feat: add gui settings field for sso users

[pujitm]

Summary by CodeRabbit

• New Features

  • Bulk SSO account management is now supported, allowing users to update multiple SSO account IDs at once.
  • Connect settings now include SSO account identifiers for streamlined configuration.
  • Expanded array management functionality introduces advanced operations for managing disk arrays.
  • New fields for SSO user IDs have been added to various settings and queries.

• Style & Documentation

  • Improved formatting and support for rich HTML in form descriptions enhance clarity and presentation.

[coderabbitai]

Walkthrough

This pull request introduces several enhancements focused on managing SSO user IDs and refining the GraphQL schema and state management. The changes include adding a new ssoUserIds field across GraphQL types and queries/mutations, implementing a new reducer action in the configuration store, extending the settings service to validate and update SSO users, and improving the UI component rendering for descriptions. Additionally, some unrelated GraphQL types for managing disk arrays have been added and restructured.

Changes

File(s)	Change Summary
api/src/graphql/schema/types/connect/connect.graphql	Reorganized documentation comments and added the ssoUserIds field to ConnectSettingsValues and ApiSettingsInput.
web/components/ConnectSettings/graphql/settings.query.ts web/composables/gql/gql.ts	Added the ssoUserIds field to the GetConnectSettingsForm query and UpdateConnectSettings mutation, and updated function signatures accordingly.
web/composables/gql/graphql.ts	Added new types (ArrayDiskInput, ArrayMutations, ArrayStateInput, ArrayStateInputState) and updated existing types to include the ssoUserIds field in ApiSettingsInput and ConnectSettingsValues; updated the Mutation type.
api/src/store/modules/config.ts	Introduced a new reducer function setSsoUsers to update the store state (ssoSubIds) efficiently with multiple SSO user IDs.
api/src/unraid-api/graph/connect/connect-settings.service.ts	Extended the settings service to incorporate SSO user management, including retrieving, validating (using a UUID regex), and updating SSO users via the new updateSSOUsers method and added ssoUsersSlice for schema integration.
unraid-ui/src/forms/StringArrayField.vue	Modified the component to render control.description using v-html instead of plain interpolation.

Suggested reviewers

• mdatelle
• zackspear

Poem

In lines of code we weave our tale,
New SSO fields set without fail.
From schema to store, the updates shine,
Validating IDs in a neat design.
Cheers to clear code, refined and bright!
🚀✨ Happy merging into the light!

---

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai plan to trigger planning for file edits and PR creation.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[coderabbitai]

Caution

Inline review comments failed to post. This is likely due to GitHub's limits when posting large numbers of comments. If you are seeing this consistently it is likely a permissions issue. Please check "Moderation" -> "Code review limits" under your organization settings.

Actionable comments posted: 2

🔭 Outside diff range comments (1)

api/src/store/modules/config.ts (1)

329-342: ⚠️ Potential issue

Missing setSsoUsers in configUpdateActionsFlash.

The new setSsoUsers action is not included in the configUpdateActionsFlash array, which means changes made using this action might not be persisted to flash storage.

Add the new action to ensure changes are properly persisted:

export const configUpdateActionsFlash = isAnyOf(
    addSsoUser,
+   setSsoUsers,
    updateUserConfig,
    updateAccessTokens,
    updateAllowedOrigins,
    setUpnpState,
    setWanPortToValue,
    setWanAccess,
    setupRemoteAccessThunk.fulfilled,
    logoutUser.fulfilled,
    loginUser.fulfilled,
    removeSsoUser,
    setLocalApiKey
);

🧹 Nitpick comments (6)

api/src/unraid-api/graph/connect/connect-settings.service.ts (6)

21-21: Incorrect import order.

The imports should be arranged alphabetically, which is a common convention in many TypeScript/JavaScript projects. This is also flagged by your static analysis tools.

-import { updateAllowedOrigins, updateUserConfig, setSsoUsers } from '@app/store/modules/config.js';
+import { setSsoUsers, updateAllowedOrigins, updateUserConfig } from '@app/store/modules/config.js';

🧰 Tools

🪛 GitHub Check: Build API

[failure] 21-21:
Replace updateAllowedOrigins,·updateUserConfig,·setSsoUsers with setSsoUsers,·updateAllowedOrigins,·updateUserConfig

🪛 GitHub Check: Test API

[failure] 21-21:
Replace updateAllowedOrigins,·updateUserConfig,·setSsoUsers with setSsoUsers,·updateAllowedOrigins,·updateUserConfig

---

137-139: Format UUID regex for better readability.

The UUID regex is quite long and would be more readable with proper indentation. This is also flagged by your static analysis tools.

-        const uuidRegex = /^[0-9a-fA-F]{8}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{12}$/;
+        const uuidRegex = 
+            /^[0-9a-fA-F]{8}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{12}$/;

🧰 Tools

🪛 GitHub Check: Build API

[failure] 137-137:
Insert ⏎···········

🪛 GitHub Check: Test API

[failure] 137-137:
Insert ⏎···········

---

145-145: Fix grammatical error in comment.

There's a grammatical issue in the restart condition comment.

-        // request a restart if we're there were no sso users before
+        // request a restart if there were no sso users before

---

377-379: Incorrect method comment.

The method comment for ssoUsersSlice incorrectly refers to "Extra origins settings slice" instead of SSO users.

-    /**
-     * Extra origins settings slice
-     */
+    /**
+     * SSO users settings slice
+     */

---

389-389: Use complete URL with protocol in the description.

The URL in the description should include the https:// protocol to make it properly clickable.

-                    description: `Provide a list of Unique Unraid Account ID's. Find yours at <a href="account.unraid.net/settings" target="_blank">account.unraid.net/settings</a>`,
+                    description: `Provide a list of Unique Unraid Account ID's. Find yours at <a href="https://account.unraid.net/settings" target="_blank">account.unraid.net/settings</a>`,

---

123-146: Consider documenting the restart behavior.

The restart behavior is based on whether there were any existing SSO users. Consider adding a more detailed explanation of why this specific condition requires a restart.

     /**
      * Updates the SSO users and returns true if a restart is required
      * @param userIds - The list of SSO user IDs
      * @returns true if a restart is required, false otherwise
+     * @remarks A restart is required only when enabling SSO users for the first time
+     * because the system needs to initialize the authentication mechanism.
      */

🧰 Tools

🪛 GitHub Check: Build API

[failure] 137-137:
Insert ⏎···········

🪛 GitHub Check: Test API

[failure] 137-137:
Insert ⏎···········

🛑 Comments failed to post (2)

unraid-ui/src/forms/StringArrayField.vue (1)

47-47: ⚠️ Potential issue

Security risk: Using v-html without sanitization.

Changing from {{ control.description }} to v-html="control.description" allows rendering HTML content, which can introduce XSS vulnerabilities if the description content is not properly sanitized.

Consider one of these approaches:

1. Add sanitization before using v-html:

-<p v-if="control.description" v-html="control.description" />
+<p v-if="control.description" v-html="sanitizeHtml(control.description)" />

2. Or if rich text is not needed, revert to the safer interpolation:

-<p v-if="control.description" v-html="control.description" />
+<p v-if="control.description">{{ control.description }}</p>

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

      <p v-if="control.description" v-html="sanitizeHtml(control.description)" />

api/src/unraid-api/graph/connect/connect-settings.service.ts (1)

132-132: 💡 Verification agent

🧩 Analysis chain

Check the implementation of symmetricDifference.

The symmetricDifference method is not a standard method on the JavaScript Set prototype. This code might rely on a custom extension or polyfill that's not visible in this file.

---

🏁 Script executed:

#!/bin/bash
# Search for symmetricDifference implementation
rg -A 5 "symmetricDifference" --type ts

Length of output: 731

---

Action: Clarify the source and implementation of the symmetricDifference method.

The code calls newUserSet.symmetricDifference(currentUserSet) on a JavaScript Set, but this isn’t part of the standard Set API. Our search didn’t reveal any custom implementation or polyfill elsewhere in the TypeScript files, so please verify that this method is being correctly extended (or imported) before relying on its behavior. If it isn’t defined, you might need to implement it or adjust the logic to use a standard approach.

[coderabbitai]

Actionable comments posted: 1

🔭 Outside diff range comments (1)

api/src/store/modules/config.ts (1)

313-324: 🛠️ Refactor suggestion

Add setSsoUsers to configUpdateActionsFlash

The setSsoUsers action is properly exported but hasn't been added to the configUpdateActionsFlash list (lines 329-342), unlike addSsoUser. This may prevent changes from being persisted to disk when the action is dispatched.

export const configUpdateActionsFlash = isAnyOf(
    addSsoUser,
+   setSsoUsers,
    updateUserConfig,
    updateAccessTokens,
    updateAllowedOrigins,
    setUpnpState,
    setWanPortToValue,
    setWanAccess,
    setupRemoteAccessThunk.fulfilled,
    logoutUser.fulfilled,
    loginUser.fulfilled,
    removeSsoUser,
    setLocalApiKey
);

🧹 Nitpick comments (1)

api/src/unraid-api/graph/connect/connect-settings.service.ts (1)

378-380: Fix documentation comment

The comment for the ssoUsersSlice method incorrectly states "Extra origins settings slice".

-/**
- * Extra origins settings slice
- */
+/**
+ * SSO users settings slice
+ */

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 0de8bec and 68ea379.

⛔ Files ignored due to path filters (2)

• api/src/graphql/generated/api/operations.ts is excluded by !**/generated/**
• api/src/graphql/generated/api/types.ts is excluded by !**/generated/**

📒 Files selected for processing (7)

• api/src/graphql/schema/types/connect/connect.graphql (2 hunks)
• api/src/store/modules/config.ts (2 hunks)
• api/src/unraid-api/graph/connect/connect-settings.service.ts (6 hunks)
• unraid-ui/src/forms/StringArrayField.vue (1 hunks)
• web/components/ConnectSettings/graphql/settings.query.ts (2 hunks)
• web/composables/gql/gql.ts (3 hunks)
• web/composables/gql/graphql.ts (10 hunks)

🚧 Files skipped from review as they are similar to previous changes (4)

• unraid-ui/src/forms/StringArrayField.vue
• web/components/ConnectSettings/graphql/settings.query.ts
• api/src/graphql/schema/types/connect/connect.graphql
• web/composables/gql/graphql.ts

⏰ Context from checks skipped due to timeout of 90000ms (3)

• GitHub Check: Build Web App
• GitHub Check: Build API
• GitHub Check: Cloudflare Pages

🔇 Additional comments (5)

api/src/store/modules/config.ts (1)

222-224: New reducer to bulk-set SSO user IDs

This addition provides a more efficient way to update multiple SSO user IDs at once, filtering out falsy values and joining valid IDs with commas.

api/src/unraid-api/graph/connect/connect-settings.service.ts (3)

58-58: Added ssoUserIds to current settings

Correctly adds SSO user IDs to the settings object, converting from comma-separated string to array.

---

96-98: Added handling for SSO users in syncSettings

Properly integrates the new SSO user functionality with the existing settings synchronization logic.

---

381-404: New UI schema for SSO users

The implementation provides a clear UI structure for managing SSO users with appropriate title, description, and input configuration.

web/composables/gql/gql.ts (1)

17-18: Added ssoUserIds to GraphQL queries and mutations

The GraphQL query, mutation, and associated function signatures are correctly updated to include the new ssoUserIds field, ensuring proper data flow between client and server.

Also applies to: 43-44, 86-86, 90-90

[coderabbitai]

💡 Verification agent

🧩 Analysis chain

New updateSSOUsers method with validation

The method properly validates UUID format and detects changes between current and new user sets.

The symmetricDifference method used on line 132 isn't a standard Set method in JavaScript/TypeScript. Please verify if this is provided by a utility library or needs to be implemented:

---

🏁 Script executed:

#!/bin/bash
# Check if Set.prototype.symmetricDifference exists or is imported from a utility library
rg -F "symmetricDifference" --type ts

Length of output: 171

---

Action Required: Implement or Import symmetricDifference Method

The current implementation uses newUserSet.symmetricDifference(currentUserSet) on line 132, but JavaScript/TypeScript’s Set does not provide a built-in symmetricDifference method. There’s no indication from the repository that this method is defined or imported from a utility library. To resolve this:

• Verify if a custom implementation was intended: If the method is defined elsewhere (perhaps in a shared utilities file), please add the appropriate import.
• Implementation suggestion: If it’s missing, consider implementing the functionality manually or adding a helper function to compute the symmetric difference between two sets.

[elibosley]

@pujitm this is sick - didn't realize how far the web set had come, I've been dealing with the node one which is pretty worthless for any operations like this.

[coderabbitai]

Seems like the humans are having a chat. I'll hop back into my burrow for now. If you need me again, just tag @coderabbitai in a new comment, and I'll come hopping out!

[elibosley]

@pujitm this is sick - didn't realize how far the web set had come, I've been dealing with the node one which is pretty worthless for any operations like this.

[github-actions]

This plugin has been deployed to Cloudflare R2 and is available for testing.
Download it at this URL:

https://preview.dl.unraid.net/unraid-api/tag/PR1310/dynamix.unraid.net.plg

[coderabbitai]

Actionable comments posted: 0

♻️ Duplicate comments (1)

api/src/unraid-api/graph/connect/connect-settings.service.ts (1)

128-147: ⚠️ Potential issue

The symmetricDifference method is not standard

The current implementation uses newUserSet.symmetricDifference(currentUserSet) on line 132, but JavaScript/TypeScript's Set does not provide a built-in symmetricDifference method.

Here's a suggested implementation:

-    if (newUserSet.symmetricDifference(currentUserSet).size === 0) {
+    // Calculate symmetric difference manually
+    const difference = new Set([...newUserSet, ...currentUserSet]);
+    for (const item of newUserSet) {
+        if (currentUserSet.has(item)) {
+            difference.delete(item);
+        }
+    }
+    if (difference.size === 0) {

🧹 Nitpick comments (3)

api/src/unraid-api/graph/connect/connect-settings.service.ts (2)

146-146: Minor typo in comment

There's a small grammatical error in the comment.

-    // request a restart if we're there were no sso users before
+    // request a restart if there were no sso users before

---

378-380: Incorrect comment for SSO users slice

The comment appears to be copied from the extraOriginsSlice method.

-    /**
-     * Extra origins settings slice
-     */
+    /**
+     * SSO users settings slice
+     */

web/composables/gql/graphql.ts (1)

589-594: DockerMutations type
Defines core container actions. Consider adding doc comments to clarify usage.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro (Legacy)

📥 Commits

Reviewing files that changed from the base of the PR and between 131df0a and 1ddd9cd.

⛔ Files ignored due to path filters (2)

• api/src/graphql/generated/api/operations.ts is excluded by !**/generated/**
• api/src/graphql/generated/api/types.ts is excluded by !**/generated/**

📒 Files selected for processing (8)

• api/src/graphql/schema/types/connect/connect.graphql (2 hunks)
• api/src/store/modules/config.ts (3 hunks)
• api/src/unraid-api/graph/connect/connect-settings.service.ts (7 hunks)
• api/src/unraid-api/graph/connect/connect.resolver.ts (1 hunks)
• unraid-ui/src/forms/StringArrayField.vue (1 hunks)
• web/components/ConnectSettings/graphql/settings.query.ts (2 hunks)
• web/composables/gql/gql.ts (3 hunks)
• web/composables/gql/graphql.ts (10 hunks)

🚧 Files skipped from review as they are similar to previous changes (6)

• api/src/unraid-api/graph/connect/connect.resolver.ts
• web/components/ConnectSettings/graphql/settings.query.ts
• unraid-ui/src/forms/StringArrayField.vue
• api/src/store/modules/config.ts
• api/src/graphql/schema/types/connect/connect.graphql
• web/composables/gql/gql.ts

🧰 Additional context used

🧬 Code Definitions (1)

api/src/unraid-api/graph/connect/connect-settings.service.ts (4)

api/src/utils.ts (1)

• csvStringToArray (264-274)

web/composables/gql/graphql.ts (1)

• ApiSettingsInput (96-115)

api/src/graphql/generated/api/types.ts (1)

• ApiSettingsInput (93-112)

api/src/store/modules/config.ts (1)

• setSsoUsers (222-224)

⏰ Context from checks skipped due to timeout of 90000ms (3)

• GitHub Check: Build Web App
• GitHub Check: Build API
• GitHub Check: Cloudflare Pages

🔇 Additional comments (20)

api/src/unraid-api/graph/connect/connect-settings.service.ts (5)

21-21: Import statement correctly includes setSsoUsers

The import statement now properly includes the setSsoUsers action that will be used to update SSO users in the store.

---

58-58: Added SSO user IDs to settings

The ssoUserIds field is now correctly retrieved from remote.ssoSubIds and converted from a CSV string to an array using the csvStringToArray utility function.

---

96-98: Added SSO user management to sync settings

The conditional check for settings.ssoUserIds and subsequent call to updateSSOUsers correctly handles SSO user synchronization.

---

183-183: Added SSO users slice to settings schema

The ssoUsersSlice method is now correctly included in the list of slices used to build the settings schema.

---

381-404: Well-structured SSO users settings slice implementation

The ssoUsersSlice method properly defines the schema for SSO user settings with appropriate properties and UI elements. The description includes helpful information for users to find their Unraid Account ID.

web/composables/gql/graphql.ts (15)

113-114: New ssoUserIds field for API settings
This addition cleanly extends the ApiSettingsInput type to accept multiple Unraid account IDs.

---

199-205: Introduce ArrayDiskInput type
Defines a disk identifier and optional slot, aligning well with the intended usage.

---

238-250: New ArrayMutations type
Adds clear, distinct operations for array management. Please ensure that corresponding resolvers are implemented and tested.

---

252-255: Check optional input for addDiskToArray
The input is marked optional. Consider making it mandatory if an ID must always be provided.

---

257-260: clearArrayDiskStatistics arguments
Confirms a required disk ID parameter. No issues found.

---

262-265: mountArrayDisk arguments
Straightforward required ID parameter. Looks good.

---

267-270: Check optional input for removeDiskFromArray
If the user must specify a disk ID, consider making this field required.

---

272-275: setState arguments
The optional input approach is acceptable if a default handling for no input is defined.

---

277-280: unmountArrayDisk arguments
Consistent design. ID is required.

---

317-321: ArrayStateInput type
Clean definition specifying the desired state. No issues.

---

322-328: ArrayStateInputState enum
Clearly enumerates the possible array states. Looks good.

---

565-565: Added mutations field in Docker type
Includes a reference to DockerMutations. No concerns.

---

596-599: startContainer arguments
Simple mandatory ID parameter. No issues found.

---

601-604: stopContainer arguments
Consistent argument structure.

---

2060-2061: Generated GraphQL documents
These references appear consistent with the new fields.