than 200'), API_MAX_REQUEST_DURATION: number() .min(5, 'Must be 5 or larger') .max(30, 'Must be a value no greater than 30'), }) const AdvancedAuthSettingsForm = () => { const { ref: projectRef } = useParams() const { data: authConfig, error: authConfigError, isLoading, isError, isSuccess, } = useAuthConfigQuery({ projectRef }) const { mutate: updateAuthConfig, isLoading: isUpdatingConfig } = useAuthConfigUpdateMutation() const formId = 'auth-config-advanced-form' const canUpdateConfig = useCheckPermissions(PermissionAction.UPDATE, 'custom_config_gotrue') const organization = useSelectedOrganization() const { data: subscription, isSuccess: isSuccessSubscription } = useOrgSubscriptionQuery({ orgSlug: organization?.slug, }) const isTeamsEnterprisePlan = isSuccessSubscription && subscription.plan.id !== 'free' && subscription.plan.id !== 'pro' const promptTeamsEnterpriseUpgrade = IS_PLATFORM && !isTeamsEnterprisePlan const INITIAL_VALUES = { SITE_URL: authConfig?.SITE_URL, JWT_EXP: authConfig?.JWT_EXP, REFRESH_TOKEN_ROTATION_ENABLED: authConfig?.REFRESH_TOKEN_ROTATION_ENABLED || false, SECURITY_REFRESH_TOKEN_REUSE_INTERVAL: authConfig?.SECURITY_REFRESH_TOKEN_REUSE_INTERVAL, MFA_MAX_ENROLLED_FACTORS: authConfig?.MFA_MAX_ENROLLED_FACTORS || 10, DB_MAX_POOL_SIZE: authConfig?.DB_MAX_POOL_SIZE || 10, API_MAX_REQUEST_DURATION: authConfig?.API_MAX_REQUEST_DURATION || 10, } const onSubmit = (values: any, { resetForm }: any) => { const payload = { ...values } if (!isTeamsEnterprisePlan) { delete payload.DB_MAX_POOL_SIZE delete payload.API_MAX_REQUEST_DURATION } updateAuthConfig( { projectRef: projectRef!, config: payload }, { onError: (error) => { toast.error(`Failed to update settings: ${error?.message}`) }, onSuccess: () => { toast.success('Successfully updated settings') resetForm({ values: values, initialValues: values }) }, } ) } if (isError) { return ( Failed to retrieve auth configuration {authConfigError.message} ) } return (

{({ handleReset, resetForm, values, initialValues }: any) => { const hasChanges = JSON.stringify(values) !== JSON.stringify(initialValues) // Form is reset once remote data is loaded in store // eslint-disable-next-line react-hooks/rules-of-hooks useEffect(() => { if (isSuccess) resetForm({ values: INITIAL_VALUES, initialValues: INITIAL_VALUES }) }, [isSuccess]) return ( <> } > Access Tokens (JWT)}> seconds} disabled={!canUpdateConfig} /> Refresh Tokens}> {values.REFRESH_TOKEN_ROTATION_ENABLED && ( seconds} disabled={!canUpdateConfig} /> )} Multi-Factor Authentication (MFA)} > factors} disabled={!canUpdateConfig} /> Max Direct Database Connections} > {promptTeamsEnterpriseUpgrade && ( )} connections} disabled={!canUpdateConfig || !isTeamsEnterprisePlan} /> Max Request Duration}> {promptTeamsEnterpriseUpgrade && ( )} seconds} disabled={!canUpdateConfig || !isTeamsEnterprisePlan} /> ) }} ) } export default AdvancedAuthSettingsForm