Fix: Changing security settings should not implicitly save allowedDomains

2022-06-28 19:32:54 +01:00
parent ac467b2936
commit c65a88fc9f
2 changed files with 53 additions and 42 deletions
--- a/app/scenes/Settings/Security.tsx
+++ b/app/scenes/Settings/Security.tsx
@@ -36,9 +36,12 @@ function Security() {
    defaultUserRole: team.defaultUserRole,
    memberCollectionCreate: team.memberCollectionCreate,
    inviteRequired: team.inviteRequired,
-    allowedDomains: team.allowedDomains,
  });

+  const [allowedDomains, setAllowedDomains] = useState([
+    ...(team.allowedDomains ?? []),
+  ]);
+
  const authenticationMethods = team.signinMethods;

  const showSuccessMessage = React.useMemo(
@@ -59,9 +62,7 @@ function Security() {
        setData(newData);
        await auth.updateTeam(newData);
        showSuccessMessage();
-        setDomainsChanged(false);
      } catch (err) {
-        setDomainsChanged(true);
        showToast(err.message, {
          type: "error",
        });
@@ -77,6 +78,21 @@ function Security() {
    [data, saveData]
  );

+  const handleSaveDomains = React.useCallback(async () => {
+    try {
+      await auth.updateTeam({
+        allowedDomains,
+      });
+      showSuccessMessage();
+      setDomainsChanged(false);
+    } catch (err) {
+      setDomainsChanged(true);
+      showToast(err.message, {
+        type: "error",
+      });
+    }
+  }, [auth, allowedDomains, showSuccessMessage, showToast]);
+
  const handleDefaultRoleChange = React.useCallback(
    async (newDefaultRole: string) => {
      await saveData({ ...data, defaultUserRole: newDefaultRole });
@@ -123,31 +139,26 @@ function Security() {
  );

  const handleRemoveDomain = async (index: number) => {
-    const newData = {
-      ...data,
-    };
-    newData.allowedDomains && newData.allowedDomains.splice(index, 1);
+    const newDomains = allowedDomains.filter((_, i) => index !== i);

-    setData(newData);
+    setAllowedDomains(newDomains);
    setDomainsChanged(true);
  };

  const handleAddDomain = () => {
-    const newData = {
-      ...data,
-      allowedDomains: [...(data.allowedDomains || []), ""],
-    };
+    const newDomains = [...allowedDomains, ""];

-    setData(newData);
+    setAllowedDomains(newDomains);
+    setDomainsChanged(true);
  };

  const createOnDomainChangedHandler = (index: number) => (
    ev: React.ChangeEvent<HTMLInputElement>
  ) => {
-    const newData = { ...data };
+    const newDomains = allowedDomains.slice();

-    newData.allowedDomains![index] = ev.currentTarget.value;
-    setData(newData);
+    newDomains[index] = ev.currentTarget.value;
+    setAllowedDomains(newDomains);
    setDomainsChanged(true);
  };

@@ -269,35 +280,34 @@ function Security() {
          "The domains which should be allowed to create accounts. This applies to both SSO and Email logins. Changing this setting does not affect existing user accounts."
        )}
      >
-        {data.allowedDomains &&
-          data.allowedDomains.map((domain, index) => (
-            <Flex key={index} gap={4}>
-              <Input
-                key={index}
-                id={`allowedDomains${index}`}
-                value={domain}
-                autoFocus={!domain}
-                placeholder="example.com"
-                required
-                flex
-                onChange={createOnDomainChangedHandler(index)}
-              />
-              <Remove>
-                <Tooltip tooltip={t("Remove domain")} placement="top">
-                  <NudeButton onClick={() => handleRemoveDomain(index)}>
-                    <CloseIcon />
-                  </NudeButton>
-                </Tooltip>
-              </Remove>
-            </Flex>
-          ))}
+        {allowedDomains.map((domain, index) => (
+          <Flex key={index} gap={4}>
+            <Input
+              key={index}
+              id={`allowedDomains${index}`}
+              value={domain}
+              autoFocus={!domain}
+              placeholder="example.com"
+              required
+              flex
+              onChange={createOnDomainChangedHandler(index)}
+            />
+            <Remove>
+              <Tooltip tooltip={t("Remove domain")} placement="top">
+                <NudeButton onClick={() => handleRemoveDomain(index)}>
+                  <CloseIcon />
+                </NudeButton>
+              </Tooltip>
+            </Remove>
+          </Flex>
+        ))}

        <Flex justify="space-between" gap={4} style={{ flexWrap: "wrap" }}>
-          {!data.allowedDomains?.length ||
-          data.allowedDomains[data.allowedDomains.length - 1] !== "" ? (
+          {!allowedDomains.length ||
+          allowedDomains[allowedDomains.length - 1] !== "" ? (
            <Fade>
              <Button type="button" onClick={handleAddDomain} neutral>
-                {data.allowedDomains?.length ? (
+                {allowedDomains.length ? (
                  <Trans>Add another</Trans>
                ) : (
                  <Trans>Add a domain</Trans>
@@ -312,7 +322,7 @@ function Security() {
            <Fade>
              <Button
                type="button"
-                onClick={handleChange}
+                onClick={handleSaveDomains}
                disabled={auth.isSaving}
              >
                <Trans>Save changes</Trans>
--- a/app/stores/AuthStore.ts
+++ b/app/stores/AuthStore.ts
@@ -236,6 +236,7 @@ export default class AuthStore {
    collaborativeEditing?: boolean;
    defaultCollectionId?: string | null;
    subdomain?: string | null | undefined;
+    allowedDomains?: string[] | null | undefined;
  }) => {
    this.isSaving = true;