mirror of
https://github.com/supabase/supabase.git
synced 2026-07-04 09:44:19 +08:00
* Replace all usage of useProjectContext with useSelectedProjectQuery * Replace all usage of useSelectedProject with useSelectedProjectQuery * Replace all usage of useProjectByRef with useProjectByRefQuery * Replace all usage of useSelectedOrganization with useSelectedOrganizationQuery * Deprecate useSelectedProject, useSelectedOrganization, and useProjectByRef hooks * Deprecate ProjecContext
197 lines
7.4 KiB
TypeScript
197 lines
7.4 KiB
TypeScript
import { PermissionAction } from '@supabase/shared-types/out/constants'
|
|
import { Download, Loader2 } from 'lucide-react'
|
|
import Link from 'next/link'
|
|
import { useEffect, useState } from 'react'
|
|
import { toast } from 'sonner'
|
|
|
|
import { useParams } from 'common'
|
|
import { ButtonTooltip } from 'components/ui/ButtonTooltip'
|
|
import { DocsButton } from 'components/ui/DocsButton'
|
|
import { FormHeader } from 'components/ui/Forms/FormHeader'
|
|
import { FormPanel } from 'components/ui/Forms/FormPanel'
|
|
import { FormSection, FormSectionContent, FormSectionLabel } from 'components/ui/Forms/FormSection'
|
|
import { useProjectSettingsV2Query } from 'data/config/project-settings-v2-query'
|
|
import { useSSLEnforcementQuery } from 'data/ssl-enforcement/ssl-enforcement-query'
|
|
import { useSSLEnforcementUpdateMutation } from 'data/ssl-enforcement/ssl-enforcement-update-mutation'
|
|
import { useCheckPermissions } from 'hooks/misc/useCheckPermissions'
|
|
import { useSelectedProjectQuery } from 'hooks/misc/useSelectedProject'
|
|
import { Alert, Button, Switch, Tooltip, TooltipContent, TooltipTrigger } from 'ui'
|
|
|
|
const SSLConfiguration = () => {
|
|
const { ref } = useParams()
|
|
const { data: project } = useSelectedProjectQuery()
|
|
const [isEnforced, setIsEnforced] = useState(false)
|
|
|
|
const { data: settings } = useProjectSettingsV2Query({ projectRef: ref })
|
|
const {
|
|
data: sslEnforcementConfiguration,
|
|
isLoading,
|
|
isSuccess,
|
|
} = useSSLEnforcementQuery({
|
|
projectRef: ref,
|
|
})
|
|
const { mutate: updateSSLEnforcement, isLoading: isSubmitting } = useSSLEnforcementUpdateMutation(
|
|
{
|
|
onSuccess: () => {
|
|
toast.success('Successfully updated SSL configuration')
|
|
},
|
|
onError: (error) => {
|
|
setIsEnforced(initialIsEnforced)
|
|
toast.error(`Failed to update SSL enforcement: ${error.message}`)
|
|
},
|
|
}
|
|
)
|
|
|
|
const canUpdateSSLEnforcement = useCheckPermissions(PermissionAction.UPDATE, 'projects', {
|
|
resource: {
|
|
project_id: project?.id,
|
|
},
|
|
})
|
|
const initialIsEnforced = isSuccess
|
|
? sslEnforcementConfiguration.appliedSuccessfully &&
|
|
sslEnforcementConfiguration.currentConfig.database
|
|
: false
|
|
|
|
const hasAccessToSSLEnforcement = !(
|
|
sslEnforcementConfiguration !== undefined &&
|
|
'isNotAllowed' in sslEnforcementConfiguration &&
|
|
sslEnforcementConfiguration.isNotAllowed
|
|
)
|
|
const env = process.env.NEXT_PUBLIC_ENVIRONMENT === 'prod' ? 'prod' : 'staging'
|
|
const hasSSLCertificate =
|
|
settings?.inserted_at !== undefined && new Date(settings.inserted_at) >= new Date('2021-04-30')
|
|
|
|
useEffect(() => {
|
|
if (!isLoading && sslEnforcementConfiguration) {
|
|
setIsEnforced(initialIsEnforced)
|
|
}
|
|
}, [isLoading])
|
|
|
|
const toggleSSLEnforcement = async () => {
|
|
if (!ref) return console.error('Project ref is required')
|
|
setIsEnforced(!isEnforced)
|
|
updateSSLEnforcement({ projectRef: ref, requestedConfig: { database: !isEnforced } })
|
|
}
|
|
|
|
return (
|
|
<div id="ssl-configuration">
|
|
<div className="flex items-center justify-between mb-6">
|
|
<FormHeader className="mb-0" title="SSL Configuration" description="" />
|
|
<DocsButton href="https://supabase.com/docs/guides/platform/ssl-enforcement" />
|
|
</div>
|
|
<FormPanel>
|
|
<FormSection
|
|
header={
|
|
<FormSectionLabel
|
|
className="lg:col-span-7"
|
|
description={
|
|
<div className="space-y-4">
|
|
<p className="text-sm text-foreground-light">
|
|
Reject non-SSL connections to your database
|
|
</p>
|
|
{isSuccess && !sslEnforcementConfiguration?.appliedSuccessfully && (
|
|
<Alert
|
|
withIcon
|
|
variant="warning"
|
|
title="SSL enforcement was not updated successfully"
|
|
>
|
|
Please try updating again, or contact{' '}
|
|
<Link
|
|
href="/support/new"
|
|
target="_blank"
|
|
rel="noreferrer"
|
|
className="underline"
|
|
>
|
|
support
|
|
</Link>{' '}
|
|
if this error persists
|
|
</Alert>
|
|
)}
|
|
</div>
|
|
}
|
|
>
|
|
Enforce SSL on incoming connections
|
|
</FormSectionLabel>
|
|
}
|
|
>
|
|
<FormSectionContent loading={false} className="lg:!col-span-5">
|
|
<div className="flex items-center justify-end mt-2.5 space-x-2">
|
|
{(isLoading || isSubmitting) && (
|
|
<Loader2 className="animate-spin" strokeWidth={1.5} size={16} />
|
|
)}
|
|
{isSuccess && (
|
|
<Tooltip>
|
|
<TooltipTrigger asChild>
|
|
{/* [Joshen] Added div as tooltip is messing with data state property of toggle */}
|
|
<div>
|
|
<Switch
|
|
size="large"
|
|
checked={isEnforced}
|
|
disabled={
|
|
isLoading ||
|
|
isSubmitting ||
|
|
!canUpdateSSLEnforcement ||
|
|
!hasAccessToSSLEnforcement
|
|
}
|
|
onCheckedChange={toggleSSLEnforcement}
|
|
/>
|
|
</div>
|
|
</TooltipTrigger>
|
|
{(!canUpdateSSLEnforcement || !hasAccessToSSLEnforcement) && (
|
|
<TooltipContent side="bottom" className="w-64 text-center">
|
|
{!canUpdateSSLEnforcement
|
|
? 'You need additional permissions to update SSL enforcement for your project'
|
|
: !hasAccessToSSLEnforcement
|
|
? 'Your project does not have access to SSL enforcement'
|
|
: ''}
|
|
</TooltipContent>
|
|
)}
|
|
</Tooltip>
|
|
)}
|
|
</div>
|
|
</FormSectionContent>
|
|
</FormSection>
|
|
|
|
<div className="grid grid-cols-1 items-center lg:grid-cols-2 p-8">
|
|
<div className="space-y-2">
|
|
<p className="block text-sm">SSL Certificate</p>
|
|
<div style={{ maxWidth: '420px' }}>
|
|
<p className="text-sm opacity-50">
|
|
Use this certificate when connecting to your database to prevent snooping and
|
|
man-in-the-middle attacks.
|
|
</p>
|
|
</div>
|
|
</div>
|
|
<div className="flex items-end justify-end">
|
|
{!hasSSLCertificate ? (
|
|
<ButtonTooltip
|
|
disabled
|
|
type="default"
|
|
icon={<Download />}
|
|
tooltip={{
|
|
content: {
|
|
side: 'bottom',
|
|
text: 'Projects before 15:08 (GMT+08), 29th April 2021 do not have SSL certificates installed',
|
|
},
|
|
}}
|
|
>
|
|
Download certificate
|
|
</ButtonTooltip>
|
|
) : (
|
|
<Button type="default" icon={<Download />}>
|
|
<a
|
|
href={`https://supabase-downloads.s3-ap-southeast-1.amazonaws.com/${env}/ssl/${env}-ca-2021.crt`}
|
|
>
|
|
Download certificate
|
|
</a>
|
|
</Button>
|
|
)}
|
|
</div>
|
|
</div>
|
|
</FormPanel>
|
|
</div>
|
|
)
|
|
}
|
|
|
|
export default SSLConfiguration
|