New version of the web application for administration of FreeIPA built using React and PatternFly.
You can read more about the plans here.
Note: these mockups are for general direction we're taking the Web UI. Some finer details and interactions will be worked out as we develop the application.
This project relies on containers to set up a development environment with FreeIPA installed and configured. The development environment is based on testing scenarios and only one scenario can be run at a time. More information on the development scenarios can be found in the developer/README.md file.
- Clone this repository
git clone https://github.com/freeipa/freeipa-webui
cd freeipa-webui
- Install the requirements
These instructions assume that podman is available on the system. Installation of podman is not in the scope of this document, but the alternative method with a Python virtual environment can be used:
python3 -m venv /tmp/webui
. /tmp/webui/bin/activate
pip install podman
If you want to use any non-default scenario, or you want to rebuild a modified version of the default scenario, you'll also need podman-compose and Ansible. You'll also need the ansible-freeipa and podman Ansible collections. Assuming the virtual environment is being used:
pip install ansible-core podman-compose
ansible-galaxy collection install -r developer/requirements.yml
- Start the default scenario
./developer/dev-env.sh
To run a different scenario, you need to build it first, and then start it:
./developer/dev-env.sh -B no-dns
./developer/dev-env.sh -s no-dns
You can list the available scenarios:
./developer/dev-env.sh -l
Note: once a scenario is built, the images are kept in the localhost registry, and the scenario can be started again, without building again.
- Add the default scenario container IP addresses to
/etc/hosts
sudo tee -a /etc/hosts < developer/scenarios/single-server/hosts
Note: You must add the specific
hostsfile for the scenario (the example uses the scenariosingle-server). Each scenario uses a different CIDR, and some may have different hostnames for the webui. Cleaning up old entries is a good practice.
- Prepare the webui to execute:
podman exec webui npm install
- Starting the webui
To start the webui development server (and watch the project for changes), run:
./developer/dev-env.sh -d
or directly through podman with:
podman exec -it webui npm run dev
Note that changes to the project can be made outside of the container that they will be notified to the development server running in the container, if using Linux. There's currently a limitation in macOS and Windows that may prevent the development webserver to be notified of file changes. This limitation currently affects all container environments (podman, docker and Apple's container).
Instead of the development server, you can build the project for production using either
./developer/dev-env.sh -p
or directly on the host with:
npm run build
- Accessing the webui
As the containers are executing as rootless containers, in its own network namespace, it is needed to use podman unshare --rootless-netns to start a browser that is able to access the container network. It is also necessary to use a separate profile. Also the IPA CA certificate is not trusted by the host, so an exception need to be granted.
To ease the process a script is provided:
./developer/open-browser.sh https://webui.ipa.test/ipa/modern-ui
The script will create a new profile (webui-profile), if needed, trust the IPA CA certificate, and open the webui in a new browser window.
Both Mozilla's Firefox and Google's Chrome are supported.
When using browsers deployed via Flatpak, some additional settings may be required. Currently, only Firefox is supported as Flatpak.
It may happen the the keyboard does not work when running the browser with permission to access the container's network. This will mostly happen with browsers deployed with Flatpak. A workaround is provided for this issue by using the open-browser.sh option-w. The workaround requires sudo.
The default credentials for the development environment are admin and Secret123.
We use handful of tools to help us with code quality, all of these tools are being run on the pipeline, you can and should run them locally as well.
We use eslint to check for linting errors. To run eslint, execute the following command:
$ npm run lintTo fix eslint errors, execute the following command:
$ npm run lint:fixNot all of these can be fixed automatically, you should fix errors manually as well.
We use prettier to check for formatting errors. Prettier is integrated to eslint, so if the changes only concern TypeScript, running eslint is usually enough.
To run prettier, execute the following command:
$ npm run prettierTo fix prettier errors, execute the following command:
$ npm run prettier:fixWe use knip to check for unused imports, exports and dead code. To run knip, execute the following command:
$ npm run knipThese errors should be fixed manually.
Integration testing uses Cypress library, which runs Gherkin-defined steps.
Warning
Never run integration tests on a production server. Clean-up step would delete all existing entries, e.g. users.
This instructions assume you are running the integration tests against the development container.
Note: The integration tests, currently, do not cleanup the test environment, it is recommended that you restart the container (
developer/dev-env.sh -r) before running the integration tests.
Run the integration tests in headless mode with:
./developer/dev-env.sh -c
You can provide arguments to Cypress using the long options. Altough not specifically required, it is suggested that these extra options are added after '--'. For example, you can run only the hosts tests with:
./developer/dev-env.sh -c -- --spec cypress/e2e/hosts/hosts.feature
If you want to open the graphical debugger use:
./developer/dev-env.sh -C
Once the graphical debugger opens, select the desired feature file you want to execute.
The integration tests use the .feature suffix and can be found in the tests subfolder, together with the steps describing each feature.
Unit tests use vitest.
The existing tests can be launched by executing
podman exec webui npm test
You can also run the unit tests on your host machine with:
npm test
For ensuring proper package versions, we suggest running unit tests inside of the container.
The unit tests live, where the component that is being tested lives, the name should be the same, only with the .test.tsx suffix instead.
If you require FreeIPA to be running, please use integration tests instead.