Skip to content

feat(admin): adding uniformity in cancel and back buttons present along with TS migration, Tabs navigation throttling issue and type safe implementation in SAML #2499

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
moabu merged 27 commits into from
Dec 11, 2025
Merged

feat(admin): adding uniformity in cancel and back buttons present along with TS migration, Tabs navigation throttling issue and type safe implementation in SAML #2499

moabu merged 27 commits into from
Dec 11, 2025

Conversation

@faisalsiddique4400
Copy link
Contributor

@faisalsiddique4400 faisalsiddique4400 commented Dec 5, 2025
edited by coderabbitai bot
Loading

feat(admin): adding uniformity in cancel and back buttons present along with TS migration, Tabs navigation throttling issue and type safe implementation in SAML

Summary

This update introduces consistent behavior for Cancel, Back, and Apply buttons across Admin UI forms, including correct enabling and disabling based on form state.
This PR involves the Typescript migration, Tabs navigation throttling issue and type safe implementation

Improvements

Button Updated Behavior
Cancel Resets all fields to their previous values without navigating away. Disabled until a change is made.
Back Navigates to the previous page. If there is no navigation history, returns to Dashboard. Always enabled.
Apply Saves the changes without leaving the page. Enabled only when the form has unsaved changes.

Additional Enhancements

  • Buttons now correctly detect dirty form states.
  • Apply button is dynamically enabled and disabled based on whether changes exist.
  • Cancel button is disabled until a field is modified.
  • Prevents accidental navigation or state loss in multi step configuration pages.

Affected Modules

This change is applied across all forms where configuration changes are possible, including but not limited to:

  • Users

Parent issue: #2268

Testing Steps

  1. Open suggested config form.
  2. Modify any field.
  3. Verify that:
    • Apply and Cancel buttons become enabled.
    • Apply saves configuration and stays on page.
    • Cancel reverts values and disables itself afterward.
  4. Back button should navigate appropriately.

Summary by CodeRabbit

  • New Features

    • Reworked SAML area: new Configuration page plus Identity Provider and Service Provider list and form workflows (add, edit, view, delete).

  • Improvements

    • Stronger form validation, metadata file upload support, themed UI, client-side pagination, debounced advanced search, and tab navigation that avoids redundant redirects.

  • Localization

    • Updated English/Spanish/French/Portuguese translations to use clearer "service provider" and "identity provider" wording.

✏️ Tip: You can customize this high-level summary in your review settings.

@coderabbitai
Copy link
Contributor

coderabbitai bot commented Dec 5, 2025
edited
Loading

📝 Walkthrough

Walkthrough

Replace legacy SAML JS UI with TypeScript implementations: add typed Redux slice, sagas, SamlApi wrapper, helpers/validations, new SAML pages/forms/lists, update routes/navigation and translations, and refine several Gluu UI primitives and types.

Changes

Cohort / File(s) Summary
Translations
admin-ui/app/locales/en/translation.json, admin-ui/app/locales/es/translation.json, admin-ui/app/locales/fr/translation.json, admin-ui/app/locales/pt/translation.json		 Rename service-provider keys (create_spcreate_service_provider, edit_spedit_service_provider), add view_service_provider, add identity-provider CRUD keys (identity_provider, create/edit/view/delete_identity_provider), and update permission message text.
Navigation & Routes
admin-ui/app/routes/Apps/Gluu/GluuTabs.tsx, admin-ui/app/helpers/navigation.ts, admin-ui/plugins/saml/plugin-metadata.js		 Prevent redundant tab navigations, add ROUTES.SAML_CONFIG, and rewire plugin routes to new TS components for identity/service provider add/edit.
Gluu UI primitives & types
admin-ui/app/routes/Apps/Gluu/GluuUploadFile.tsx, admin-ui/app/routes/Apps/Gluu/GluuCommitDialog.tsx, admin-ui/app/routes/Apps/Gluu/GluuDialog.tsx, admin-ui/app/routes/Apps/Gluu/GluuAdvancedSearch.tsx, admin-ui/app/routes/Apps/Gluu/types/*, admin-ui/app/routes/Apps/Gluu/types/common.ts		 Add typed GluuUploadFile props and theme support; introduce JsonValue and GluuCommitDialogOperation/props types and guard; tighten GluuAdvancedSearch props; adjust GluuDialog input control and remove deprecated webhook types.
SCIM minor lint fixes
admin-ui/plugins/scim/components/ScimConfiguration.tsx, admin-ui/plugins/scim/components/ScimPage.tsx		 Replace ESLint ignore comments with explicit void-expressions for unused destructured variables.
Removed legacy SAML JS components & APIs
admin-ui/plugins/saml/components/*.js (multiple), admin-ui/plugins/saml/redux/api/SamlApi.js, admin-ui/plugins/saml/redux/sagas/SamlSaga.js		 Delete legacy JS components, the old SamlApi JS wrapper, and old JS sagas.
New SAML TypeScript components
admin-ui/plugins/saml/components/SamlPage.tsx, .../SamlConfigurationForm.tsx, .../WebsiteSsoIdentityBrokeringList.tsx, .../WebsiteSsoIdentityProviderForm.tsx, .../WebsiteSsoServiceProviderList.tsx, .../WebsiteSsoServiceProviderForm.tsx		 Add memoized TS React components: SamlPage (tabs), SamlConfigurationForm (Formik + commit dialog), identity/service provider lists and forms (file upload, validation, create/update/delete flows).
SAML API layer rewrite
admin-ui/plugins/saml/redux/api/SamlApi.ts		 Add typed SamlApi class delegating to multiple client implementations; normalize calls and error handling.
Redux & Saga (SAML)
admin-ui/plugins/saml/redux/features/SamlSlice.ts, admin-ui/plugins/saml/redux/sagas/SamlSaga.ts		 Add Redux Toolkit slice for SAML state and TypeScript sagas with dynamic API instantiation, audit/webhook handling, watchers, and root saga; register reducer.
SAML helpers & validations
admin-ui/plugins/saml/helper/constants.ts, .../tableUtils.tsx, .../utils.ts, .../validations.ts, .../index.ts		 Add typed constants and audit resource names, table helpers, transform/clean/payload builders, Yup validation schemas with conditional metadata rules, and barrel exports.
SAML type system
admin-ui/plugins/saml/types/*.ts (api.ts, formValues.ts, redux.ts, saga.ts, state.ts, index.ts)		 Introduce comprehensive TypeScript interfaces/types for API responses, form values, Redux state/payloads, saga payloads, and centralized type exports.
Small UX/typing improvements
admin-ui/app/routes/Apps/Gluu/GluuCommitDialog.tsx, admin-ui/app/routes/Apps/Gluu/types.ts, admin-ui/app/routes/Apps/Gluu/types/*		 Move JsonValue/type defs to common file, add type guard for arrays, update map callback typing, and adjust GluuCommitDialog props types.

Sequence Diagram(s)

sequenceDiagram
    participant User
    participant List as WebsiteSsoIdentityBrokeringList
    participant Router
    participant Form as WebsiteSsoIdentityProviderForm
    participant Formik
    participant Saga as SamlSaga
    participant API as SamlApi
    participant Store as Redux

    User->>List: Click "Add"
    List->>Router: navigate to /saml/identity-providers/add
    Router->>Form: render (viewOnly=false)
    Form->>Formik: initialize form
    User->>Form: upload metadata / fill fields
    Form->>Formik: submit
    Formik->>Form: validation OK
    Form->>Form: open commit dialog
    User->>Form: confirm
    Form->>Saga: dispatch postSamlIdentity(FormData)
    Saga->>API: postSamlIdentity(formdata, token)
    API-->>Saga: success
    Saga->>Store: dispatch create response
    Saga->>List: trigger refresh / navigate back
    Store->>List: updated identities
    List->>User: show updated list
Loading

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~70 minutes

  • Focus areas:
    • admin-ui/plugins/saml/redux/sagas/SamlSaga.ts (generator flow, 401 handling, audit/webhook interactions)
    • admin-ui/plugins/saml/helper/validations.ts and utils.ts (conditional validation and payload mapping)
    • admin-ui/plugins/saml/components/*Form.tsx (Formik integration, file handling, FormData payloads)
    • admin-ui/plugins/saml/redux/features/SamlSlice.ts (reducer semantics and loading flags)

Possibly related PRs

Suggested reviewers

  • syntrydy
  • duttarnab
  • moabu

Poem

🐰 I hopped through JS to TypeScript lands,

Rewrote sagas with careful hands.
Forms now validate and files upload true,
Tabs steer the user, translations too.
A carrot for reviewers — hop on through!

Pre-merge checks and finishing touches

❌ Failed checks (1 warning)
Check name Status Explanation Resolution
Docstring Coverage ⚠️ Warning Docstring coverage is 0.00% which is insufficient. The required threshold is 80.00%. You can run @coderabbitai generate docstrings to improve docstring coverage.
✅ Passed checks (2 passed)
Check name Status Explanation
Description Check ✅ Passed Check skipped - CodeRabbit’s high-level summary is enabled.
Title check ✅ Passed The pull request title accurately describes the main objectives: introducing button uniformity (Cancel/Back), TypeScript migration, Tabs navigation fixes, and SAML type-safe implementation. It is specific, concise, and directly reflects the core changes.
✨ Finishing touches
  • 📝 Generate docstrings
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Post copyable unit tests in a comment
  • Commit unit tests in branch admin-ui-issue-2361-saml-1
📜 Recent review details

Configuration used: CodeRabbit UI

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between afbaadb and e54af27.

📒 Files selected for processing (1)
  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx (14 hunks)
🧰 Additional context used
🧠 Learnings (5)
📓 Common learnings 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2404
File: admin-ui/app/routes/Apps/Gluu/Gluuformfooter.tsx:70-77
Timestamp: 2025-11-03T08:47:33.943Z
Learning: In the admin-ui forms (Gluuformfooter component), the Back button should always navigate to '/home/dashboard' rather than using history-based navigation (navigate(-1)), as clarified by faisalsiddique4400 in PR #2404.
📚 Learning: 2025-11-03T08:47:33.943Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2404
File: admin-ui/app/routes/Apps/Gluu/Gluuformfooter.tsx:70-77
Timestamp: 2025-11-03T08:47:33.943Z
Learning: In the admin-ui forms (Gluuformfooter component), the Back button should always navigate to '/home/dashboard' rather than using history-based navigation (navigate(-1)), as clarified by faisalsiddique4400 in PR #2404.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx
📚 Learning: 2025-11-06T08:23:20.948Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2418
File: admin-ui/plugins/user-management/components/UserForm.tsx:290-297
Timestamp: 2025-11-06T08:23:20.948Z
Learning: In the UserForm component (admin-ui/plugins/user-management/components/UserForm.tsx), the Back button should fall back to '/user/usersmanagement' when browser history is unavailable, not '/home/dashboard', as this keeps users in the user management context. This aligns with the new requirement that users should be redirected to the respective listing screen of the component rather than the dashboard.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx
📚 Learning: 2025-11-05T19:57:35.143Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2415
File: admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx:148-153
Timestamp: 2025-11-05T19:57:35.143Z
Learning: In the SSA Add page (admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx), the Back button should fall back to '/auth-server/config/ssa' when browser history is unavailable, not '/home/dashboard', as this keeps users in the SSA management context.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx
📚 Learning: 2025-12-05T18:24:41.713Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2498
File: admin-ui/plugins/saml/components/SamlConfigurationForm.tsx:30-30
Timestamp: 2025-12-05T18:24:41.713Z
Learning: In the GluuFederation/flex admin-ui codebase, `SetTitle` (imported from 'Utils/SetTitle') is a custom React hook that should be called at the component's top level, not inside `useEffect` or other hooks, because it internally manages side effects for setting page titles.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx
🧬 Code graph analysis (1)
admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx (5)
admin-ui/plugins/saml/types/index.ts (4)
  • WebsiteSsoServiceProvider (5-5)
  • LocationState (12-12)
  • SamlRootState (8-8)
  • WebsiteSsoServiceProviderFormValues (21-21)
admin-ui/plugins/saml/types/redux.ts (1)
  • WebsiteSsoServiceProvider (62-96)
admin-ui/plugins/saml/types/formValues.ts (2)
  • LocationState (8-11)
  • WebsiteSsoServiceProviderFormValues (77-112)
admin-ui/plugins/saml/helper/validations.ts (2)
  • websiteSsoServiceProviderValidationSchema (120-159)
  • WebsiteSsoServiceProviderFormValues (14-14)
admin-ui/plugins/saml/helper/utils.ts (2)
  • transformToWebsiteSsoServiceProviderFormValues (89-134)
  • buildWebsiteSsoServiceProviderPayload (326-375)
🔇 Additional comments (7)
admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx (7)

1-50: Well-structured imports and type definitions.

The imports are cleanly organized, and the component-specific types (WebsiteSsoServiceProviderFormProps, ScopeOption) are appropriately defined. The MAX_ATTRIBUTES_FOR_WEBSITE_SSO constant provides clear configuration for attribute fetching.

51-84: Robust props resolution and state management.

The dual-source props resolution (from direct props or location state) provides flexibility for different navigation patterns. The memoization of configs, viewOnly, and title prevents unnecessary recalculations, and SetTitle is correctly called at the component's top level as a custom hook.

86-157: Excellent data fetching and memoization strategy.

The attributes are fetched with a clear limit, and all computed values are properly memoized with correct dependencies. Particularly noteworthy improvements:

  • The releasedAttributesKey (lines 152-157) now uses a stable identifier based on configs.inum rather than JSON.stringify, which avoids unnecessary component remounts while still distinguishing between new and existing entries.
  • The scopeFieldValue (lines 140-150) implements proper fallback logic: formik values → selected scopes → defaults.
  • The Formik configuration includes enableReinitialize, validateOnChange, and validateOnBlur for responsive validation.

159-255: Form handlers are well-implemented.

The submission flow correctly handles both create and update scenarios, building the FormData payload with the metadata file and dispatching the appropriate Redux action. The cancel handler properly resets to initialValues, preserving the original state. All callbacks are memoized with appropriate dependencies.

216-274: Metadata validation guard now properly aligned with schema.

The handleFormSubmit guard (lines 257-274) now correctly checks for metadata presence using three conditions:

  • formik.values.metaDataFile (new file)
  • formik.values.metaDataFileImportedFlag (existing import flag)
  • formik.values.spMetaDataFN (existing filename)

This aligns with the validation schema and properly allows edits of existing providers while still requiring metadata for new file-based configurations. The useEffect cleanup correctly resets Redux state on unmount.

276-569: Clean and well-structured form rendering.

The JSX is well-organized with proper conditional rendering based on spMetaDataSourceType. Key improvements include:

  • The releasedAttributes typeahead uses the stable releasedAttributesKey (line 347), preventing unnecessary remounts.
  • Error states are handled for both attribute loading (lines 364-371) and metadata file validation (lines 417-426).
  • The GluuFormFooter (lines 542-557) correctly navigates back to ROUTES.SAML_SP_LIST, keeping users in the SAML context as per project conventions.
  • Cancel and Apply buttons are dynamically disabled based on formik.dirty and formik.isValid, providing clear feedback on form state.

Based on learnings, the Back button navigation pattern is correct for this context.

571-573: Proper export with optimization.

The component is correctly memo-wrapped and has a displayName set for better debugging and React DevTools visibility.

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@mo-auto mo-auto added comp-admin-ui Component affected by issue or PR kind-feature Issue or PR is a new feature request labels Dec 5, 2025
coderabbitai[bot]
coderabbitai bot reviewed Dec 5, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 35

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (4)
admin-ui/plugins/saml/components/WebsiteSsoIdentityBrokeringList.tsx (1)

74-77: Avoid double-fetching SAML identities on pagination/search changes

Right now, data is fetched in multiple places:

  • useEffect on [dispatch, canReadIdentities, limit, pattern] (Line 74–77).
  • onRowCountChangeClick and onPageChangeClick dispatch getSamlIdentites explicitly (Lines 110–117, 119–132).
  • handleOptionsChange dispatches on Enter (Line 145–147), while the pattern change itself also triggers the effect.

This can easily lead to redundant API calls (same parameters dispatched twice) whenever limit, pattern, or page change. It also makes the data-loading behavior harder to reason about.

Consider consolidating the fetching logic into a single place, e.g.:

  • Keep only the effect and let handlers just update limit, pattern, and pageNumber, or
  • Remove the effect and have handlers compute and dispatch the correct startIndex/limit/pattern explicitly.

This will simplify the flow and avoid unnecessary network chatter.

Also applies to: 110-117, 119-132, 138-151

admin-ui/app/routes/Apps/Gluu/GluuTabs.tsx (1)

94-105: Navigation throttling logic is correct and avoids redundant route pushes

The added tab.path !== path.pathname checks in handleChange and in the useEffect (Lines 94–105, 161–163) correctly prevent navigation when the active tab already corresponds to the current route. In the activeIndex !== -1 branch the condition is logically redundant (the path is already equal by construction), but it’s harmless and keeps the pattern consistent with the other branches.

Overall, this should reduce unnecessary router activity without changing visible behavior.

Also applies to: 138-166

admin-ui/plugins/saml/redux/features/SamlSlice.ts (1)

12-28: Extract duplicate default configuration to a constant.

The default configuration object { enabled: false, selectedIdp: '', ignoreValidation: false, applicationName: '' } is repeated in three places: initialState, getSamlConfigurationResponse, and putSamlPropertiesResponse. This violates DRY and risks inconsistencies if updated in one place but not others.

+const DEFAULT_CONFIGURATION: SamlConfiguration = {
+  enabled: false,
+  selectedIdp: '',
+  ignoreValidation: false,
+  applicationName: '',
+}
+
 const initialState: SamlReduxState = {
-  configuration: {
-    enabled: false,
-    selectedIdp: '',
-    ignoreValidation: false,
-    applicationName: '',
-  },
+  configuration: DEFAULT_CONFIGURATION,
   loading: false,
   ...

Then use DEFAULT_CONFIGURATION in the reducers:

     getSamlConfigurationResponse: (state, action: PayloadAction<SamlConfiguration | null>) => {
-      state.configuration = action.payload
-        ? action.payload
-        : {
-            enabled: false,
-            selectedIdp: '',
-            ignoreValidation: false,
-            applicationName: '',
-          }
+      state.configuration = action.payload ?? DEFAULT_CONFIGURATION

Also applies to: 37-46, 68-76

admin-ui/plugins/saml/components/WebsiteSsoTrustRelationshipForm.tsx (1)

348-366: JSON.stringify in key prop may impact performance.

Using JSON.stringify(formik.values.releasedAttributes) as part of the key recalculates on every render and can be expensive for large arrays. Consider using a more stable key derivation, such as array length or a hash.

                 <GluuTypeAheadForDn
-                  key={`releasedAttributes-${JSON.stringify(formik.values.releasedAttributes)}`}
+                  key={`releasedAttributes-${formik.values.releasedAttributes?.length ?? 0}`}

Alternatively, if the array contents matter for re-rendering, consider memoizing the key computation.

📜 Review details

Configuration used: CodeRabbit UI

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 1629fc8 and 92fa80d.

📒 Files selected for processing (39)
  • admin-ui/app/locales/en/translation.json (2 hunks)
  • admin-ui/app/locales/es/translation.json (2 hunks)
  • admin-ui/app/locales/fr/translation.json (2 hunks)
  • admin-ui/app/locales/pt/translation.json (2 hunks)
  • admin-ui/app/routes/Apps/Gluu/GluuTabs.tsx (1 hunks)
  • admin-ui/app/routes/Apps/Gluu/GluuUploadFile.tsx (3 hunks)
  • admin-ui/plugins/saml/components/IdpConfigTab.js (0 hunks)
  • admin-ui/plugins/saml/components/SamlConfigurationForm.js (0 hunks)
  • admin-ui/plugins/saml/components/SamlConfigurationForm.tsx (1 hunks)
  • admin-ui/plugins/saml/components/SamlIdpAddPage.js (0 hunks)
  • admin-ui/plugins/saml/components/SamlIdpEditPage.js (0 hunks)
  • admin-ui/plugins/saml/components/SamlIdpForm.js (0 hunks)
  • admin-ui/plugins/saml/components/SamlPage.js (0 hunks)
  • admin-ui/plugins/saml/components/SamlPage.tsx (1 hunks)
  • admin-ui/plugins/saml/components/TrustRelationshipAddPage.js (0 hunks)
  • admin-ui/plugins/saml/components/TrustRelationshipEditPage.js (0 hunks)
  • admin-ui/plugins/saml/components/WebsiteSsoIdentityBrokeringList.tsx (6 hunks)
  • admin-ui/plugins/saml/components/WebsiteSsoIdentityProviderForm.tsx (1 hunks)
  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderList.tsx (8 hunks)
  • admin-ui/plugins/saml/components/WebsiteSsoTrustRelationshipForm.tsx (14 hunks)
  • admin-ui/plugins/saml/helper/constants.ts (2 hunks)
  • admin-ui/plugins/saml/helper/index.ts (1 hunks)
  • admin-ui/plugins/saml/helper/tableUtils.tsx (1 hunks)
  • admin-ui/plugins/saml/helper/utils.ts (1 hunks)
  • admin-ui/plugins/saml/helper/validations.ts (1 hunks)
  • admin-ui/plugins/saml/plugin-metadata.js (2 hunks)
  • admin-ui/plugins/saml/redux/api/SamlApi.js (0 hunks)
  • admin-ui/plugins/saml/redux/api/SamlApi.ts (1 hunks)
  • admin-ui/plugins/saml/redux/features/SamlSlice.ts (3 hunks)
  • admin-ui/plugins/saml/redux/sagas/SamlSaga.js (0 hunks)
  • admin-ui/plugins/saml/redux/sagas/SamlSaga.ts (1 hunks)
  • admin-ui/plugins/saml/redux/sagas/types/saml.ts (1 hunks)
  • admin-ui/plugins/saml/types/api.ts (1 hunks)
  • admin-ui/plugins/saml/types/formValues.ts (1 hunks)
  • admin-ui/plugins/saml/types/index.ts (1 hunks)
  • admin-ui/plugins/saml/types/redux.ts (1 hunks)
  • admin-ui/plugins/saml/types/state.ts (1 hunks)
  • admin-ui/plugins/scim/components/ScimConfiguration.tsx (1 hunks)
  • admin-ui/plugins/scim/components/ScimPage.tsx (1 hunks)
💤 Files with no reviewable changes (10)
  • admin-ui/plugins/saml/components/SamlIdpAddPage.js
  • admin-ui/plugins/saml/components/TrustRelationshipAddPage.js
  • admin-ui/plugins/saml/components/SamlConfigurationForm.js
  • admin-ui/plugins/saml/components/SamlPage.js
  • admin-ui/plugins/saml/components/SamlIdpForm.js
  • admin-ui/plugins/saml/components/IdpConfigTab.js
  • admin-ui/plugins/saml/components/TrustRelationshipEditPage.js
  • admin-ui/plugins/saml/redux/sagas/SamlSaga.js
  • admin-ui/plugins/saml/redux/api/SamlApi.js
  • admin-ui/plugins/saml/components/SamlIdpEditPage.js
🧰 Additional context used
🧠 Learnings (3)
📓 Common learnings 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2404
File: admin-ui/app/routes/Apps/Gluu/Gluuformfooter.tsx:70-77
Timestamp: 2025-11-03T08:47:33.943Z
Learning: In the admin-ui forms (Gluuformfooter component), the Back button should always navigate to '/home/dashboard' rather than using history-based navigation (navigate(-1)), as clarified by faisalsiddique4400 in PR #2404.

Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2418
File: admin-ui/plugins/user-management/components/UserForm.tsx:290-297
Timestamp: 2025-11-06T08:23:20.948Z
Learning: In the UserForm component (admin-ui/plugins/user-management/components/UserForm.tsx), the Back button should fall back to '/user/usersmanagement' when browser history is unavailable, not '/home/dashboard', as this keeps users in the user management context. This aligns with the new requirement that users should be redirected to the respective listing screen of the component rather than the dashboard.
📚 Learning: 2025-12-05T18:24:41.681Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2498
File: admin-ui/plugins/saml/components/SamlConfigurationForm.tsx:30-30
Timestamp: 2025-12-05T18:24:41.681Z
Learning: In the GluuFederation/flex admin-ui codebase, `SetTitle` (imported from 'Utils/SetTitle') is a custom React hook that should be called at the component's top level, not inside `useEffect` or other hooks, because it internally manages side effects for setting page titles.

Applied to files:

  • admin-ui/plugins/saml/components/SamlPage.tsx
  • admin-ui/plugins/saml/components/WebsiteSsoTrustRelationshipForm.tsx
  • admin-ui/plugins/saml/components/WebsiteSsoIdentityBrokeringList.tsx
📚 Learning: 2025-11-06T08:23:20.948Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2418
File: admin-ui/plugins/user-management/components/UserForm.tsx:290-297
Timestamp: 2025-11-06T08:23:20.948Z
Learning: In the UserForm component (admin-ui/plugins/user-management/components/UserForm.tsx), the Back button should fall back to '/user/usersmanagement' when browser history is unavailable, not '/home/dashboard', as this keeps users in the user management context. This aligns with the new requirement that users should be redirected to the respective listing screen of the component rather than the dashboard.

Applied to files:

  • admin-ui/app/routes/Apps/Gluu/GluuTabs.tsx
🧬 Code graph analysis (13)
admin-ui/plugins/saml/types/api.ts (1)
admin-ui/plugins/saml/types/redux.ts (4)
  • SamlIdentity (30-56)
  • SamlConfiguration (3-8)
  • TrustRelationshipListResponse (58-60)
  • TrustRelationship (62-79)
admin-ui/app/routes/Apps/Gluu/GluuTabs.tsx (1)
admin-ui/fix-orval-enums.js (1)
  • path (3-3)
admin-ui/plugins/saml/types/state.ts (2)
admin-ui/plugins/saml/types/index.ts (2)
  • SamlRootState (3-3)
  • SamlReduxState (1-1)
admin-ui/plugins/saml/types/redux.ts (1)
  • SamlReduxState (81-92)
admin-ui/plugins/saml/types/formValues.ts (1)
admin-ui/plugins/saml/types/index.ts (2)
  • SamlConfigurationFormValues (5-5)
  • LocationState (5-5)
admin-ui/plugins/saml/plugin-metadata.js (1)
admin-ui/app/utils/PermChecker.ts (1)
  • SAML_WRITE (52-52)
admin-ui/plugins/saml/helper/tableUtils.tsx (1)
admin-ui/plugins/saml/helper/index.ts (4)
  • TableColumn (25-25)
  • getIdentityProviderTableCols (22-22)
  • getServiceProviderTableCols (23-23)
  • PaperContainer (21-21)
admin-ui/plugins/saml/helper/validations.ts (1)
admin-ui/plugins/saml/types/formValues.ts (1)
  • SamlConfigurationFormValues (1-6)
admin-ui/plugins/saml/types/redux.ts (1)
admin-ui/plugins/saml/types/formValues.ts (1)
  • SamlConfigurationFormValues (1-6)
admin-ui/plugins/saml/components/WebsiteSsoTrustRelationshipForm.tsx (5)
admin-ui/plugins/saml/helper/validations.ts (2)
  • WebsiteSsoTrustRelationshipFormValues (120-138)
  • websiteSsoTrustRelationshipValidationSchema (148-187)
admin-ui/plugins/saml/types/redux.ts (1)
  • TrustRelationship (62-79)
admin-ui/plugins/saml/types/formValues.ts (1)
  • LocationState (8-11)
admin-ui/plugins/saml/types/state.ts (1)
  • SamlRootState (3-11)
admin-ui/plugins/saml/helper/utils.ts (1)
  • transformToTrustRelationshipFormValues (65-93)
admin-ui/plugins/saml/helper/utils.ts (3)
admin-ui/plugins/saml/types/redux.ts (3)
  • SamlConfiguration (3-8)
  • SamlIdentity (30-56)
  • TrustRelationship (62-79)
admin-ui/plugins/saml/types/formValues.ts (1)
  • SamlConfigurationFormValues (1-6)
admin-ui/plugins/saml/helper/validations.ts (2)
  • WebsiteSsoIdentityProviderFormValues (5-22)
  • WebsiteSsoTrustRelationshipFormValues (120-138)
admin-ui/plugins/saml/redux/api/SamlApi.ts (3)
admin-ui/plugins/saml/types/api.ts (6)
  • JansConfigApiClient (32-38)
  • JansIdentityBrokerApiClient (40-58)
  • JansTrustRelationshipApiClient (60-72)
  • SamlIdentityProviderResponse (8-12)
  • SamlIdentityCreateResponse (14-25)
  • SamlApiResponse (27-30)
admin-ui/plugins/saml/types/redux.ts (5)
  • SamlConfiguration (3-8)
  • GetSamlIdentityProviderPayload (101-106)
  • CreateSamlIdentityPayload (108-111)
  • TrustRelationshipListResponse (58-60)
  • CreateTrustRelationshipPayload (113-116)
admin-ui/app/utils/ApiUtils.ts (1)
  • handleResponse (5-20)
admin-ui/plugins/saml/components/WebsiteSsoIdentityBrokeringList.tsx (4)
admin-ui/plugins/saml/types/state.ts (1)
  • SamlRootState (3-11)
admin-ui/plugins/saml/types/redux.ts (1)
  • SamlIdentity (30-56)
admin-ui/app/utils/PermChecker.ts (1)
  • buildPayload (153-160)
admin-ui/plugins/saml/helper/tableUtils.tsx (2)
  • getIdentityProviderTableCols (10-23)
  • PaperContainer (40-42)
admin-ui/plugins/saml/components/WebsiteSsoIdentityProviderForm.tsx (6)
admin-ui/plugins/saml/types/redux.ts (1)
  • SamlIdentity (30-56)
admin-ui/plugins/saml/types/formValues.ts (1)
  • LocationState (8-11)
admin-ui/plugins/saml/types/state.ts (1)
  • SamlRootState (3-11)
admin-ui/plugins/saml/helper/validations.ts (2)
  • WebsiteSsoIdentityProviderFormValues (5-22)
  • websiteSsoIdentityProviderValidationSchema (47-118)
admin-ui/plugins/saml/helper/utils.ts (4)
  • transformToIdentityProviderFormValues (19-52)
  • cleanOptionalFields (123-128)
  • separateConfigFields (130-146)
  • buildIdentityProviderPayload (148-191)
admin-ui/plugins/saml/helper/constants.ts (1)
  • nameIDPolicyFormat (6-27)
🪛 Biome (2.1.2)
admin-ui/plugins/saml/helper/validations.ts

[error] 29-29: Do not add then to an object.

(lint/suspicious/noThenProperty)

[error] 43-43: Do not add then to an object.

(lint/suspicious/noThenProperty)

[error] 62-62: Do not add then to an object.

(lint/suspicious/noThenProperty)

[error] 66-66: Do not add then to an object.

(lint/suspicious/noThenProperty)

[error] 94-94: Do not add then to an object.

(lint/suspicious/noThenProperty)

[error] 144-144: Do not add then to an object.

(lint/suspicious/noThenProperty)

[error] 158-158: Do not add then to an object.

(lint/suspicious/noThenProperty)

[error] 162-162: Do not add then to an object.

(lint/suspicious/noThenProperty)

🔇 Additional comments (35)
admin-ui/plugins/scim/components/ScimPage.tsx (1)

95-103: remove case change is behaviorally safe

The destructuring with omitted and void omitted correctly drops the keyed property while keeping lint happy; logic and optimistic update behavior remain unchanged.

admin-ui/plugins/saml/components/WebsiteSsoIdentityBrokeringList.tsx (1)

187-260: MaterialTable configuration and memoization look solid

The tableActions, tableColumns, headerStyle, tableOptions, and tableComponents are all properly memoized and typed (Action<SamlIdentity>[]), and the row handlers defensively handle the array vs single-row case and strip tableData before navigation. This should reduce needless re-renders and keep the listing behavior predictable.

Also applies to: 262-292, 298-305

admin-ui/app/locales/pt/translation.json (1)

895-897: Service/identity provider title keys and PT translations look consistent

Renaming the service provider keys and adding view_service_provider plus the identity provider CRUD titles aligns with the new SAML UI usage (titles.*_service_provider / titles.*_identity_provider). The Portuguese strings themselves are coherent and consistent with existing terminology.

Also applies to: 947-951

admin-ui/app/locales/es/translation.json (1)

970-972: Updated service/identity provider title keys and ES translations are appropriate

The new *_service_provider and *_identity_provider title keys align with the SAML components’ translation lookups, and the Spanish texts are accurate and stylistically consistent with the rest of the file (including the updated followingPermissionRequiredToBeAdded message).

Also applies to: 1052-1057

admin-ui/app/locales/fr/translation.json (1)

905-907: Service/Identity Provider title keys align with updated SAML terminology

The new *_service_provider and *_identity_provider title keys and translations look consistent with the English source and the rest of the SAML UI.

Also applies to: 953-957

admin-ui/plugins/saml/types/formValues.ts (1)

1-11: Form value and location state typings are consistent with redux types

SamlConfigurationFormValues mirrors SamlConfiguration, and LocationState<T> cleanly captures the rowData/viewOnly pattern for navigation state; no issues spotted.

admin-ui/plugins/saml/components/SamlPage.tsx (1)

14-53: SAML tab container, title handling, and loader wiring look correct

  • SetTitle(t('titles.saml_management')) is called at the component top level as intended, avoiding extra hook wrappers (based on learnings).
  • tabNames and tabToShow use the same translated menu labels as in plugin-metadata.js, so navigation and content switching should stay in sync.
  • GluuLoader is correctly bound to loadingSamlIdp, so the whole page blocks while SAML IDP data is loading.
admin-ui/plugins/saml/types/api.ts (1)

1-72: API and client typings align with redux shapes

The SamlIdentityProviderResponse, SamlIdentityCreateResponse, and SamlApiResponse interfaces, plus the three Jans*ApiClient interfaces, are consistent with the redux types in ./redux and with typical (error, data, response) callback signatures; nothing obviously problematic here.

It would be good to double‑check these signatures against the actual generated client or OpenAPI spec to ensure option and response shapes (especially TrustRelationshipListResponse vs response.body) match the backend.

admin-ui/plugins/saml/types/index.ts (1)

1-5: Type barrel cleanly centralizes SAML typings

Re‑exporting redux, root state, and form value types from a single index simplifies imports for consumers and keeps the SAML type surface organized.

admin-ui/plugins/saml/plugin-metadata.js (1)

2-2: Routing metadata correctly targets new SAML forms with appropriate permissions

  • WebsiteSsoIdentityProviderForm and WebsiteSsoTrustRelationshipForm are now wired for the /identity-providers/* and /service-providers/* add/edit routes, matching the new form-based UX.
  • List and config routes still use SamlPage and are gated by the appropriate read/config permissions, while add/edit routes require SAML_WRITE, which is consistent with write operations.

Also applies to: 6-6, 47-69

admin-ui/plugins/saml/helper/constants.ts (1)

1-4: Fix incompatible combination of as const with non‑readonly array type

Assigning an as const assertion (which creates a readonly type) to a variable typed as NameIdPolicyFormatOption[] (mutable array) violates TypeScript's type compatibility rules and causes a compilation error.

Resolve this by either removing as const or changing the type annotation to readonly NameIdPolicyFormatOption[].

admin-ui/plugins/saml/helper/index.ts (1)

1-25: LGTM!

Clean barrel file with well-organized exports. Using export type for type-only exports is the correct approach for TypeScript.

admin-ui/plugins/saml/helper/tableUtils.tsx (1)

40-44: LGTM!

PaperContainer is correctly memoized and has a proper displayName set for React DevTools debugging.

admin-ui/plugins/saml/components/WebsiteSsoServiceProviderList.tsx (1)

31-210: LGTM on overall component structure.

Good use of memoization with React.memo, proper displayName assignment, and correctly typed Redux selectors and actions. The component follows React best practices for performance optimization.

admin-ui/app/routes/Apps/Gluu/GluuUploadFile.tsx (3)

8-96: LGTM on TypeScript migration.

Good conversion to typed React.FC with proper interface definition. The component correctly handles file state, theme context, and provides clear button functionality.

31-32: No issues found. The default theme value 'darkBlack' is a valid and intentional theme choice throughout the application. It is properly defined in the theme configuration and consistently used as a fallback across all theme-aware components.

83-88: No action required. This button color format is correct and widely established throughout the codebase. The custom CSS in admin-ui/app/styles/custom/layout.scss defines the button color classes (.btn-primary-darkBlack, .btn-primary-darkBlue, .btn-primary-lightBlue, .btn-primary-lightGreen), and this pattern is used consistently across 50+ component instances with Badges, Buttons, and other elements using color={primary-${selectedTheme}}.

Likely an incorrect or invalid review comment.

admin-ui/plugins/saml/components/SamlConfigurationForm.tsx (2)

165-181: LGTM on footer button behavior.

The GluuFormFooter configuration correctly implements the PR objectives:

  • Back is always enabled (disableBack={false})
  • Cancel disabled until form is dirty (disableCancel={!formik.dirty})
  • Apply disabled until form is valid and dirty (disableApply={!formik.isValid || !formik.dirty})

30-30: Consider moving SetTitle call to a useEffect.

SetTitle is called directly in the component body. If SetTitle has side effects, it should be wrapped in a useEffect to follow React best practices:

+  useEffect(() => {
+    SetTitle(t('titles.saml_management'))
+  }, [t])
-  SetTitle(t('titles.saml_management'))
⛔ Skipped due to learnings 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2498
File: admin-ui/plugins/saml/components/SamlConfigurationForm.tsx:30-30
Timestamp: 2025-12-05T18:24:41.681Z
Learning: In the GluuFederation/flex admin-ui codebase, `SetTitle` (imported from 'Utils/SetTitle') is a custom React hook that should be called at the component's top level, not inside `useEffect` or other hooks, because it internally manages side effects for setting page titles.
admin-ui/plugins/saml/helper/validations.ts (4)

24-37: Ignore Biome's noThenProperty warnings.

The static analysis warnings about then properties are false positives. Yup's .when() API uses then and otherwise as standard method names for conditional validation, not as Promise-like thenables.

60-86: Complex nested .when() validation is correctly structured.

The metadata file validation logic handles multiple scenarios:

  1. When metadata import is enabled and no existing file, require a new file
  2. When existing file is present (idpMetaDataFN), allow null
  3. When metadata import is disabled, allow null

This correctly handles both create and edit scenarios.

99-113: Good use of custom URL validation.

The custom url-format test for singleLogoutServiceUrl correctly handles optional fields by returning true for empty strings, while validating actual URLs using the native URL constructor.

140-146: Remove the $ prefix from $spMetaDataSourceType — it should reference the form field directly.

The $ prefix in Yup is used for context variables, but spMetaDataSourceType is a regular form field (line 125). It should be referenced as 'spMetaDataSourceType' without the $, consistent with the pattern used at line 156: when('spMetaDataSourceType', ...).

Likely an incorrect or invalid review comment.

admin-ui/plugins/saml/components/WebsiteSsoIdentityProviderForm.tsx (3)

515-527: LGTM on footer button configuration.

The GluuFormFooter correctly implements PR objectives:

  • Back always enabled with custom onBack={navigateBack} handler
  • Cancel/Apply hidden in viewOnly mode
  • Cancel disabled until dirty
  • Apply uses custom isApplyDisabled logic for metadata validation

Based on learnings, the navigateBack handler should navigate to ROUTES.SAML_IDP_LIST which aligns with the pattern of redirecting to the respective listing screen.

234-256: Complex but necessary isApplyDisabled logic.

The validation for metadata file presence handles several edge cases correctly:

  • Checks for File instances
  • Accepts file-like objects with path/relativePath properties
  • Falls back to existing idpMetaDataFN for edit scenarios

This aligns well with the validation schema logic.

78-78: Consider moving SetTitle call to a useEffect.

Same as in SamlConfigurationForm.tsx, SetTitle should ideally be in a useEffect hook:

+  useEffect(() => {
+    SetTitle(title)
+  }, [title])
-  SetTitle(title)
⛔ Skipped due to learnings 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2498
File: admin-ui/plugins/saml/components/SamlConfigurationForm.tsx:30-30
Timestamp: 2025-12-05T18:24:41.681Z
Learning: In the GluuFederation/flex admin-ui codebase, `SetTitle` (imported from 'Utils/SetTitle') is a custom React hook that should be called at the component's top level, not inside `useEffect` or other hooks, because it internally manages side effects for setting page titles.
admin-ui/plugins/saml/redux/sagas/types/saml.ts (1)

1-67: Type definitions are well-structured.

The saga payload interfaces are cleanly organized with appropriate typing for FormData and string payloads. The separation between create/update/delete operations with their respective data shapes is clear.

admin-ui/plugins/saml/helper/utils.ts (1)

148-191: Well-structured payload builder.

The buildIdentityProviderPayload function properly handles both metadata file imports and manual configuration scenarios with appropriate field initialization and trimming.

admin-ui/plugins/saml/redux/api/SamlApi.ts (1)

25-30: Class design handles API polymorphism well.

The runtime method checks with 'methodName' in this.api pattern effectively handles the union type, providing clear error messages when methods aren't available on the specific API instance.

admin-ui/plugins/saml/redux/features/SamlSlice.ts (1)

2-10: TypeScript migration with proper PayloadAction typings looks good.

The explicit typing of Redux actions with PayloadAction<T> provides excellent type safety for the saga and component consumers.

admin-ui/plugins/saml/components/WebsiteSsoTrustRelationshipForm.tsx (3)

545-560: Form footer correctly implements PR requirements.

The GluuFormFooter configuration properly implements the PR objectives:

  • Cancel disabled when form is not dirty (!formik.dirty)
  • Apply disabled when form is not valid or not dirty
  • Back always enabled and navigates to the service provider list

Based on learnings, the Back button correctly navigates to the component's listing screen (ROUTES.SAML_SP_LIST) rather than the dashboard.

234-258: Good handling of file drop/clear touch states.

The asymmetric touch state handling is intentional and correct:

  • handleDrop sets touched to false to prevent immediate error display after successful drop
  • handleClearFiles sets touched to true to trigger validation when user clears the file

This provides a better UX for file upload validation.

57-71: Props fallback to location state is well-implemented.

The memoized resolution of configs and viewOnly from either props or location state provides flexibility for both direct prop passing and route-based navigation patterns.

admin-ui/plugins/saml/redux/sagas/SamlSaga.ts (2)

75-392: Overall saga structure follows Redux best practices.

The saga implementation demonstrates several good patterns:

  • Consistent audit trail initialization and logging
  • Proper error handling with try-catch blocks
  • Token refresh on 401 errors
  • Webhook integration for state changes
  • User feedback via toast notifications
  • Clean separation between business logic and side effects

223-223: Add missing function invocation parentheses.

The saga getTrustRelationshipsSaga is passed without parentheses, which means the generator function itself is passed instead of being invoked. This will cause incorrect behavior.

Apply this diff to fix the invocation:

-    yield call(getTrustRelationshipsSaga)
+    yield call(getTrustRelationshipsSaga)

Actually, since getTrustRelationshipsSaga takes no parameters, use either:

-    yield call(getTrustRelationshipsSaga)
+    yield* getTrustRelationshipsSaga()

or keep call with parentheses:

-    yield call(getTrustRelationshipsSaga)
+    yield call(getTrustRelationshipsSaga)

The current code references the function without calling it.

Likely an incorrect or invalid review comment.

@faisalsiddique4400 faisalsiddique4400 mentioned this pull request Dec 9, 2025
Open
coderabbitai[bot]
coderabbitai bot reviewed Dec 9, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 14

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)
admin-ui/app/routes/Apps/Gluu/GluuCommitDialog.tsx (1)

270-281: Consider removing redundant PropTypes after TypeScript migration.

The component now has full TypeScript type coverage via GluuCommitDialogProps. The PropTypes validation is redundant and adds maintenance overhead. Standard practice when migrating to TypeScript is to remove PropTypes.

-export default GluuCommitDialog
-GluuCommitDialog.propTypes = {
-  feature: PropTypes.string,
-  operations: PropTypes.any,
-  handler: PropTypes.func,
-  modal: PropTypes.bool.isRequired,
-  onAccept: PropTypes.func,
-  placeholderLabel: PropTypes.string,
-  inputType: PropTypes.string,
-  label: PropTypes.string,
-  formik: PropTypes.object,
-  isLicenseLabel: PropTypes.bool,
-}
+export default GluuCommitDialog
📜 Review details

Configuration used: CodeRabbit UI

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 92fa80d and 5255397.

📒 Files selected for processing (9)
  • admin-ui/app/locales/en/translation.json (2 hunks)
  • admin-ui/app/routes/Apps/Gluu/GluuCommitDialog.tsx (4 hunks)
  • admin-ui/app/routes/Apps/Gluu/GluuUploadFile.tsx (3 hunks)
  • admin-ui/app/routes/Apps/Gluu/types.ts (1 hunks)
  • admin-ui/plugins/saml/components/SamlConfigurationForm.tsx (1 hunks)
  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderList.tsx (8 hunks)
  • admin-ui/plugins/saml/helper/utils.ts (1 hunks)
  • admin-ui/plugins/saml/redux/features/SamlSlice.ts (1 hunks)
  • admin-ui/plugins/saml/redux/sagas/types/saml.ts (1 hunks)
🧰 Additional context used
🧠 Learnings (1)
📓 Common learnings 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2404
File: admin-ui/app/routes/Apps/Gluu/Gluuformfooter.tsx:70-77
Timestamp: 2025-11-03T08:47:33.943Z
Learning: In the admin-ui forms (Gluuformfooter component), the Back button should always navigate to '/home/dashboard' rather than using history-based navigation (navigate(-1)), as clarified by faisalsiddique4400 in PR #2404.

Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2418
File: admin-ui/plugins/user-management/components/UserForm.tsx:290-297
Timestamp: 2025-11-06T08:23:20.948Z
Learning: In the UserForm component (admin-ui/plugins/user-management/components/UserForm.tsx), the Back button should fall back to '/user/usersmanagement' when browser history is unavailable, not '/home/dashboard', as this keeps users in the user management context. This aligns with the new requirement that users should be redirected to the respective listing screen of the component rather than the dashboard.

Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2415
File: admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx:148-153
Timestamp: 2025-11-05T19:57:35.143Z
Learning: In the SSA Add page (admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx), the Back button should fall back to '/auth-server/config/ssa' when browser history is unavailable, not '/home/dashboard', as this keeps users in the SSA management context.
🧬 Code graph analysis (4)
admin-ui/plugins/saml/components/WebsiteSsoServiceProviderList.tsx (3)
admin-ui/plugins/saml/types/state.ts (1)
  • SamlRootState (3-11)
admin-ui/plugins/saml/types/redux.ts (1)
  • TrustRelationship (62-79)
admin-ui/app/utils/PermChecker.ts (1)
  • buildPayload (154-161)
admin-ui/plugins/saml/components/SamlConfigurationForm.tsx (5)
admin-ui/plugins/saml/types/state.ts (1)
  • SamlRootState (3-11)
admin-ui/plugins/saml/types/index.ts (2)
  • SamlRootState (3-3)
  • SamlConfigurationFormValues (5-5)
admin-ui/plugins/saml/helper/utils.ts (1)
  • transformToFormValues (8-17)
admin-ui/plugins/saml/types/formValues.ts (1)
  • SamlConfigurationFormValues (1-6)
admin-ui/plugins/saml/helper/validations.ts (1)
  • samlConfigurationValidationSchema (24-37)
admin-ui/plugins/saml/redux/features/SamlSlice.ts (3)
admin-ui/plugins/saml/types/redux.ts (5)
  • SamlReduxState (81-92)
  • SamlConfiguration (3-8)
  • GetSamlIdentityProviderPayload (101-106)
  • PutSamlPropertiesPayload (94-99)
  • TrustRelationship (62-79)
admin-ui/plugins/saml/types/index.ts (3)
  • SamlReduxState (1-1)
  • SamlConfiguration (1-1)
  • TrustRelationship (1-1)
admin-ui/plugins/saml/types/api.ts (1)
  • SamlIdentityProviderResponse (8-12)
admin-ui/app/routes/Apps/Gluu/GluuCommitDialog.tsx (1)
admin-ui/app/routes/Apps/Gluu/types.ts (1)
  • GluuCommitDialogOperation (1-4)
🔇 Additional comments (19)
admin-ui/app/routes/Apps/Gluu/GluuUploadFile.tsx (5)

1-20: LGTM: Well-structured TypeScript migration.

The interface definition, type imports, and constants are properly implemented. The GluuUploadFileProps interface provides clear type safety for all component props.

41-49: Past review feedback addressed.

The handleDrop implementation now correctly passes only the first file ([file]) to the parent's onDrop callback, which aligns with the single-file upload design and addresses the previous review comment.

61-69: LGTM: Proper event handling and state cleanup.

The clearFiles function is well-implemented with proper TypeScript typing, event propagation prevention, and complete state cleanup. The dependency array is correct.

78-78: LGTM: Safe file name display logic.

The optional chaining for selectedFile?.name with a fallback to preDefinedFileName is properly implemented and type-safe.

31-32: No issues found. The theme fallback value 'darkBlack' is a valid and well-established theme in the theming system. It is properly defined in admin-ui/app/context/theme/config.ts with complete theme configuration, listed as an available option in ThemeSettings, and used consistently as the default theme throughout the application.

admin-ui/plugins/saml/components/WebsiteSsoServiceProviderList.tsx (4)

25-31: LGTM on interface and icon placement.

The DeleteItem interface is appropriately typed with Record<string, unknown> for the optional tableData field. The DeleteOutlinedIcon component is correctly placed at module scope, addressing the previous review feedback.

38-45: LGTM on state and memoization.

The bgThemeColor memo and toggle callback are properly memoized with correct dependencies. The state typing with DeleteItem is appropriate.

64-73: LGTM on effects.

The authorization and data fetching effects have proper guards and dependency arrays.

175-219: LGTM on render and exports.

The table columns are properly memoized, the idSynonym correctly identifies rows by inum, and the conditional dialog rendering based on permissions is appropriate. The displayName assignment and default export follow React best practices for memoized components.

admin-ui/app/locales/en/translation.json (1)

977-979: Translation keys and message updates look good.

The renamed service provider keys (create_service_provider, edit_service_provider, view_service_provider) and new identity provider keys are consistent with the SAML feature restructuring. The awkward permission message has been improved to clearer English.

Also applies to: 1059-1064

admin-ui/plugins/saml/helper/utils.ts (3)

47-47: Simplified boolean conversion - good.

Using !!configs?.idpMetaDataFN is cleaner than the ternary. This addresses the previous review feedback.

148-191: Well-implemented object cleaning utility.

The cleanOptionalFields function properly handles:

  • Null/undefined removal
  • Optional empty string filtering
  • Recursive nested object cleaning
  • File object preservation
  • Non-empty array retention

The generic typing with Partial<T> return type is appropriate.

226-229: Verify intended behavior for field merging.

When metaDataFileImportedFlag is false, finalConfigData is spread after rootFields, which means config fields would override any same-named root fields. Ensure this is the intended API contract.

If rootFields and finalConfigData could have overlapping keys, consider being explicit about precedence or restructuring as nested objects:

const payload = {
  ...rootFields,
  config: finalConfigData, // nested instead of merged
} as IdentityProviderPayload
admin-ui/plugins/saml/components/SamlConfigurationForm.tsx (1)

144-147: Hardcoded IdP option may need future expansion.

The selectedIdp dropdown has only "keycloak" as an option. If additional identity providers are planned, consider making this dynamic.

Is this intentionally limited to Keycloak, or should this be populated from available SAML identity providers?

admin-ui/plugins/saml/redux/features/SamlSlice.ts (1)

12-28: Well-structured initial state matching the interface.

The initial state properly implements SamlReduxState with sensible defaults. The structure supports the various loading states needed for different SAML operations.

admin-ui/app/routes/Apps/Gluu/GluuCommitDialog.tsx (2)

26-26: LGTM! Type import enhances type safety.

The addition of GluuCommitDialogOperation to the imports is appropriate and necessary for the explicit type annotations used in the map callback at line 184.

184-184: LGTM! Explicit typing improves code clarity.

The explicit type annotations for the map callback parameters enhance type safety and align with the TypeScript migration objectives.

admin-ui/app/routes/Apps/Gluu/types.ts (2)

20-20: LGTM! Narrowed inputType improves type safety.

The refinement of inputType from a generic string to a specific union of valid input types is a solid improvement that prevents invalid values and enhances IDE autocomplete support.

10-16: Custom formik shape restricts value parameter to strings, but actual Formik accepts any type.

The custom formik shape defines setFieldValue with value: string, but the actual Formik library accepts value: any. Evidence: UserForm.tsx calls formik.setFieldValue() with arrays ([]) and booleans (false), yet casts formik as any when passing to GluuCommitDialog to work around the type mismatch.

While GluuCommitDialog itself only calls setFieldValue('action_message', userMessage) with strings, the type definition should match Formik's actual signature for consistency. Consider updating the type to accept any value:

formik?: {
  setFieldValue: (
    field: string,
    value: any,
    shouldValidate?: boolean,
  ) => void | Promise<unknown>
} | null

Alternatively, use Formik's actual type: Pick<FormikProps<any>, 'setFieldValue'>

coderabbitai[bot]
coderabbitai bot reviewed Dec 9, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 2

♻️ Duplicate comments (3)
admin-ui/plugins/saml/redux/sagas/SamlSaga.ts (3)

203-203: Remove debug console.log statement.

Debug console.log statements should not be present in production code as they can expose sensitive error details in the browser console and clutter logs.

Apply this diff to remove the debug statement:

   } catch (e) {
-    console.log('Error: ', e)
     yield put(toggleSavedFormFlag(false))

Also applies to lines 236, 292, and 325.

140-162: Add missing toggleSavedFormFlag dispatch to maintain consistency.

The putSamlProperties saga is missing the toggleSavedFormFlag dispatch that all other mutation sagas include (lines 197, 230, 287, 319). This creates inconsistent form state management across SAML operations.

Apply this diff to add the missing flag dispatches:

     })
+    yield put(toggleSavedFormFlag(true))
     yield* triggerWebhook({ payload: { createdFeatureValue: data } })
     yield put(putSamlPropertiesResponse(data))
     yield call(postUserAction, audit)
     yield put(updateToast(true, 'success', 'Data updated successfully'))
     return data
   } catch (e) {
+    yield put(toggleSavedFormFlag(false))
     yield put(putSamlPropertiesResponse(null))

385-421: Replace hardcoded action strings with typed action creators.

All watcher functions use hardcoded string literals for action types (e.g., 'idpSaml/getSamlConfiguration'). This is fragile and bypasses TypeScript's type safety. If action names are renamed in the slice, these watchers will silently fail at runtime.

Import the action creators from the slice and use their .type property:

+import {
+  getSamlConfiguration,
+  getSamlIdentities,
+  getTrustRelationship,
+  putSamlProperties,
+  createSamlIdentity,
+  createTrustRelationship,
+  deleteSamlIdentity,
+  updateSamlIdentity,
+  deleteTrustRelationship,
+  updateTrustRelationship,
+} from '../features/SamlSlice'

 export function* watchGetSamlConfig(): Generator {
-  yield takeEvery('idpSaml/getSamlConfiguration', getSamlConfigSaga)
+  yield takeEvery(getSamlConfiguration.type, getSamlConfigSaga)
 }

 export function* watchGetSamlIdentityProvider(): Generator {
-  yield takeEvery('idpSaml/getSamlIdentities', getSamlIdentityProvider)
+  yield takeEvery(getSamlIdentities.type, getSamlIdentityProvider)
 }

Apply similar changes to all other watchers (lines 392-421).

📜 Review details

Configuration used: CodeRabbit UI

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 5255397 and 5023141.

📒 Files selected for processing (9)
  • admin-ui/app/routes/Apps/Gluu/GluuCommitDialog.tsx (3 hunks)
  • admin-ui/app/routes/Apps/Gluu/types.ts (1 hunks)
  • admin-ui/plugins/saml/components/SamlConfigurationForm.tsx (1 hunks)
  • admin-ui/plugins/saml/components/WebsiteSsoIdentityBrokeringList.tsx (1 hunks)
  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderList.tsx (8 hunks)
  • admin-ui/plugins/saml/helper/utils.ts (1 hunks)
  • admin-ui/plugins/saml/redux/features/SamlSlice.ts (1 hunks)
  • admin-ui/plugins/saml/redux/sagas/SamlSaga.ts (1 hunks)
  • admin-ui/plugins/saml/redux/sagas/types/saml.ts (1 hunks)
🧰 Additional context used
🧠 Learnings (6)
📓 Common learnings 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2404
File: admin-ui/app/routes/Apps/Gluu/Gluuformfooter.tsx:70-77
Timestamp: 2025-11-03T08:47:33.943Z
Learning: In the admin-ui forms (Gluuformfooter component), the Back button should always navigate to '/home/dashboard' rather than using history-based navigation (navigate(-1)), as clarified by faisalsiddique4400 in PR #2404.

Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2418
File: admin-ui/plugins/user-management/components/UserForm.tsx:290-297
Timestamp: 2025-11-06T08:23:20.948Z
Learning: In the UserForm component (admin-ui/plugins/user-management/components/UserForm.tsx), the Back button should fall back to '/user/usersmanagement' when browser history is unavailable, not '/home/dashboard', as this keeps users in the user management context. This aligns with the new requirement that users should be redirected to the respective listing screen of the component rather than the dashboard.

Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2415
File: admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx:148-153
Timestamp: 2025-11-05T19:57:35.143Z
Learning: In the SSA Add page (admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx), the Back button should fall back to '/auth-server/config/ssa' when browser history is unavailable, not '/home/dashboard', as this keeps users in the SSA management context.
📚 Learning: 2025-11-03T08:47:33.943Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2404
File: admin-ui/app/routes/Apps/Gluu/Gluuformfooter.tsx:70-77
Timestamp: 2025-11-03T08:47:33.943Z
Learning: In the admin-ui forms (Gluuformfooter component), the Back button should always navigate to '/home/dashboard' rather than using history-based navigation (navigate(-1)), as clarified by faisalsiddique4400 in PR #2404.

Applied to files:

  • admin-ui/plugins/saml/components/SamlConfigurationForm.tsx
  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderList.tsx
📚 Learning: 2025-11-05T19:57:35.143Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2415
File: admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx:148-153
Timestamp: 2025-11-05T19:57:35.143Z
Learning: In the SSA Add page (admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx), the Back button should fall back to '/auth-server/config/ssa' when browser history is unavailable, not '/home/dashboard', as this keeps users in the SSA management context.

Applied to files:

  • admin-ui/plugins/saml/components/SamlConfigurationForm.tsx
  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderList.tsx
  • admin-ui/plugins/saml/redux/sagas/SamlSaga.ts
📚 Learning: 2025-11-06T08:23:20.948Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2418
File: admin-ui/plugins/user-management/components/UserForm.tsx:290-297
Timestamp: 2025-11-06T08:23:20.948Z
Learning: In the UserForm component (admin-ui/plugins/user-management/components/UserForm.tsx), the Back button should fall back to '/user/usersmanagement' when browser history is unavailable, not '/home/dashboard', as this keeps users in the user management context. This aligns with the new requirement that users should be redirected to the respective listing screen of the component rather than the dashboard.

Applied to files:

  • admin-ui/plugins/saml/components/SamlConfigurationForm.tsx
  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderList.tsx
📚 Learning: 2025-12-05T18:24:41.681Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2498
File: admin-ui/plugins/saml/components/SamlConfigurationForm.tsx:30-30
Timestamp: 2025-12-05T18:24:41.681Z
Learning: In the GluuFederation/flex admin-ui codebase, `SetTitle` (imported from 'Utils/SetTitle') is a custom React hook that should be called at the component's top level, not inside `useEffect` or other hooks, because it internally manages side effects for setting page titles.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderList.tsx
📚 Learning: 2025-11-10T14:18:58.310Z 
Learnt from: kdhttps
Repo: GluuFederation/flex PR: 2378
File: admin-ui/plugins/admin/components/Cedarling/CedarlingConfigPage.tsx:107-109
Timestamp: 2025-11-10T14:18:58.310Z
Learning: In the Cedarling configuration page (admin-ui/plugins/admin/components/Cedarling/CedarlingConfigPage.tsx), console.error calls should be kept in catch blocks when there are multiple operations in the try block, as they help print the whole error object with details for debugging unexpected errors.

Applied to files:

  • admin-ui/plugins/saml/redux/sagas/SamlSaga.ts
🧬 Code graph analysis (4)
admin-ui/app/routes/Apps/Gluu/GluuCommitDialog.tsx (1)
admin-ui/app/routes/Apps/Gluu/types.ts (2)
  • JsonValue (1-7)
  • GluuCommitDialogOperation (9-12)
admin-ui/plugins/saml/helper/utils.ts (3)
admin-ui/plugins/saml/types/redux.ts (3)
  • SamlConfiguration (3-8)
  • SamlIdentity (30-56)
  • TrustRelationship (62-79)
admin-ui/plugins/saml/types/formValues.ts (1)
  • SamlConfigurationFormValues (1-6)
admin-ui/plugins/saml/helper/validations.ts (2)
  • WebsiteSsoIdentityProviderFormValues (5-22)
  • WebsiteSsoTrustRelationshipFormValues (120-138)
admin-ui/plugins/saml/redux/sagas/SamlSaga.ts (7)
admin-ui/app/utils/TokenController.ts (3)
  • AdditionalPayload (10-21)
  • addAdditionalData (49-124)
  • isFourZeroOneError (23-25)
admin-ui/plugins/saml/redux/api/SamlApi.ts (1)
  • SamlApi (25-179)
admin-ui/plugins/saml/types/state.ts (1)
  • SamlRootState (3-11)
admin-ui/app/redux/api/base.ts (1)
  • getClient (23-44)
admin-ui/plugins/saml/types/redux.ts (3)
  • SamlConfiguration (3-8)
  • GetSamlIdentityProviderPayload (101-106)
  • TrustRelationshipListResponse (58-60)
admin-ui/app/redux/api/backend-api.ts (1)
  • postUserAction (51-69)
admin-ui/plugins/saml/types/api.ts (3)
  • SamlIdentityProviderResponse (8-12)
  • SamlApiResponse (27-30)
  • SamlIdentityCreateResponse (14-25)
admin-ui/plugins/saml/redux/features/SamlSlice.ts (3)
admin-ui/plugins/saml/types/redux.ts (5)
  • SamlReduxState (81-92)
  • SamlConfiguration (3-8)
  • GetSamlIdentityProviderPayload (101-106)
  • PutSamlPropertiesPayload (94-99)
  • TrustRelationship (62-79)
admin-ui/plugins/saml/types/index.ts (3)
  • SamlReduxState (1-1)
  • SamlConfiguration (1-1)
  • TrustRelationship (1-1)
admin-ui/plugins/saml/types/api.ts (1)
  • SamlIdentityProviderResponse (8-12)
🔇 Additional comments (13)
admin-ui/plugins/saml/components/WebsiteSsoServiceProviderList.tsx (4)

25-29: LGTM on the updated DeleteItem interface.

The change from Record<string, never> to Record<string, unknown> for tableData properly addresses the previous review comment and provides a more accurate representation of MaterialTable's internal data structure.

94-112: Improved type safety with UserAction import.

Good adoption of the UserAction type from PermChecker as suggested in past reviews. The deletion payload now includes both action_message and action_data, which preserves audit details properly.

121-129: Clean destructuring pattern for stripping tableData.

Good implementation using destructuring with void tableData to suppress the unused variable warning. This is a cleaner approach than the previous manual delete operation.

175-176: Well-structured component with proper memoization and display name.

The component follows React best practices with React.memo, memoized table columns, and an explicit displayName for better debugging experience in React DevTools.

Also applies to: 215-219

admin-ui/app/routes/Apps/Gluu/GluuCommitDialog.tsx (3)

30-32: Good use of type guard for array narrowing.

The isJsonValueArray type guard provides proper type narrowing when checking if item.value is an array, improving type safety over a plain Array.isArray check.

204-217: Comprehensive value type handling with proper type narrowing.

The rendering logic correctly handles all JsonValue types in order: arrays (via type guard), booleans, empty/null/undefined values, objects, and finally falls back to string conversion. This aligns well with the new typed interface.

225-227: Correct inputType handling without type assertion.

The incorrect as 'textarea' assertion flagged in previous reviews has been removed. The inputType prop now correctly accepts the union type from GluuCommitDialogProps.

admin-ui/plugins/saml/components/WebsiteSsoIdentityBrokeringList.tsx (3)

25-29: Proper handling of optional inum in deletion flow.

Good fix from previous review: DeleteItem.inum is now correctly typed as optional (inum?: string), and onDeletionConfirmed properly guards against missing inum at line 102-104 before proceeding with the deletion. The full userAction object (both action_message and action_data) is now forwarded to deleteSamlIdentity.

Also applies to: 100-121

168-198: Properly memoized component factories.

Both PaginationWrapper and GluuSearch are correctly memoized with useCallback and have appropriate dependency arrays. This ensures stable references for MaterialTable's components and actions props.

275-305: Well-organized memoization of table configuration.

The separation of tableColumns, headerStyle, tableOptions, and tableComponents into individual useMemo blocks with appropriate dependencies is a good pattern for optimizing MaterialTable renders.

admin-ui/app/routes/Apps/Gluu/types.ts (3)

1-12: Well-defined recursive JsonValue type.

The JsonValue type properly represents all valid JSON values including nested objects and arrays through recursive type references. The GluuCommitDialogOperation interface now uses this type for value, providing better type safety than the previous unknown[] approach. This addresses the concern raised in past reviews.

18-24: Flexible formik prop typing.

Good decision to narrow the formik prop to only the setFieldValue method that's actually used by the component, rather than requiring the full FormikProps generic. This improves reusability across different form contexts.

28-28: Explicit inputType union provides better type safety.

The explicit union type for inputType clearly documents the supported input types and provides better autocomplete support compared to the previous InputProps['type'] approach.

coderabbitai[bot]
coderabbitai bot reviewed Dec 9, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 4

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)
admin-ui/app/helpers/navigation.ts (1)

86-95: Silent no-op when fallbackRoute is not provided and history is empty.

When window.history.length <= 1 and no fallbackRoute is supplied, navigateBack silently does nothing. This could confuse callers expecting navigation to occur. Based on learnings from PR #2404, the Back button should navigate to /home/dashboard as a default fallback rather than doing nothing.

Consider defaulting to ROUTES.HOME_DASHBOARD when no fallback is provided:

 const navigateBack = useCallback(
-  (fallbackRoute?: string): void => {
+  (fallbackRoute: string = ROUTES.HOME_DASHBOARD): void => {
     if (window.history.length > 1) {
       navigate(-1)
-    } else if (fallbackRoute) {
+    } else {
       navigateToRoute(fallbackRoute)
     }
   },
   [navigate, navigateToRoute],
 )
📜 Review details

Configuration used: CodeRabbit UI

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 5023141 and 069d1b8.

📒 Files selected for processing (3)
  • admin-ui/app/helpers/navigation.ts (1 hunks)
  • admin-ui/plugins/saml/components/SamlPage.tsx (1 hunks)
  • admin-ui/plugins/saml/components/WebsiteSsoIdentityBrokeringList.tsx (1 hunks)
🧰 Additional context used
🧠 Learnings (4)
📓 Common learnings 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2404
File: admin-ui/app/routes/Apps/Gluu/Gluuformfooter.tsx:70-77
Timestamp: 2025-11-03T08:47:33.943Z
Learning: In the admin-ui forms (Gluuformfooter component), the Back button should always navigate to '/home/dashboard' rather than using history-based navigation (navigate(-1)), as clarified by faisalsiddique4400 in PR #2404.

Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2415
File: admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx:148-153
Timestamp: 2025-11-05T19:57:35.143Z
Learning: In the SSA Add page (admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx), the Back button should fall back to '/auth-server/config/ssa' when browser history is unavailable, not '/home/dashboard', as this keeps users in the SSA management context.
📚 Learning: 2025-11-05T19:57:35.143Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2415
File: admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx:148-153
Timestamp: 2025-11-05T19:57:35.143Z
Learning: In the SSA Add page (admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx), the Back button should fall back to '/auth-server/config/ssa' when browser history is unavailable, not '/home/dashboard', as this keeps users in the SSA management context.

Applied to files:

  • admin-ui/app/helpers/navigation.ts
📚 Learning: 2025-12-05T18:24:41.681Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2498
File: admin-ui/plugins/saml/components/SamlConfigurationForm.tsx:30-30
Timestamp: 2025-12-05T18:24:41.681Z
Learning: In the GluuFederation/flex admin-ui codebase, `SetTitle` (imported from 'Utils/SetTitle') is a custom React hook that should be called at the component's top level, not inside `useEffect` or other hooks, because it internally manages side effects for setting page titles.

Applied to files:

  • admin-ui/plugins/saml/components/SamlPage.tsx
📚 Learning: 2025-11-26T12:25:34.923Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2475
File: admin-ui/plugins/auth-server/components/Clients/ClientDetailPage.js:111-216
Timestamp: 2025-11-26T12:25:34.923Z
Learning: In the admin-ui codebase, avoid suggesting comments for small functionalities or straightforward layout decisions in smaller components. Comments should be reserved for more complex or non-obvious logic.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoIdentityBrokeringList.tsx
🔇 Additional comments (5)
admin-ui/app/helpers/navigation.ts (1)

52-52: LGTM!

The SAML_CONFIG route constant is well-placed and follows the existing naming conventions for SAML routes.

admin-ui/plugins/saml/components/WebsiteSsoIdentityBrokeringList.tsx (3)

1-24: Well-structured imports and component setup.

The imports are logically organized, and the component correctly uses memoization, hooks, and TypeScript types. The Cedar permission system integration and Redux state management follow the established patterns.

304-330: Clean component composition and conditional rendering.

The return statement properly wraps the table in GluuViewWrapper for permission gating and conditionally renders the delete dialog. The displayName assignment aids debugging.

102-123: Review comment is incorrect. The inum is properly passed to deleteSamlIdentity through action_data. The flow is: buildPayload(userAction, message, item.inum) sets userAction.action_data = item.inum, which is then dispatched in the action and received by the saga as payload.action.action_data. The saga passes this directly to api.deleteSamlIdentityProvider(payload.action.action_data), which expects the inum string as its first parameter.

Likely an incorrect or invalid review comment.

admin-ui/plugins/saml/components/SamlPage.tsx (1)

17-19: SetTitle usage is correct.

Based on learnings, SetTitle is a custom React hook that should be called at the component's top level, which is correctly done here.

coderabbitai[bot]
coderabbitai bot reviewed Dec 9, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 2

♻️ Duplicate comments (1)
admin-ui/plugins/saml/components/SamlPage.tsx (1)

32-46: Switch on translated strings is fragile (previously flagged).

This issue was already identified in a previous review: using translated strings (t('menus.configuration'), etc.) as switch case values couples rendering logic to translations. If translations change or differ across locales, the switch may fail to match.

The previous suggestion was to use constant keys (e.g., TAB_KEYS.CONFIGURATION) instead of relying on translated strings for control flow.

📜 Review details

Configuration used: CodeRabbit UI

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 069d1b8 and c5f6ffa.

📒 Files selected for processing (8)
  • admin-ui/app/routes/Apps/Gluu/GluuAdvancedSearch.tsx (3 hunks)
  • admin-ui/app/routes/Apps/Gluu/GluuCommitDialog.tsx (3 hunks)
  • admin-ui/app/routes/Apps/Gluu/types/GluuAdvancedSearch.ts (1 hunks)
  • admin-ui/app/routes/Apps/Gluu/types/GluuCommitDialog.ts (1 hunks)
  • admin-ui/app/routes/Apps/Gluu/types/common.ts (1 hunks)
  • admin-ui/app/routes/Apps/Gluu/types/index.ts (1 hunks)
  • admin-ui/plugins/saml/components/SamlPage.tsx (1 hunks)
  • admin-ui/plugins/saml/components/WebsiteSsoIdentityBrokeringList.tsx (1 hunks)
🧰 Additional context used
🧠 Learnings (3)
📓 Common learnings 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2404
File: admin-ui/app/routes/Apps/Gluu/Gluuformfooter.tsx:70-77
Timestamp: 2025-11-03T08:47:33.943Z
Learning: In the admin-ui forms (Gluuformfooter component), the Back button should always navigate to '/home/dashboard' rather than using history-based navigation (navigate(-1)), as clarified by faisalsiddique4400 in PR #2404.

Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2415
File: admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx:148-153
Timestamp: 2025-11-05T19:57:35.143Z
Learning: In the SSA Add page (admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx), the Back button should fall back to '/auth-server/config/ssa' when browser history is unavailable, not '/home/dashboard', as this keeps users in the SSA management context.
📚 Learning: 2025-11-26T12:25:34.923Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2475
File: admin-ui/plugins/auth-server/components/Clients/ClientDetailPage.js:111-216
Timestamp: 2025-11-26T12:25:34.923Z
Learning: In the admin-ui codebase, avoid suggesting comments for small functionalities or straightforward layout decisions in smaller components. Comments should be reserved for more complex or non-obvious logic.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoIdentityBrokeringList.tsx
📚 Learning: 2025-12-05T18:24:41.681Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2498
File: admin-ui/plugins/saml/components/SamlConfigurationForm.tsx:30-30
Timestamp: 2025-12-05T18:24:41.681Z
Learning: In the GluuFederation/flex admin-ui codebase, `SetTitle` (imported from 'Utils/SetTitle') is a custom React hook that should be called at the component's top level, not inside `useEffect` or other hooks, because it internally manages side effects for setting page titles.

Applied to files:

  • admin-ui/plugins/saml/components/SamlPage.tsx
🧬 Code graph analysis (4)
admin-ui/app/routes/Apps/Gluu/types/common.ts (1)
admin-ui/app/routes/Apps/Gluu/types/index.ts (1)
  • JsonValue (1-1)
admin-ui/app/routes/Apps/Gluu/types/GluuAdvancedSearch.ts (1)
admin-ui/app/routes/Apps/Gluu/types/index.ts (1)
  • GluuAdvancedSearchProps (3-3)
admin-ui/app/routes/Apps/Gluu/GluuCommitDialog.tsx (2)
admin-ui/app/routes/Apps/Gluu/types/common.ts (1)
  • JsonValue (1-7)
admin-ui/app/routes/Apps/Gluu/types/GluuCommitDialog.ts (1)
  • GluuCommitDialogOperation (3-6)
admin-ui/app/routes/Apps/Gluu/GluuAdvancedSearch.tsx (2)
admin-ui/app/routes/Apps/Gluu/types/GluuAdvancedSearch.ts (1)
  • GluuAdvancedSearchProps (3-15)
admin-ui/app/routes/Apps/Gluu/types/index.ts (1)
  • GluuAdvancedSearchProps (3-3)
🔇 Additional comments (17)
admin-ui/app/routes/Apps/Gluu/types/common.ts (1)

1-7: LGTM!

Well-defined recursive type for JSON-compatible values. This properly covers all JSON primitives and composite types, and is a standard pattern for typed JSON handling.

admin-ui/app/routes/Apps/Gluu/types/GluuAdvancedSearch.ts (1)

1-15: LGTM!

Well-structured props interface with appropriate use of type-only imports and correct React event types for input handlers.

admin-ui/app/routes/Apps/Gluu/types/index.ts (1)

1-3: LGTM!

Clean barrel file with type-only re-exports, following best practices for centralized type management.

admin-ui/app/routes/Apps/Gluu/GluuAdvancedSearch.tsx (1)

40-50: LGTM!

The controlled input pattern using patternProps spread is clean and correctly handles both controlled (value) and uncontrolled (defaultValue) modes.

admin-ui/app/routes/Apps/Gluu/GluuCommitDialog.tsx (2)

30-32: LGTM!

Clean type guard that properly narrows JsonValue to JsonValue[]. This is preferable to raw Array.isArray in typed contexts.

185-220: LGTM!

Good use of explicit typing in the map callback and proper use of the isJsonValueArray type guard. The rendering logic correctly handles all JsonValue variants.

admin-ui/app/routes/Apps/Gluu/types/GluuCommitDialog.ts (1)

1-25: LGTM!

Well-structured type definitions. Using JsonValue for GluuCommitDialogOperation.value addresses the previous review concern about type safety with unknown[]. The inputType union provides good type safety for supported input types.

admin-ui/plugins/saml/components/WebsiteSsoIdentityBrokeringList.tsx (5)

26-32: LGTM!

Previous review concerns addressed: DeleteItem.inum is now optional to handle cases where SamlIdentity.inum might be undefined, and DeleteOutlinedIcon is correctly defined at module level.

118-139: LGTM!

Good defensive check for item.inum before proceeding with deletion. Both action_message and action_data are now forwarded to deleteSamlIdentity, addressing the previous review concern about discarded audit details.

169-192: LGTM!

Event handlers are now properly separated: handleOptionsChange handles ChangeEvent and handleOptionsKeyDown handles KeyboardEvent. This addresses the previous review concern about incorrect event typing.

150-163: LGTM!

The redundant parseInt(String(startCount), 10) conversion has been removed. startCount is now passed directly as a number, which is cleaner.

332-358: LGTM!

Component rendering is clean with proper permission checks for view wrapper and delete dialog. The MaterialTable integration is well-structured with memoized columns, options, and components.

admin-ui/plugins/saml/components/SamlPage.tsx (5)

1-14: LGTM!

All imports are appropriate and necessary for the component's functionality. The type import for SamlRootState ensures type safety when accessing Redux state.

21-21: LGTM!

Correct usage of SetTitle at the component's top level. This follows the proper pattern for this custom hook.

48-56: LGTM!

The GluuLoader correctly blocks on both loadingSamlIdp and loadingTrustRelationship, ensuring users see a loading indicator when either Identity Provider or Service Provider data is being fetched. This addresses the concern from the previous review.

59-61: LGTM!

Setting displayName on the memoized component improves debugging experience in React DevTools.

17-19: The reducer structure is correct. Both loadingSamlIdp and loadingTrustRelationship are properly defined in SamlReduxState and managed in SamlSlice.ts. However, the reducer name idpSamlReducer is semantically misleading—it suggests Identity Provider-only functionality but actually handles both IDP and Service Provider (Trust Relationship) state. Consider renaming to samlReducer or samlStateReducer for clarity, though the current usage is functionally correct.

coderabbitai[bot]
coderabbitai bot reviewed Dec 9, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 1

📜 Review details

Configuration used: CodeRabbit UI

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between c5f6ffa and 6c80484.

📒 Files selected for processing (2)
  • admin-ui/app/routes/Apps/Gluu/GluuAdvancedSearch.tsx (3 hunks)
  • admin-ui/plugins/saml/components/WebsiteSsoIdentityBrokeringList.tsx (1 hunks)
🧰 Additional context used
🧠 Learnings (2)
📓 Common learnings 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2404
File: admin-ui/app/routes/Apps/Gluu/Gluuformfooter.tsx:70-77
Timestamp: 2025-11-03T08:47:33.943Z
Learning: In the admin-ui forms (Gluuformfooter component), the Back button should always navigate to '/home/dashboard' rather than using history-based navigation (navigate(-1)), as clarified by faisalsiddique4400 in PR #2404.

Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2415
File: admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx:148-153
Timestamp: 2025-11-05T19:57:35.143Z
Learning: In the SSA Add page (admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx), the Back button should fall back to '/auth-server/config/ssa' when browser history is unavailable, not '/home/dashboard', as this keeps users in the SSA management context.
📚 Learning: 2025-11-26T12:25:34.923Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2475
File: admin-ui/plugins/auth-server/components/Clients/ClientDetailPage.js:111-216
Timestamp: 2025-11-26T12:25:34.923Z
Learning: In the admin-ui codebase, avoid suggesting comments for small functionalities or straightforward layout decisions in smaller components. Comments should be reserved for more complex or non-obvious logic.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoIdentityBrokeringList.tsx
🧬 Code graph analysis (1)
admin-ui/app/routes/Apps/Gluu/GluuAdvancedSearch.tsx (1)
admin-ui/app/routes/Apps/Gluu/types/GluuAdvancedSearch.ts (1)
  • GluuAdvancedSearchProps (3-15)
🔇 Additional comments (6)
admin-ui/app/routes/Apps/Gluu/GluuAdvancedSearch.tsx (4)

4-16: TypeScript migration is clean and well-typed.

The explicit import and usage of GluuAdvancedSearchProps properly types the component. Adding separate onChange and onKeyDown props alongside the fallback handler gives callers fine-grained control.

19-34: Excellent improvement: wrapper functions replace unsafe type assertions.

The new wrapper approach addresses the past review concern about type assertions masking mismatches. By creating explicit wrapper functions that call handler(event) with the concrete event type, TypeScript can verify that handler (typed as accepting ChangeEvent | KeyboardEvent) correctly handles both cases. This is much safer than the previous assertions.

36-36: Controlled mode implementation is correct.

The patternProps logic correctly implements the controlled vs. uncontrolled pattern: value for controlled mode (parent-managed state) and defaultValue for uncontrolled mode (component-managed state).

41-51: Verify: Should the limit input support controlled mode?

The limit input uses defaultValue={limit} with onChange={handleChange}, making it always uncontrolled. In contrast, the pattern input supports both controlled and uncontrolled modes via the controlled prop.

This asymmetry might be intentional if the limit doesn't need to be re-synchronized with parent state, but please verify this is the desired behavior. If the parent updates limit, the input won't reflect the new value since it uses defaultValue.

admin-ui/plugins/saml/components/WebsiteSsoIdentityBrokeringList.tsx (2)

26-33: Delete flow typing and payload wiring look solid

Making DeleteItem.inum optional and guarding in onDeletionConfirmed before dispatching, while forwarding both action_message and action_data from buildPayload, gives you a safe and consistent delete path that matches the runtime data shape from SamlIdentity. No further changes needed here.

228-287: Actions, permissions, and row-shaping are well structured

The MaterialTable actions are nicely gated by canReadIdentities / canWriteIdentities / canDeleteIdentities, the edit handler strips tableData before navigation, delete delegates cleanly to handleDelete, and the advanced search + refresh free actions are clear (with an explicit no-op click handler on the search icon). This matches the rest of the admin UI patterns.

coderabbitai[bot]
coderabbitai bot reviewed Dec 9, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 1

📜 Review details

Configuration used: CodeRabbit UI

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 6c80484 and cf4dbce.

📒 Files selected for processing (1)
  • admin-ui/plugins/saml/components/WebsiteSsoIdentityBrokeringList.tsx (1 hunks)
🧰 Additional context used
🧠 Learnings (2)
📓 Common learnings 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2404
File: admin-ui/app/routes/Apps/Gluu/Gluuformfooter.tsx:70-77
Timestamp: 2025-11-03T08:47:33.943Z
Learning: In the admin-ui forms (Gluuformfooter component), the Back button should always navigate to '/home/dashboard' rather than using history-based navigation (navigate(-1)), as clarified by faisalsiddique4400 in PR #2404.

Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2415
File: admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx:148-153
Timestamp: 2025-11-05T19:57:35.143Z
Learning: In the SSA Add page (admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx), the Back button should fall back to '/auth-server/config/ssa' when browser history is unavailable, not '/home/dashboard', as this keeps users in the SSA management context.
📚 Learning: 2025-11-26T12:25:34.923Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2475
File: admin-ui/plugins/auth-server/components/Clients/ClientDetailPage.js:111-216
Timestamp: 2025-11-26T12:25:34.923Z
Learning: In the admin-ui codebase, avoid suggesting comments for small functionalities or straightforward layout decisions in smaller components. Comments should be reserved for more complex or non-obvious logic.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoIdentityBrokeringList.tsx
🧬 Code graph analysis (1)
admin-ui/plugins/saml/components/WebsiteSsoIdentityBrokeringList.tsx (5)
admin-ui/app/helpers/navigation.ts (1)
  • useAppNavigation (76-105)
admin-ui/plugins/saml/types/state.ts (1)
  • SamlRootState (3-11)
admin-ui/plugins/saml/types/redux.ts (1)
  • SamlIdentity (30-56)
admin-ui/app/utils/PermChecker.ts (1)
  • buildPayload (154-161)
admin-ui/plugins/saml/redux/sagas/SamlSaga.ts (1)
  • deleteSamlIdentity (336-360)
🔇 Additional comments (2)
admin-ui/plugins/saml/components/WebsiteSsoIdentityBrokeringList.tsx (2)

26-30: Deletion flow and audit payload wiring look correct and type‑safe

The DeleteItem shape, guarded item.inum check, and onDeletionConfirmed now align well with the saga and buildPayload helper: you only dispatch when inum is present, and you forward both action_message and action_data to deleteSamlIdentity, preserving audit context. This resolves the earlier typing/payload mismatch cleanly.

Also applies to: 125-153, 347-356

231-300: Table actions, permission gating, and compositional setup are consistent

The way you gate edit/add/view/delete actions on can*Identities, strip tableData via destructuring before navigation, and compose components, options, and columns via useMemo yields a clear, predictable MaterialTable configuration and respects Cedarling permissions.

Also applies to: 314-332, 334-345

duttarnab
duttarnab requested changes Dec 10, 2025
View reviewed changes
Copy link
Contributor

@duttarnab duttarnab left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

  1. Edit operation not working in Identity Brokering and Website SSO form
  2. for Identity Brokering audit payload the resource name should be Identity-Brokering
image

coderabbitai[bot]
coderabbitai bot reviewed Dec 11, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 3

♻️ Duplicate comments (16)
admin-ui/plugins/saml/redux/sagas/types/saml.ts (1)

1-7: Clarify SamlRootState naming to avoid conflict with other root state type.

There is another SamlRootState in admin-ui/plugins/saml/types/state.ts with a different shape, which can be confusing and error‑prone when importing. Consider renaming this one to something like SamlAuthRootState (and updating saga usages) to make the scope explicit.

Also applies to: 9-11

admin-ui/plugins/saml/components/SamlPage.tsx (1)

32-46: Switch on translated strings remains fragile.

This was noted in a previous review. Using t('menus.configuration') as switch case values couples rendering logic to translation strings. If translations change or differ across locales, the switch may fail to match, rendering null.

Consider using a constant key-based approach where each tab has a stable key property, and tabToShow switches on that key instead of the translated name. This would require coordination with the GluuTabs component.

admin-ui/plugins/saml/components/WebsiteSsoIdentityProviderForm.tsx (4)

111-113: Replace void statements with underscore prefix convention.

Using void to suppress unused variable warnings is unconventional. Consider using underscore-prefixed destructuring instead.

Apply this diff:

-      const { metaDataFileImportedFlag, manualMetadata, metaDataFile, ...formValues } = values
-      void metaDataFileImportedFlag
-      void manualMetadata
+      const { metaDataFileImportedFlag: _metaDataFileImportedFlag, manualMetadata: _manualMetadata, metaDataFile, ...formValues } = values

166-190: Extract stable Formik methods to avoid stale closures.

Using formik as a dependency can cause stale closure issues. Extract the stable methods you need.

Apply this diff:

+  const { setFieldValue, setFieldTouched, validateForm } = formik
+
   const handleToggleMetadataImport = useCallback(
     async (event: React.ChangeEvent<HTMLInputElement>) => {
       if (event.target.checked) {
         setShowUploadBtn(true)
-        formik.setFieldValue('metaDataFileImportedFlag', true)
-        formik.setFieldValue('idpEntityId', '')
+        setFieldValue('metaDataFileImportedFlag', true)
+        setFieldValue('idpEntityId', '')
         // ... rest of the implementation
-        await formik.validateForm()
+        await validateForm()
       } else {
         // ...
       }
     },
-    [formik],
+    [setFieldValue, setFieldTouched, validateForm],
   )

192-205: Extract setValues and setFieldTouched for handleDrop.

Similar to the previous comment, extract Formik methods to avoid including the entire formik object in dependencies.

Apply this diff:

+  const { setValues, setFieldTouched } = formik
+
   const handleDrop = useCallback(
     (files: File[]) => {
       const file = files[0]
       if (file) {
-        formik.setValues({
-          ...formik.values,
+        setValues((prev) => ({
+          ...prev,
           metaDataFileImportedFlag: true,
           metaDataFile: file,
-        })
-        formik.setFieldTouched('metaDataFile', false, false)
+        }))
+        setFieldTouched('metaDataFile', false, false)
       }
     },
-    [formik],
+    [setValues, setFieldTouched],
   )

213-216: handleCancel should respect initial metadata import state.

Setting showUploadBtn to false unconditionally may cause inconsistency if the initial data had metadata imported. Consider syncing with initialValues.

Apply this diff:

   const handleCancel = useCallback(() => {
     formik.resetForm({ values: initialValues })
-    setShowUploadBtn(false)
+    setShowUploadBtn(initialValues.metaDataFileImportedFlag ?? false)
   }, [formik, initialValues])
admin-ui/plugins/saml/types/redux.ts (3)

3-8: Consider reusing SamlConfigurationFormValues type.

SamlConfiguration has identical fields to SamlConfigurationFormValues from ./formValues. Consider reusing the type to maintain a single source of truth.

Apply this diff:

-export interface SamlConfiguration {
-  enabled: boolean
-  selectedIdp: string
-  ignoreValidation: boolean
-  applicationName: string
-}
+export type SamlConfiguration = SamlConfigurationFormValues

62-96: Make samlMetadata optional in the WebsiteSsoServiceProvider type definition.

API responses may omit this nested object. While the code already handles this defensively with optional chaining in utils.ts and provides defaults when transforming data for forms, the type definition should reflect that samlMetadata is not guaranteed to be present in API responses.

Update line 72 to:

-  samlMetadata: {
+  samlMetadata?: {
     entityId: string
     singleLogoutServiceUrl: string
     nameIDPolicyFormat: string
     jansAssertionConsumerServiceGetURL: string
     jansAssertionConsumerServicePostURL: string
   }

This makes the type consistent with the defensive programming patterns already in place throughout the codebase.

125-133: Consider consolidating identical payload interfaces.

CreateSamlIdentityPayload and CreateWebsiteSsoServiceProviderPayload have identical structures. Consider a shared generic type.

Apply this diff:

+export interface FormDataPayload {
+  formdata: FormData
+  token: string
+}
+
-export interface CreateSamlIdentityPayload {
-  formdata: FormData
-  token: string
-}
-
-export interface CreateWebsiteSsoServiceProviderPayload {
-  formdata: FormData
-  token: string
-}
+export type CreateSamlIdentityPayload = FormDataPayload
+export type CreateWebsiteSsoServiceProviderPayload = FormDataPayload
admin-ui/plugins/saml/redux/api/SamlApi.ts (3)

75-109: Add explicit request timeouts to axios calls to prevent indefinite hangs.

The axios POST and PUT calls (lines 80-83, 98-101) lack explicit timeout configuration. Since axios defaults to no timeout (0), requests can hang indefinitely if the API is slow or unresponsive.

Consider adding a timeout option to the axios config:

       axios
-        .post<SamlIdentityCreateResponse>('/kc/saml/idp/upload', formdata, {
+        .post<SamlIdentityCreateResponse>('/kc/saml/idp/upload', formdata, {
           headers: { Authorization: `Bearer ${token}` },
+          timeout: 30000, // 30 seconds
         })

Apply the same pattern to the PUT call on lines 98-101.

123-133: Inconsistent response handling in getWebsiteSsoServiceProvider.

This method passes response directly to handleResponse, while getSamlIdentityProvider (line 67) passes response?.body || data. Based on the type WebsiteSsoServiceProviderListResponse which has a body property, this may return the wrong shape.

Apply this diff:

       if ('getTrustRelationships' in this.api) {
         this.api.getTrustRelationships((error, _data, response) => {
-          handleResponse(error, reject, resolve as (data: unknown) => void, response)
+          handleResponse(error, reject, resolve as (data: unknown) => void, response?.body || _data)
         })

135-169: Add explicit request timeouts to service provider axios calls.

Similar to the identity provider methods, these axios POST and PUT calls (lines 140-143, 158-161) lack timeout configuration and can hang indefinitely.

Add timeout to both axios calls:

       axios
-        .post<SamlApiResponse>('/kc/saml/trust-relationship/upload', formdata, {
+        .post<SamlApiResponse>('/kc/saml/trust-relationship/upload', formdata, {
           headers: { Authorization: `Bearer ${token}` },
+          timeout: 30000,
         })

Apply the same pattern to the PUT call on lines 158-161.

admin-ui/plugins/saml/redux/sagas/SamlSaga.ts (3)

141-163: Add missing toggleSavedFormFlag dispatch to putSamlProperties saga.

The putSamlProperties saga is missing the toggleSavedFormFlag dispatch that all other mutation sagas in this file include. This inconsistency means the saved form flag won't be properly managed for SAML configuration updates.

Add yield put(toggleSamlFormFlag(true)) after line 153 and yield put(toggleSavedFormFlag(false)) in the catch block before the return statement, following the pattern in postSamlIdentity (line 310) and other mutation sagas.

184-258: Remove debug console.log statements.

Debug console.log statements are present in error handlers (lines 211, 249). These should be removed before production deployment as they can expose sensitive error details in the browser console and clutter logs.

Apply this diff at lines 211 and 249:

   } catch (e) {
-    console.log('Error: ', e)
     yield put(toggleSavedFormFlag(false))

290-362: Remove debug console.log statements from identity sagas.

Debug console.log statements are present in error handlers (lines 315, 353) similar to the service provider sagas. These should be removed for the same reasons.

Apply this diff:

   } catch (e) {
-    console.log('Error: ', e)
     yield put(toggleSavedFormFlag(false))
admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx (1)

160-200: Clarify unused variable suppression.

Line 163 uses void metaDataFileImportedFlag to suppress the unused variable warning after destructuring. Consider using an underscore prefix in the destructuring pattern itself (e.g., metaDataFileImportedFlag: _unused) to make the intent clearer without needing the void statement.

📜 Review details

Configuration used: CodeRabbit UI

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 1c0b3d6 and 040bb5d.

📒 Files selected for processing (17)
  • admin-ui/app/routes/Apps/Gluu/GluuDialog.tsx (0 hunks)
  • admin-ui/plugins/saml/components/SamlPage.tsx (1 hunks)
  • admin-ui/plugins/saml/components/WebsiteSsoIdentityProviderForm.tsx (1 hunks)
  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx (14 hunks)
  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderList.tsx (1 hunks)
  • admin-ui/plugins/saml/helper/index.ts (1 hunks)
  • admin-ui/plugins/saml/helper/utils.ts (1 hunks)
  • admin-ui/plugins/saml/helper/validations.ts (1 hunks)
  • admin-ui/plugins/saml/plugin-metadata.js (2 hunks)
  • admin-ui/plugins/saml/redux/api/SamlApi.ts (1 hunks)
  • admin-ui/plugins/saml/redux/features/SamlSlice.ts (1 hunks)
  • admin-ui/plugins/saml/redux/sagas/SamlSaga.ts (1 hunks)
  • admin-ui/plugins/saml/redux/sagas/types/saml.ts (1 hunks)
  • admin-ui/plugins/saml/types/api.ts (1 hunks)
  • admin-ui/plugins/saml/types/formValues.ts (1 hunks)
  • admin-ui/plugins/saml/types/index.ts (1 hunks)
  • admin-ui/plugins/saml/types/redux.ts (1 hunks)
💤 Files with no reviewable changes (1)
  • admin-ui/app/routes/Apps/Gluu/GluuDialog.tsx
🧰 Additional context used
🧠 Learnings (6)
📓 Common learnings 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2404
File: admin-ui/app/routes/Apps/Gluu/Gluuformfooter.tsx:70-77
Timestamp: 2025-11-03T08:47:33.943Z
Learning: In the admin-ui forms (Gluuformfooter component), the Back button should always navigate to '/home/dashboard' rather than using history-based navigation (navigate(-1)), as clarified by faisalsiddique4400 in PR #2404.
📚 Learning: 2025-11-03T08:47:33.943Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2404
File: admin-ui/app/routes/Apps/Gluu/Gluuformfooter.tsx:70-77
Timestamp: 2025-11-03T08:47:33.943Z
Learning: In the admin-ui forms (Gluuformfooter component), the Back button should always navigate to '/home/dashboard' rather than using history-based navigation (navigate(-1)), as clarified by faisalsiddique4400 in PR #2404.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderList.tsx
📚 Learning: 2025-11-06T08:23:20.948Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2418
File: admin-ui/plugins/user-management/components/UserForm.tsx:290-297
Timestamp: 2025-11-06T08:23:20.948Z
Learning: In the UserForm component (admin-ui/plugins/user-management/components/UserForm.tsx), the Back button should fall back to '/user/usersmanagement' when browser history is unavailable, not '/home/dashboard', as this keeps users in the user management context. This aligns with the new requirement that users should be redirected to the respective listing screen of the component rather than the dashboard.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderList.tsx
📚 Learning: 2025-11-05T19:57:35.143Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2415
File: admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx:148-153
Timestamp: 2025-11-05T19:57:35.143Z
Learning: In the SSA Add page (admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx), the Back button should fall back to '/auth-server/config/ssa' when browser history is unavailable, not '/home/dashboard', as this keeps users in the SSA management context.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderList.tsx
  • admin-ui/plugins/saml/redux/sagas/SamlSaga.ts
📚 Learning: 2025-12-05T18:24:41.713Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2498
File: admin-ui/plugins/saml/components/SamlConfigurationForm.tsx:30-30
Timestamp: 2025-12-05T18:24:41.713Z
Learning: In the GluuFederation/flex admin-ui codebase, `SetTitle` (imported from 'Utils/SetTitle') is a custom React hook that should be called at the component's top level, not inside `useEffect` or other hooks, because it internally manages side effects for setting page titles.

Applied to files:

  • admin-ui/plugins/saml/components/SamlPage.tsx
  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx
📚 Learning: 2025-11-10T14:18:58.310Z 
Learnt from: kdhttps
Repo: GluuFederation/flex PR: 2378
File: admin-ui/plugins/admin/components/Cedarling/CedarlingConfigPage.tsx:107-109
Timestamp: 2025-11-10T14:18:58.310Z
Learning: In the Cedarling configuration page (admin-ui/plugins/admin/components/Cedarling/CedarlingConfigPage.tsx), console.error calls should be kept in catch blocks when there are multiple operations in the try block, as they help print the whole error object with details for debugging unexpected errors.

Applied to files:

  • admin-ui/plugins/saml/redux/sagas/SamlSaga.ts
🧬 Code graph analysis (9)
admin-ui/plugins/saml/components/SamlPage.tsx (2)
admin-ui/plugins/saml/types/state.ts (1)
  • SamlRootState (3-11)
admin-ui/app/helpers/navigation.ts (1)
  • ROUTES (107-107)
admin-ui/plugins/saml/plugin-metadata.js (1)
admin-ui/app/utils/PermChecker.ts (1)
  • SAML_WRITE (52-52)
admin-ui/plugins/saml/redux/api/SamlApi.ts (3)
admin-ui/plugins/saml/types/api.ts (5)
  • JansConfigApiClient (32-38)
  • JansIdentityBrokerApiClient (40-58)
  • JansTrustRelationshipApiClient (60-72)
  • SamlIdentityProviderResponse (8-12)
  • SamlApiResponse (27-30)
admin-ui/plugins/saml/types/redux.ts (5)
  • SamlConfiguration (3-8)
  • GetSamlIdentityProviderPayload (118-123)
  • CreateSamlIdentityPayload (125-128)
  • WebsiteSsoServiceProviderListResponse (58-60)
  • CreateWebsiteSsoServiceProviderPayload (130-133)
admin-ui/app/utils/ApiUtils.ts (1)
  • handleResponse (5-20)
admin-ui/plugins/saml/types/redux.ts (2)
admin-ui/plugins/saml/types/index.ts (5)
  • SamlConfiguration (3-3)
  • SamlIdentity (4-4)
  • WebsiteSsoServiceProvider (5-5)
  • SamlReduxState (2-2)
  • SamlConfigurationFormValues (11-11)
admin-ui/plugins/saml/types/formValues.ts (1)
  • SamlConfigurationFormValues (1-6)
admin-ui/plugins/saml/redux/features/SamlSlice.ts (2)
admin-ui/plugins/saml/types/redux.ts (5)
  • SamlReduxState (98-109)
  • SamlConfiguration (3-8)
  • GetSamlIdentityProviderPayload (118-123)
  • PutSamlPropertiesPayload (111-116)
  • WebsiteSsoServiceProvider (62-96)
admin-ui/plugins/saml/types/api.ts (1)
  • SamlIdentityProviderResponse (8-12)
admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx (5)
admin-ui/plugins/saml/types/index.ts (4)
  • WebsiteSsoServiceProvider (5-5)
  • LocationState (12-12)
  • SamlRootState (8-8)
  • WebsiteSsoServiceProviderFormValues (21-21)
admin-ui/plugins/saml/types/formValues.ts (2)
  • LocationState (8-11)
  • WebsiteSsoServiceProviderFormValues (77-112)
admin-ui/plugins/saml/helper/validations.ts (2)
  • websiteSsoServiceProviderValidationSchema (120-159)
  • WebsiteSsoServiceProviderFormValues (14-14)
admin-ui/plugins/saml/helper/utils.ts (2)
  • transformToWebsiteSsoServiceProviderFormValues (89-134)
  • buildWebsiteSsoServiceProviderPayload (326-375)
admin-ui/plugins/saml/redux/sagas/SamlSaga.ts (1)
  • updateWebsiteSsoServiceProvider (222-258)
admin-ui/plugins/saml/types/api.ts (1)
admin-ui/plugins/saml/types/redux.ts (4)
  • SamlIdentity (30-56)
  • SamlConfiguration (3-8)
  • WebsiteSsoServiceProviderListResponse (58-60)
  • WebsiteSsoServiceProvider (62-96)
admin-ui/plugins/saml/helper/utils.ts (4)
admin-ui/plugins/saml/types/redux.ts (3)
  • SamlConfiguration (3-8)
  • SamlIdentity (30-56)
  • WebsiteSsoServiceProvider (62-96)
admin-ui/plugins/saml/types/formValues.ts (8)
  • SamlConfigurationFormValues (1-6)
  • WebsiteSsoIdentityProviderFormValues (31-69)
  • WebsiteSsoServiceProviderFormValues (77-112)
  • FormValue (14-14)
  • FormValues (15-15)
  • RootFields (17-17)
  • ConfigFields (16-16)
  • CleanableValue (20-28)
admin-ui/plugins/saml/helper/constants.ts (1)
  • nameIDPolicyFormat (6-27)
admin-ui/plugins/user-management/utils/userFormUtils.ts (1)
  • getStringValue (18-26)
admin-ui/plugins/saml/redux/sagas/SamlSaga.ts (10)
admin-ui/plugins/saml/redux/sagas/types/saml.ts (3)
  • PutSamlPropertiesSagaPayload (20-25)
  • CreateSamlIdentitySagaPayload (27-32)
  • SamlRootState (9-11)
admin-ui/app/utils/TokenController.ts (3)
  • AdditionalPayload (10-21)
  • addAdditionalData (49-124)
  • isFourZeroOneError (23-25)
admin-ui/plugins/saml/redux/api/SamlApi.ts (1)
  • SamlApi (28-182)
admin-ui/plugins/saml/types/state.ts (1)
  • SamlRootState (3-11)
admin-ui/app/redux/api/base.ts (1)
  • getClient (23-44)
admin-ui/plugins/saml/types/redux.ts (3)
  • SamlConfiguration (3-8)
  • GetSamlIdentityProviderPayload (118-123)
  • WebsiteSsoServiceProviderListResponse (58-60)
admin-ui/app/redux/api/backend-api.ts (1)
  • postUserAction (51-69)
admin-ui/plugins/saml/types/api.ts (3)
  • SamlIdentityProviderResponse (8-12)
  • SamlApiResponse (27-30)
  • SamlIdentityCreateResponse (14-25)
admin-ui/plugins/saml/helper/constants.ts (1)
  • AUDIT_RESOURCE_NAMES (30-34)
admin-ui/plugins/admin/redux/sagas/WebhookSaga.ts (1)
  • triggerWebhook (279-368)
🪛 Biome (2.1.2)
admin-ui/plugins/saml/helper/validations.ts

[error] 21-21: Do not add then to an object.

(lint/suspicious/noThenProperty)

[error] 35-35: Do not add then to an object.

(lint/suspicious/noThenProperty)

[error] 54-54: Do not add then to an object.

(lint/suspicious/noThenProperty)

[error] 58-58: Do not add then to an object.

(lint/suspicious/noThenProperty)

[error] 86-86: Do not add then to an object.

(lint/suspicious/noThenProperty)

[error] 116-116: Do not add then to an object.

(lint/suspicious/noThenProperty)

[error] 130-130: Do not add then to an object.

(lint/suspicious/noThenProperty)

[error] 134-134: Do not add then to an object.

(lint/suspicious/noThenProperty)

🔇 Additional comments (22)
admin-ui/plugins/saml/redux/sagas/types/saml.ts (1)

27-47: Consistent delete payload typing vs. create/update (identity).

Create/Update/Delete identity payloads now all carry action_message and a clearly typed action_data/action_inum, which matches the other saga payloads and makes the delete flow type‑safe. This looks coherent and should work well with your existing sagas.

admin-ui/plugins/saml/plugin-metadata.js (2)

2-6: LGTM!

The new component imports for WebsiteSsoIdentityProviderForm and WebsiteSsoServiceProviderForm are correctly added and align with the TypeScript migration and unified form component approach described in the PR objectives.

46-69: Route configuration updates look correct.

The routes for identity-providers and service-providers (add/edit) are properly updated to use the new unified form components. The permission (SAML_WRITE) and resource key assignments are consistent with the existing route patterns.

admin-ui/plugins/saml/types/index.ts (1)

1-22: LGTM!

Clean barrel file implementation that centralizes type exports from the SAML plugin's type modules. This follows TypeScript best practices for module organization and provides a single entry point for type imports.

admin-ui/plugins/saml/components/WebsiteSsoServiceProviderList.tsx (4)

25-29: LGTM!

The DeleteItem interface properly uses Record<string, unknown> for tableData, which is more appropriate than the previous Record<string, never> typing for MaterialTable's internal data.

94-112: LGTM!

The onDeletionConfirmed callback properly uses the UserAction type from PermChecker, addressing the previous review feedback about type alignment.

125-136: LGTM!

The Edit action properly strips tableData using destructuring before passing to handleGoToEditPage, which is cleaner than the previous manual deletion approach.

192-229: LGTM!

The render implementation properly wraps the MaterialTable with GluuViewWrapper for permission-based visibility and includes the GluuDialog for deletion confirmation. The component structure follows established patterns in the codebase.

admin-ui/plugins/saml/helper/index.ts (1)

1-26: LGTM!

Well-organized barrel file that provides a clean public API for the SAML helper module. The exports are logically grouped by source module (constants, validations, types, utilities, table helpers).

admin-ui/plugins/saml/components/SamlPage.tsx (2)

17-19: LGTM!

The loading state now correctly includes both loadingSamlIdp and loadingWebsiteSsoServiceProvider, addressing the previous review feedback about missing the Service Provider loading state.

48-56: LGTM!

The GluuLoader now properly blocks on both IdP and Service Provider loading states, providing consistent loading feedback across all tabs.

admin-ui/plugins/saml/helper/validations.ts (3)

16-29: LGTM! Biome warnings are false positives.

The validation schema is correctly structured. The Biome warnings about .then property are false positives—this is Yup's standard conditional validation API (.when().then()), not Promise-related code.

39-110: Identity provider validation schema is well-structured.

The conditional validation logic correctly handles:

  • Metadata file requirement based on import flag and existing file presence
  • File-like object acceptance for drag-and-drop scenarios
  • URL validation for SSO endpoints
  • Required field enforcement based on manual vs. metadata-import mode

120-159: Service provider validation schema is well-structured.

The schema correctly implements:

  • Conditional metadata file validation based on source type
  • Nested samlMetadata validation for manual configuration mode
  • Proper handling of existing file presence (spMetaDataFN)
admin-ui/plugins/saml/types/formValues.ts (1)

1-112: LGTM! Type definitions are comprehensive and well-structured.

The form value types provide a solid foundation for the SAML form handling:

  • Clear separation of configuration, identity provider, and service provider forms
  • Appropriate use of optional fields
  • Utility types for form data transformation
  • FileLikeObject type supports flexible file handling
admin-ui/plugins/saml/redux/features/SamlSlice.ts (1)

30-158: LGTM! Redux slice is well-structured with consistent patterns.

The slice implementation demonstrates good practices:

  • Consistent loading flag management (general + operation-specific)
  • Proper fallback values for null responses
  • Clean separation of request and response reducers
  • All CRUD operations properly covered

The past issues (typo in getSamlIdentities, inconsistent loading flags, missing response handler) have been addressed.

admin-ui/plugins/saml/types/api.ts (1)

1-72: LGTM! API type definitions are well-structured.

The API interface definitions provide clear contracts:

  • Error-first callback pattern for Node.js style APIs
  • Comprehensive response types for identity providers and service providers
  • Clean separation between config, identity broker, and trust relationship API clients
  • Proper optional types where API responses may vary
admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx (1)

539-554: Verify Back button navigation behavior.

Line 545 navigates to ROUTES.SAML_SP_LIST on Back. Based on learnings, the Back button in admin-ui forms should navigate to '/home/dashboard'. However, the PR objectives indicate "Back: navigates to the previous page or returns to Dashboard if no history", which suggests context-dependent behavior.

Please verify whether:

  1. The navigation to ROUTES.SAML_SP_LIST is the intended behavior for this specific form
  2. This represents a change from the previous pattern of always navigating to '/home/dashboard'
  3. The navigateBack helper implements the logic described in the PR objectives

Based on learnings, the previous pattern was to always navigate to dashboard.

admin-ui/plugins/saml/helper/utils.ts (4)

19-28: LGTM: Clean type-safe transformation.

The function properly coerces values to expected types and handles undefined/null cases.

89-134: LGTM: Explicit field mapping ensures type safety.

The function uses explicit property mapping (lines 93-132) rather than spreading the entire config object. This prevents unexpected properties from leaking into form values and maintains type safety.

225-246: LGTM: Value extraction helpers provide safe type coercion.

The helper functions handle various FormValue types and provide appropriate fallbacks. The String() coercion in getStringValue (line 228) safely handles edge cases where non-string values might be present.

326-375: LGTM: Payload builder follows consistent pattern.

The function properly constructs the payload using type-safe helpers and provides sensible defaults for validationStatus (line 358) and status (line 360). The conditional inum assignment (lines 370-372) correctly handles both create and update scenarios.

coderabbitai[bot]
coderabbitai bot reviewed Dec 11, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 2

♻️ Duplicate comments (3)
admin-ui/plugins/saml/components/WebsiteSsoIdentityProviderForm.tsx (1)

213-216: Fix UI inconsistency when canceling with imported metadata.

The handleCancel function unconditionally sets showUploadBtn to false, which causes an inconsistency when the initial data had metadata imported. After canceling, the form will have metaDataFileImportedFlag=true (from initialValues) but the upload UI will be hidden.

Apply this diff to preserve the initial upload button state:

   const handleCancel = useCallback(() => {
     formik.resetForm({ values: initialValues })
-    setShowUploadBtn(false)
+    setShowUploadBtn(initialValues.metaDataFileImportedFlag ?? false)
   }, [formik, initialValues])
admin-ui/plugins/saml/components/WebsiteSsoServiceProviderList.tsx (1)

172-178: Optional: Remove unused type assertion.

The type assertion as Action<WebsiteSsoServiceProvider> & { 'data-testid'?: string } is unnecessary since 'data-testid' is not being used in this action object. TypeScript can infer the correct type without the assertion.

Apply this diff if you want to simplify:

     actions.push({
       icon: 'refresh',
       tooltip: `${t('messages.refresh')}`,
       iconProps: { color: 'primary' },
       isFreeAction: true,
       onClick: handleRefresh,
-    } as Action<WebsiteSsoServiceProvider> & { 'data-testid'?: string })
+    })
admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx (1)

161-162: Clarify unused variable suppression with underscore prefix.

The void metaDataFileImportedFlag pattern suppresses the unused variable warning but is unclear. Using an underscore prefix makes the intent explicit.

   const handleSubmit = useCallback(
     (values: WebsiteSsoServiceProviderFormValues, user_message: string) => {
-      const { metaDataFileImportedFlag, metaDataFile, ...websiteSsoServiceProviderData } = values
-      void metaDataFileImportedFlag
+      const { metaDataFileImportedFlag: _unused, metaDataFile, ...websiteSsoServiceProviderData } = values
       const formdata = new FormData()
📜 Review details

Configuration used: CodeRabbit UI

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 040bb5d and 283c908.

📒 Files selected for processing (4)
  • admin-ui/plugins/saml/components/WebsiteSsoIdentityProviderForm.tsx (1 hunks)
  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx (14 hunks)
  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderList.tsx (1 hunks)
  • admin-ui/plugins/saml/redux/sagas/types/saml.ts (1 hunks)
🧰 Additional context used
🧠 Learnings (5)
📓 Common learnings 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2404
File: admin-ui/app/routes/Apps/Gluu/Gluuformfooter.tsx:70-77
Timestamp: 2025-11-03T08:47:33.943Z
Learning: In the admin-ui forms (Gluuformfooter component), the Back button should always navigate to '/home/dashboard' rather than using history-based navigation (navigate(-1)), as clarified by faisalsiddique4400 in PR #2404.
📚 Learning: 2025-11-03T08:47:33.943Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2404
File: admin-ui/app/routes/Apps/Gluu/Gluuformfooter.tsx:70-77
Timestamp: 2025-11-03T08:47:33.943Z
Learning: In the admin-ui forms (Gluuformfooter component), the Back button should always navigate to '/home/dashboard' rather than using history-based navigation (navigate(-1)), as clarified by faisalsiddique4400 in PR #2404.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderList.tsx
📚 Learning: 2025-11-06T08:23:20.948Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2418
File: admin-ui/plugins/user-management/components/UserForm.tsx:290-297
Timestamp: 2025-11-06T08:23:20.948Z
Learning: In the UserForm component (admin-ui/plugins/user-management/components/UserForm.tsx), the Back button should fall back to '/user/usersmanagement' when browser history is unavailable, not '/home/dashboard', as this keeps users in the user management context. This aligns with the new requirement that users should be redirected to the respective listing screen of the component rather than the dashboard.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderList.tsx
📚 Learning: 2025-11-05T19:57:35.143Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2415
File: admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx:148-153
Timestamp: 2025-11-05T19:57:35.143Z
Learning: In the SSA Add page (admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx), the Back button should fall back to '/auth-server/config/ssa' when browser history is unavailable, not '/home/dashboard', as this keeps users in the SSA management context.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderList.tsx
📚 Learning: 2025-12-05T18:24:41.713Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2498
File: admin-ui/plugins/saml/components/SamlConfigurationForm.tsx:30-30
Timestamp: 2025-12-05T18:24:41.713Z
Learning: In the GluuFederation/flex admin-ui codebase, `SetTitle` (imported from 'Utils/SetTitle') is a custom React hook that should be called at the component's top level, not inside `useEffect` or other hooks, because it internally manages side effects for setting page titles.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx
🧬 Code graph analysis (2)
admin-ui/plugins/saml/components/WebsiteSsoServiceProviderList.tsx (5)
admin-ui/plugins/saml/types/state.ts (1)
  • SamlRootState (3-11)
admin-ui/plugins/saml/types/redux.ts (1)
  • WebsiteSsoServiceProvider (62-96)
admin-ui/app/utils/PermChecker.ts (1)
  • buildPayload (154-161)
admin-ui/plugins/saml/redux/sagas/SamlSaga.ts (1)
  • deleteWebsiteSsoServiceProvider (260-288)
admin-ui/plugins/saml/helper/tableUtils.tsx (2)
  • getServiceProviderTableCols (25-38)
  • PaperContainer (40-42)
admin-ui/plugins/saml/components/WebsiteSsoIdentityProviderForm.tsx (6)
admin-ui/plugins/saml/types/redux.ts (1)
  • SamlIdentity (30-56)
admin-ui/plugins/saml/types/formValues.ts (2)
  • LocationState (8-11)
  • WebsiteSsoIdentityProviderFormValues (31-69)
admin-ui/plugins/saml/types/state.ts (1)
  • SamlRootState (3-11)
admin-ui/plugins/saml/helper/validations.ts (2)
  • WebsiteSsoIdentityProviderFormValues (12-12)
  • websiteSsoIdentityProviderValidationSchema (39-110)
admin-ui/plugins/saml/helper/utils.ts (3)
  • transformToIdentityProviderFormValues (30-76)
  • separateConfigFields (162-178)
  • buildIdentityProviderPayload (248-315)
admin-ui/plugins/saml/helper/constants.ts (1)
  • nameIDPolicyFormat (6-27)
🔇 Additional comments (18)
admin-ui/plugins/saml/redux/sagas/types/saml.ts (4)

1-7: LGTM! Clear auth state structure.

The SamlAuthState interface is well-defined with explicit required fields for authentication data.

18-23: LGTM! Elegant generic pattern for saga actions.

The SamlAction<TData, TInum> generic with conditional typing cleanly handles optional action_inum without resorting to permissive index signatures. This provides strong type safety while keeping the code DRY.

25-30: FormData is the browser API and is already properly handled.

FormData refers to the browser's built-in Fetch API class, not a custom type. The saga handlers at lines 70–71 of SamlSaga.ts correctly detect and process multipart form data using instanceof FormData, wrapping it appropriately for audit logging. No changes needed.

13-16: The imported types are correctly defined in the source module.

Both SamlConfiguration (line 3 of redux.ts) and PutSamlPropertiesPayload (line 111 of redux.ts) are properly exported from admin-ui/plugins/saml/types/redux.ts. The re-export aliases are valid and follow good naming conventions for saga-specific types.

admin-ui/plugins/saml/components/WebsiteSsoServiceProviderList.tsx (5)

25-31: LGTM! Past issues successfully addressed.

The DeleteItem interface now correctly types tableData as Record<string, unknown>, and DeleteOutlinedIcon has been properly moved outside the component to avoid unnecessary recreation on each render.

33-73: LGTM! Permission-gated data fetching is well-structured.

The component correctly:

  • Authorizes Cedar scopes on mount
  • Checks read permissions before fetching data
  • Memoizes permission checks to prevent unnecessary re-computation
  • Follows the established Cedar authorization pattern

94-112: LGTM! Deletion flow correctly implements UserAction type.

The onDeletionConfirmed callback now properly uses the imported UserAction type, aligning with the buildPayload function signature and improving type safety.

125-136: LGTM! Edit action correctly strips MaterialTable's internal data.

The edit action now properly uses destructuring to remove tableData before passing the cleaned object to handleGoToEditPage, preventing MaterialTable's internal properties from leaking into navigation state.

192-229: LGTM! Component rendering is properly permission-gated and theme-aware.

The MaterialTable and deletion dialog are correctly wrapped with permission checks, ensuring users only see UI elements they're authorized to use. Theme styling is properly applied to the table header.

admin-ui/plugins/saml/components/WebsiteSsoIdentityProviderForm.tsx (7)

45-107: LGTM! Component initialization is well-structured.

The component correctly:

  • Merges props from both direct props and router state
  • Derives the appropriate title based on view mode
  • Memoizes initial values and validation schema
  • Sets up Formik with proper configuration including enableReinitialize

109-156: LGTM! Form submission logic correctly handles create and update flows.

The handleSubmit function properly:

  • Constructs a FormData payload with both the identity provider JSON and optional metadata file
  • Uses helper utilities to clean, separate, and build the payload
  • Dispatches the appropriate Redux action based on whether editing existing config

Note: Lines 111-113 use void statements to suppress unused variable warnings. While this works, the underscore prefix convention (e.g., _metaDataFileImportedFlag) is more idiomatic, but this is purely a style preference.

166-211: LGTM! Metadata import handlers are correctly implemented.

The handlers properly:

  • Toggle between metadata import and manual entry modes
  • Handle file drop with appropriate Formik state updates
  • Clear files and reset related form state
  • Validate the form after state changes

The use of the formik object in dependency arrays is acceptable; Formik's methods are stable references and this pattern is commonly used in Formik forms.

218-266: LGTM! Form validation and submission logic is robust.

The form correctly:

  • Validates metadata file presence before submission when in import mode
  • Disables the Apply button based on form validity, dirty state, and file requirements
  • Shows field errors appropriately when touched or populated
  • Handles both new file uploads and existing metadata files

268-276: LGTM! Navigation correctly returns to the SAML IDP list.

The effect properly navigates back to ROUTES.SAML_IDP_LIST after a successful save, keeping users in the SAML management context. This aligns with the established pattern of returning to the respective listing screen rather than the dashboard.

Based on learnings: This follows the requirement that users should be redirected to the respective listing screen of the component.

513-528: LGTM! Form footer correctly implements button behavior.

The footer properly:

  • Shows/hides buttons based on viewOnly mode
  • Disables Cancel when form is not dirty (no unsaved changes)
  • Disables Apply when form is invalid or not dirty
  • Navigates back to the SAML IDP list, maintaining context

Based on learnings: The Back button correctly falls back to the SAML IDP listing screen, not the dashboard, keeping users in the SAML management context.

278-541: LGTM! Form rendering correctly adapts to metadata import mode.

The form JSX properly:

  • Conditionally renders either the metadata file upload or manual entry fields based on the toggle
  • Adjusts field requirements dynamically (fields are required only when not importing metadata)
  • Uses a unique key on GluuUploadFile to force remount when file changes
  • Displays validation errors inline with appropriate conditions
  • Disables all inputs in viewOnly mode
admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx (2)

567-569: LGTM!

Good use of displayName for debugging and memo() for performance optimization. The component is well-structured with proper TypeScript typing.

545-550: The validation schema at admin-ui/plugins/saml/helper/validations.ts lines 128-145 already enforces the file requirement through conditional validation when spMetaDataSourceType is 'file'. Additionally, the disableApply={!formik.isValid || !formik.dirty} button state prevents the Apply button from being clickable when the form is invalid, which blocks the toggle() call from executing with validation errors.

The custom validation in handleFormSubmit (lines 261-265) is redundant to the schema validation but doesn't create a security issue since the button itself prevents invalid submissions. No changes required.

coderabbitai[bot]
coderabbitai bot reviewed Dec 11, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 3

♻️ Duplicate comments (4)
admin-ui/plugins/saml/redux/sagas/SamlSaga.ts (4)

141-163: Missing toggleSavedFormFlag dispatch in putSamlProperties saga.

This saga is missing the toggleSavedFormFlag dispatch that other mutation sagas include. Other sagas like postWebsiteSsoServiceProvider, updateSamlIdentity, etc., dispatch toggleSavedFormFlag(true) on success and toggleSavedFormFlag(false) in catch blocks. This inconsistency could cause form dirty-state issues.

     yield put(putSamlPropertiesResponse(data))
     yield call(postUserAction, audit)
     yield put(updateToast(true, 'success', 'Data updated successfully'))
+    yield put(toggleSavedFormFlag(true))
     return data
   } catch (e) {
     yield put(putSamlPropertiesResponse(null))
+    yield put(toggleSavedFormFlag(false))
     const error = e instanceof Error ? e : new Error(String(e))

211-211: Remove debug console.log statements from error handlers.

These debug statements should be removed before production deployment as they can expose sensitive error details in the browser console.

   } catch (e) {
-    console.log('Error: ', e)
     yield put(toggleSavedFormFlag(false))

Apply similar removal at lines 249, 317, and 355.

Also applies to: 249-249, 317-317, 355-355

417-455: Replace hardcoded action strings with typed action creators.

All watcher functions use hardcoded string literals (e.g., 'idpSaml/getSamlConfiguration'). This bypasses TypeScript's type safety and will silently fail at runtime if action names are renamed in the slice.

Import action creators from the slice and use their .type property:

+import {
+  getSamlConfiguration,
+  getSamlIdentities,
+  putSamlProperties as putSamlPropertiesAction,
+  createSamlIdentity,
+  deleteSamlIdentity as deleteSamlIdentityAction,
+  updateSamlIdentity as updateSamlIdentityAction,
+  getWebsiteSsoServiceProvider,
+  createWebsiteSsoServiceProvider,
+  updateWebsiteSsoServiceProvider as updateWebsiteSsoServiceProviderAction,
+  deleteWebsiteSsoServiceProvider as deleteWebsiteSsoServiceProviderAction,
+} from '../features/SamlSlice'

 export function* watchGetSamlConfig(): Generator {
-  yield takeEvery('idpSaml/getSamlConfiguration', getSamlConfigSaga)
+  yield takeEvery(getSamlConfiguration.type, getSamlConfigSaga)
 }

395-402: Consider simplifying error message extraction.

The nested optional chaining with type assertions is verbose. A simpler approach improves readability.

 function* errorToast({ error }: { error: Error }): Generator<PutEffect, void, void> {
+  const errorResponse = (error as any)?.response?.data
   const errorMessage =
-    (error as { response?: { data?: { description?: string; message?: string } } })?.response?.data
-      ?.description ||
-    (error as { response?: { data?: { message?: string } } })?.response?.data?.message ||
-    error.message
+    errorResponse?.description || errorResponse?.message || error.message
   yield put(updateToast(true, 'error', errorMessage))
 }
📜 Review details

Configuration used: CodeRabbit UI

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 283c908 and 263421c.

📒 Files selected for processing (4)
  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx (14 hunks)
  • admin-ui/plugins/saml/redux/sagas/SamlSaga.ts (1 hunks)
  • admin-ui/plugins/saml/types/index.ts (1 hunks)
  • admin-ui/plugins/saml/types/saga.ts (1 hunks)
🧰 Additional context used
🧠 Learnings (6)
📓 Common learnings 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2404
File: admin-ui/app/routes/Apps/Gluu/Gluuformfooter.tsx:70-77
Timestamp: 2025-11-03T08:47:33.943Z
Learning: In the admin-ui forms (Gluuformfooter component), the Back button should always navigate to '/home/dashboard' rather than using history-based navigation (navigate(-1)), as clarified by faisalsiddique4400 in PR #2404.

Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2418
File: admin-ui/plugins/user-management/components/UserForm.tsx:290-297
Timestamp: 2025-11-06T08:23:20.948Z
Learning: In the UserForm component (admin-ui/plugins/user-management/components/UserForm.tsx), the Back button should fall back to '/user/usersmanagement' when browser history is unavailable, not '/home/dashboard', as this keeps users in the user management context. This aligns with the new requirement that users should be redirected to the respective listing screen of the component rather than the dashboard.
📚 Learning: 2025-11-03T08:47:33.943Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2404
File: admin-ui/app/routes/Apps/Gluu/Gluuformfooter.tsx:70-77
Timestamp: 2025-11-03T08:47:33.943Z
Learning: In the admin-ui forms (Gluuformfooter component), the Back button should always navigate to '/home/dashboard' rather than using history-based navigation (navigate(-1)), as clarified by faisalsiddique4400 in PR #2404.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx
  • admin-ui/plugins/saml/types/saga.ts
📚 Learning: 2025-11-06T08:23:20.948Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2418
File: admin-ui/plugins/user-management/components/UserForm.tsx:290-297
Timestamp: 2025-11-06T08:23:20.948Z
Learning: In the UserForm component (admin-ui/plugins/user-management/components/UserForm.tsx), the Back button should fall back to '/user/usersmanagement' when browser history is unavailable, not '/home/dashboard', as this keeps users in the user management context. This aligns with the new requirement that users should be redirected to the respective listing screen of the component rather than the dashboard.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx
  • admin-ui/plugins/saml/types/saga.ts
📚 Learning: 2025-11-05T19:57:35.143Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2415
File: admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx:148-153
Timestamp: 2025-11-05T19:57:35.143Z
Learning: In the SSA Add page (admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx), the Back button should fall back to '/auth-server/config/ssa' when browser history is unavailable, not '/home/dashboard', as this keeps users in the SSA management context.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx
  • admin-ui/plugins/saml/types/saga.ts
  • admin-ui/plugins/saml/redux/sagas/SamlSaga.ts
📚 Learning: 2025-12-05T18:24:41.713Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2498
File: admin-ui/plugins/saml/components/SamlConfigurationForm.tsx:30-30
Timestamp: 2025-12-05T18:24:41.713Z
Learning: In the GluuFederation/flex admin-ui codebase, `SetTitle` (imported from 'Utils/SetTitle') is a custom React hook that should be called at the component's top level, not inside `useEffect` or other hooks, because it internally manages side effects for setting page titles.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx
📚 Learning: 2025-11-10T14:18:58.310Z 
Learnt from: kdhttps
Repo: GluuFederation/flex PR: 2378
File: admin-ui/plugins/admin/components/Cedarling/CedarlingConfigPage.tsx:107-109
Timestamp: 2025-11-10T14:18:58.310Z
Learning: In the Cedarling configuration page (admin-ui/plugins/admin/components/Cedarling/CedarlingConfigPage.tsx), console.error calls should be kept in catch blocks when there are multiple operations in the try block, as they help print the whole error object with details for debugging unexpected errors.

Applied to files:

  • admin-ui/plugins/saml/redux/sagas/SamlSaga.ts
🧬 Code graph analysis (1)
admin-ui/plugins/saml/redux/sagas/SamlSaga.ts (1)
admin-ui/plugins/saml/types/state.ts (1)
  • SamlRootState (3-11)
🔇 Additional comments (8)
admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx (3)

51-65: LGTM! Well-structured props resolution with location state fallback.

The component correctly derives configs and viewOnly from either props or location state, providing flexibility for both direct prop passing and route-based navigation patterns. The memoization ensures stable references.

134-143: Good Formik configuration with proper validation settings.

The form is configured with enableReinitialize: true which correctly handles external data updates, and validation is properly enabled on both change and blur events. This aligns well with the PR's goal of dirty-state detection for Apply/Cancel button enablement.

538-553: Button behavior aligns with PR objectives and navigation learnings.

The GluuFormFooter configuration correctly implements:

  • Back button always enabled, navigating to ROUTES.SAML_SP_LIST (consistent with the learning that users should return to the respective listing screen)
  • Cancel disabled until form is dirty (!formik.dirty)
  • Apply disabled until form is both valid and dirty (!formik.isValid || !formik.dirty)

Based on learnings, this navigation pattern keeps users in the SAML context rather than redirecting to the dashboard.

admin-ui/plugins/saml/types/index.ts (1)

1-34: LGTM! Clean and well-organized type barrel file.

The barrel file properly centralizes all SAML-related type exports, making imports cleaner for consumers. The separation into redux, state, formValues, and saga modules is logical.

admin-ui/plugins/saml/types/saga.ts (1)

18-31: Good use of generic action types to reduce duplication.

The SamlAction<TData> and SamlActionWithInum<TData> generics provide a clean, reusable pattern for saga payloads. This reduces boilerplate and ensures consistency across create/update/delete operations.

admin-ui/plugins/saml/redux/sagas/SamlSaga.ts (3)

65-80: Good solution for the double-cast type compatibility issue.

The toAdditionalPayload helper properly converts saga payloads to the AdditionalPayload type expected by audit functions, avoiding the unsafe as unknown as pattern. This addresses the structural mismatch between saga and audit types cleanly.

103-118: LGTM! Clean saga implementation with proper error handling.

The getSamlConfigSaga follows good patterns: initializes audit, uses the API factory, dispatches response actions, handles errors with proper type narrowing, and triggers appropriate error handling. This pattern is consistent across the file.

381-381: No changes needed. The empty object {} is a valid GetSamlIdentityProviderPayload since all properties (inum, limit, pattern, startIndex) are optional. The saga correctly handles this payload and passes it to the API endpoint.

Likely an incorrect or invalid review comment.

coderabbitai[bot]
coderabbitai bot reviewed Dec 11, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 1

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)
admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx (1)

223-233: Apply currently navigates away after save; verify against PR behavior

The useEffect navigates to ROUTES.SAML_SP_LIST whenever savedForm becomes true, which means a successful Apply will return the user to the SAML SP list instead of keeping them on the current page. That appears to conflict with the PR summary stating “Apply: saves changes without leaving the page”.

If the new global behavior really requires Apply to stay on the form, consider either:

  • Removing the navigateBack(ROUTES.SAML_SP_LIST) from this effect, or
  • Gating navigation behind an explicit “Save & Back” path rather than any save.

Please confirm expected UX for SAML SP forms and adjust accordingly.

📜 Review details

Configuration used: CodeRabbit UI

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 263421c and f34f45a.

📒 Files selected for processing (1)
  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx (14 hunks)
🧰 Additional context used
🧠 Learnings (5)
📓 Common learnings 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2404
File: admin-ui/app/routes/Apps/Gluu/Gluuformfooter.tsx:70-77
Timestamp: 2025-11-03T08:47:33.943Z
Learning: In the admin-ui forms (Gluuformfooter component), the Back button should always navigate to '/home/dashboard' rather than using history-based navigation (navigate(-1)), as clarified by faisalsiddique4400 in PR #2404.
📚 Learning: 2025-11-03T08:47:33.943Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2404
File: admin-ui/app/routes/Apps/Gluu/Gluuformfooter.tsx:70-77
Timestamp: 2025-11-03T08:47:33.943Z
Learning: In the admin-ui forms (Gluuformfooter component), the Back button should always navigate to '/home/dashboard' rather than using history-based navigation (navigate(-1)), as clarified by faisalsiddique4400 in PR #2404.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx
📚 Learning: 2025-11-06T08:23:20.948Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2418
File: admin-ui/plugins/user-management/components/UserForm.tsx:290-297
Timestamp: 2025-11-06T08:23:20.948Z
Learning: In the UserForm component (admin-ui/plugins/user-management/components/UserForm.tsx), the Back button should fall back to '/user/usersmanagement' when browser history is unavailable, not '/home/dashboard', as this keeps users in the user management context. This aligns with the new requirement that users should be redirected to the respective listing screen of the component rather than the dashboard.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx
📚 Learning: 2025-11-05T19:57:35.143Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2415
File: admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx:148-153
Timestamp: 2025-11-05T19:57:35.143Z
Learning: In the SSA Add page (admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx), the Back button should fall back to '/auth-server/config/ssa' when browser history is unavailable, not '/home/dashboard', as this keeps users in the SSA management context.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx
📚 Learning: 2025-12-05T18:24:41.713Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2498
File: admin-ui/plugins/saml/components/SamlConfigurationForm.tsx:30-30
Timestamp: 2025-12-05T18:24:41.713Z
Learning: In the GluuFederation/flex admin-ui codebase, `SetTitle` (imported from 'Utils/SetTitle') is a custom React hook that should be called at the component's top level, not inside `useEffect` or other hooks, because it internally manages side effects for setting page titles.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx
🧬 Code graph analysis (1)
admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx (6)
admin-ui/plugins/saml/types/redux.ts (1)
  • WebsiteSsoServiceProvider (62-96)
admin-ui/plugins/saml/types/formValues.ts (2)
  • LocationState (8-11)
  • WebsiteSsoServiceProviderFormValues (77-112)
admin-ui/plugins/saml/helper/index.ts (4)
  • websiteSsoServiceProviderValidationSchema (6-6)
  • WebsiteSsoServiceProviderFormValues (10-10)
  • transformToWebsiteSsoServiceProviderFormValues (15-15)
  • buildWebsiteSsoServiceProviderPayload (19-19)
admin-ui/plugins/saml/helper/validations.ts (2)
  • websiteSsoServiceProviderValidationSchema (120-159)
  • WebsiteSsoServiceProviderFormValues (14-14)
admin-ui/plugins/saml/helper/utils.ts (2)
  • transformToWebsiteSsoServiceProviderFormValues (89-134)
  • buildWebsiteSsoServiceProviderPayload (326-375)
admin-ui/plugins/saml/redux/sagas/SamlSaga.ts (1)
  • updateWebsiteSsoServiceProvider (222-258)
🔇 Additional comments (10)
admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx (10)

51-79: Configs/viewOnly derivation and title/SetTitle usage look correct

Deriving configs/viewOnly from props or location.state via useMemo and calling SetTitle(title) at the top level matches the intended routing/title behavior and the SetTitle usage learning. No issues here.

Based on learnings, this aligns with previous navigation/title conventions.

92-123: Attributes loading and default scope mapping are robust

The useGetAttributes call with a hard limit, the attributesList mapping plus type guard, and defaultScopeValue based on configs.releasedAttributes are defensive and type-safe. The validation schema memoization is also appropriate.

129-144: Formik initialization with transformed initial values is appropriate

Using transformToWebsiteSsoServiceProviderFormValues(configs) with enableReinitialize and an external validation schema cleanly ties Redux/config state into the form. The submit handler delegating to toggle() to open the commit dialog keeps concerns separated.

145-165: Scope value derivation and stable key for released attributes look good

scopeFieldValue correctly derives display values from formik.values.releasedAttributes and falls back to Redux/default scopes when needed. The new releasedAttributesKey based on configs.inum is a much more stable key than the previous JSON.stringify strategy and avoids unnecessary remounts.

166-204: FormData + payload construction logic is sound

Stripping out metaDataFileImportedFlag, appending metaDataFile only when present, and delegating object creation to buildWebsiteSsoServiceProviderPayload before appending as a JSON blob matches the helper contracts and SAML saga expectations. The create vs update branching on configs also looks correct.

208-221: Commit dialog submit flow and scope persistence are consistent

submitForm cleanly bridges the commit dialog back into handleSubmit using current formik.values, and saveSelectedScopes persisting selections via setClientSelectedScopes keeps Redux in sync with the typeahead. This is straightforward and coherent.

349-375: Typeahead configuration and attribute error handling look solid

Using key={releasedAttributesKey}, wiring value/defaultSelected to scopeFieldValue, and passing isLoading, placeholder, and disabled={viewOnly || attributesLoading} give good UX. Rendering GluuStatusMessage only when attributesError is truthy is also appropriate.

397-429: Metadata upload UI is consistent with form state

The GluuUploadFile key, fileName derivation combining metaDataFile and configs.spMetaDataFN, showClearButton={!viewOnly}, and conditional GluuStatusMessage based on formik.errors.metaDataFile && formik.touched.metaDataFile all line up with the form state and validation rules. Once the submit guard is fixed as noted above, this section should behave correctly for both new and existing SPs.

545-558: Footer props match uniform Back/Cancel/Apply semantics (navigation caveat noted above)

GluuFormFooter is configured as:

  • Back always visible, wired to navigateBack(ROUTES.SAML_SP_LIST), matching the “back to listing screen” pattern from other modules.
  • Cancel/Apply hidden in view-only mode, and disabled based on formik.dirty / formik.isValid, which matches the PR’s dirty-state requirements.
  • applyButtonType="button" ensures Apply doesn’t submit the form directly and instead goes through the commit dialog.

This footer wiring looks correct; just ensure the savedForm effect behavior matches the intended Apply navigation, as raised earlier.

Based on learnings, this aligns with the module-specific listing fallback for Back.

574-576: Memoized default export with displayName is appropriate

Setting displayName and exporting memo(WebsiteSsoServiceProviderForm) is a good pattern for debugging and avoiding unnecessary re-renders of this fairly heavy form component.

coderabbitai[bot]
coderabbitai bot reviewed Dec 11, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 1

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)
admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx (1)

438-545: Manual metadata fields are correctly conditioned on source type

The manual SAML metadata fields are only rendered when spMetaDataSourceType === 'manual', with required tied to that same condition and viewOnly respected across inputs. Error bindings and doc_entry tags look consistent with other SAML forms. The extra Boolean(spMetaDataSourceType === 'manual') checks on required are slightly redundant given the surrounding conditional block, but they don’t cause any issues and can stay for explicitness.

📜 Review details

Configuration used: CodeRabbit UI

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between f34f45a and afbaadb.

📒 Files selected for processing (1)
  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx (14 hunks)
🧰 Additional context used
🧠 Learnings (5)
📓 Common learnings 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2404
File: admin-ui/app/routes/Apps/Gluu/Gluuformfooter.tsx:70-77
Timestamp: 2025-11-03T08:47:33.943Z
Learning: In the admin-ui forms (Gluuformfooter component), the Back button should always navigate to '/home/dashboard' rather than using history-based navigation (navigate(-1)), as clarified by faisalsiddique4400 in PR #2404.
📚 Learning: 2025-11-03T08:47:33.943Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2404
File: admin-ui/app/routes/Apps/Gluu/Gluuformfooter.tsx:70-77
Timestamp: 2025-11-03T08:47:33.943Z
Learning: In the admin-ui forms (Gluuformfooter component), the Back button should always navigate to '/home/dashboard' rather than using history-based navigation (navigate(-1)), as clarified by faisalsiddique4400 in PR #2404.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx
📚 Learning: 2025-11-06T08:23:20.948Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2418
File: admin-ui/plugins/user-management/components/UserForm.tsx:290-297
Timestamp: 2025-11-06T08:23:20.948Z
Learning: In the UserForm component (admin-ui/plugins/user-management/components/UserForm.tsx), the Back button should fall back to '/user/usersmanagement' when browser history is unavailable, not '/home/dashboard', as this keeps users in the user management context. This aligns with the new requirement that users should be redirected to the respective listing screen of the component rather than the dashboard.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx
📚 Learning: 2025-11-05T19:57:35.143Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2415
File: admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx:148-153
Timestamp: 2025-11-05T19:57:35.143Z
Learning: In the SSA Add page (admin-ui/plugins/auth-server/components/Ssa/SsaAddPage.tsx), the Back button should fall back to '/auth-server/config/ssa' when browser history is unavailable, not '/home/dashboard', as this keeps users in the SSA management context.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx
📚 Learning: 2025-12-05T18:24:41.713Z 
Learnt from: faisalsiddique4400
Repo: GluuFederation/flex PR: 2498
File: admin-ui/plugins/saml/components/SamlConfigurationForm.tsx:30-30
Timestamp: 2025-12-05T18:24:41.713Z
Learning: In the GluuFederation/flex admin-ui codebase, `SetTitle` (imported from 'Utils/SetTitle') is a custom React hook that should be called at the component's top level, not inside `useEffect` or other hooks, because it internally manages side effects for setting page titles.

Applied to files:

  • admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx
🔇 Additional comments (6)
admin-ui/plugins/saml/components/WebsiteSsoServiceProviderForm.tsx (6)

51-82: Location-derived configs, viewOnly, and title handling are clean and consistent

The precedence propsConfigs → location.state.rowData → null and propsViewOnly → location.state.viewOnly → false is clear and keeps the component reusable from routes and direct usage. The title view/edit/create branching plus SetTitle(title) at the top level is also in line with the documented SetTitle usage pattern. Based on learnings, this is the intended way to manage titles from within admin‑ui forms.

80-82: SAML Redux wiring and navigation on save look correct

Using SamlRootState for SAML slice selectors and useAppNavigation().navigateBack(ROUTES.SAML_SP_LIST) for post‑save navigation matches the newer pattern of returning users to the relevant listing screen instead of a generic dashboard. The cleanup that resets savedForm and clears selectedClientScopes on unmount prevents stale flags and scope selections from leaking into subsequent visits. Based on learnings, the fallback to the SAML SP list here is aligned with the updated Back behavior across domain‑specific sections.

Also applies to: 118-123, 223-233

123-144: Formik lifecycle, payload construction, and metadata guard align with SAML flows

The Formik setup with websiteSsoServiceProviderValidationSchema, enableReinitialize: true, and the initialValues derived from transformToWebsiteSsoServiceProviderFormValues(configs) looks correct for both create and edit scenarios. handleSubmit’s construction of a FormData payload (optional metaDataFile + JSON blob from buildWebsiteSsoServiceProviderPayload and conditional create/update actions) matches the backend expectations and keeps the TS surface type‑safe. The updated handleFormSubmit guard that only blocks when spMetaDataSourceType === 'file' and no metaDataFile, metaDataFileImportedFlag, or spMetaDataFN is present addresses the earlier edge case where edits with an already‑imported metadata file were incorrectly blocked. With GluuFormFooter enabling Apply only when formik.dirty && formik.isValid, and the confirm dialog delegating to submitForm → handleSubmit, the flow should prevent submitting genuinely missing metadata for the file case while still allowing valid edits. Please just double‑check that the validation schema’s rules for the file/metadata fields stay in sync with this guard so the UI/validation behavior doesn’t diverge over time.

Also applies to: 166-215, 264-281, 565-570

234-263: File upload handlers correctly manage metadata flags and validation state

handleDrop and handleClearFiles update both metaDataFileImportedFlag and metaDataFile while adjusting touched for metaDataFile, and they bail out cleanly in viewOnly mode. The GluuUploadFile instance’s key (based on current file name, existing spMetaDataFN, and the imported flag) plus the fileName and showClearButton props give predictable behavior for switching between newly uploaded and previously imported metadata. This all fits well with the guard in handleFormSubmit and the form‑level validation.

Also applies to: 401-437, 407-423

549-563: GluuFormFooter wiring matches the new Back/Cancel/Apply semantics

GluuFormFooter is configured so:

  • Back is always shown and enabled, and routes via navigateBack(ROUTES.SAML_SP_LIST) to keep the user in the SAML context.
  • Cancel and Apply are hidden in viewOnly mode.
  • Cancel calls handleCancel, which resets the form to initialValues, and is disabled until the form is dirty.
  • Apply is a plain button (applyButtonType="button") that just opens the commit dialog and is disabled unless the form is both dirty and valid.

This matches the PR objective of consistent Back/Cancel/Apply behavior across forms and the newer pattern of falling back to the relevant listing page rather than a global dashboard. Based on learnings, this Back behavior is aligned with how other admin‑ui sections were updated.

Also applies to: 260-262

578-580: memo export and displayName improve rendering and DevTools clarity

Setting displayName and exporting a memoized WebsiteSsoServiceProviderForm is a nice touch for both performance and debugging, especially given the number of props and hooks in play.

@sonarqubecloud
Copy link

sonarqubecloud bot commented Dec 11, 2025

Quality Gate Passed Quality Gate passed for 'Gluu Admin UI'

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@moabu moabu merged commit b473b63 into main Dec 11, 2025
9 checks passed
@moabu moabu deleted the admin-ui-issue-2361-saml-1 branch December 11, 2025 10:50
@coderabbitai coderabbitai bot mentioned this pull request Dec 11, 2025
Open
@coderabbitai coderabbitai bot mentioned this pull request Jan 6, 2026
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] left review comments

@syntrydy syntrydy syntrydy approved these changes

@duttarnab duttarnab duttarnab approved these changes

@moabu moabu moabu approved these changes

Assignees

No one assigned

Labels

comp-admin-ui Component affected by issue or PR kind-feature Issue or PR is a new feature request

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@faisalsiddique4400 @syntrydy @duttarnab @moabu @mo-auto