"use client"; import { SettingsFormCell, SettingsFormGrid, SettingsSection, SettingsSectionBody, SettingsSectionDescription, SettingsSectionHeader, SettingsSubsectionDescription, SettingsSubsectionHeader, SettingsSubsectionTitle, SettingsSectionTitle } from "@app/components/Settings"; import { TagInput } from "@app/components/tags/tag-input"; import { FormField } from "@app/components/ui/form"; import { useTranslations } from "next-intl"; import { useState } from "react"; import { type UseFormReturn, useWatch } from "react-hook-form"; import type { PolicyFormValues } from "."; import { EmailCredenza, HeaderAuthCredenza, PasscodeCredenza, PincodeCredenza } from "./PolicyAuthMethodCredenzas"; import { PolicyAuthMethodRow } from "./PolicyAuthMethodRow"; import { PolicyAuthSsoSection } from "./PolicyAuthSsoSection"; import type { PolicyAuthMethodId } from "./policy-auth-method-id"; import { getEmailWhitelistSummary, getHeaderAuthSummary, getPasscodeSummary, getPincodeSummary } from "./policy-auth-summaries"; export type PolicyAuthStackSectionCreateProps = { form: UseFormReturn; orgId: string; allIdps: { id: number; text: string }[]; allRoles: { id: string; text: string }[]; allUsers: { id: string; text: string }[]; emailEnabled: boolean; }; export function PolicyAuthStackSectionCreate({ form: parentForm, allIdps, allRoles, allUsers, emailEnabled }: PolicyAuthStackSectionCreateProps) { const t = useTranslations(); const [editingMethod, setEditingMethod] = useState(null); const [activeRolesTagIndex, setActiveRolesTagIndex] = useState< number | null >(null); const [activeUsersTagIndex, setActiveUsersTagIndex] = useState< number | null >(null); const sso = useWatch({ control: parentForm.control, name: "sso" }); const skipToIdpId = useWatch({ control: parentForm.control, name: "skipToIdpId" }); const password = useWatch({ control: parentForm.control, name: "password" }); const pincode = useWatch({ control: parentForm.control, name: "pincode" }); const headerAuth = useWatch({ control: parentForm.control, name: "headerAuth" }); const emailWhitelistEnabled = useWatch({ control: parentForm.control, name: "emailWhitelistEnabled" }); const emails = useWatch({ control: parentForm.control, name: "emails" }) ?? []; const passcodeActive = Boolean(password); const pinActive = Boolean(pincode); const headerAuthActive = Boolean(headerAuth); const closeCredenza = () => setEditingMethod(null); const handleToggle = ( method: PolicyAuthMethodId, active: boolean, onDisable: () => void, onEnable?: () => void ) => { if (active) { onEnable?.(); setEditingMethod(method); return; } onDisable(); setEditingMethod((current) => (current === method ? null : current)); }; return ( {t("policyAuthStackTitle")} {t("policyAuthStackDescription")} parentForm.setValue("sso", active) } skipToIdpId={skipToIdpId} onSkipToIdpChange={(id) => parentForm.setValue("skipToIdpId", id) } allIdps={allIdps} rolesEditor={ control={parentForm.control} name="roles" render={({ field }) => ( field.onChange(newRoles) } autocompleteOptions={allRoles} allowDuplicates={false} size="sm" /> )} /> } usersEditor={ control={parentForm.control} name="users" render={({ field }) => ( field.onChange(newUsers) } autocompleteOptions={allUsers} allowDuplicates={false} size="sm" /> )} /> } /> {t("policyAuthOtherMethodsTitle")} {t("policyAuthOtherMethodsDescription")}

setEditingMethod("pincode")} onToggle={(active) => handleToggle("pincode", active, () => parentForm.setValue("pincode", null) ) } /> setEditingMethod("passcode")} onToggle={(active) => handleToggle("passcode", active, () => parentForm.setValue("password", null) ) } /> setEditingMethod("email")} onToggle={(active) => handleToggle( "email", active, () => parentForm.setValue( "emailWhitelistEnabled", false ), () => parentForm.setValue( "emailWhitelistEnabled", true ) ) } disabled={!emailEnabled} /> setEditingMethod("headerAuth")} onToggle={(active) => handleToggle("headerAuth", active, () => parentForm.setValue("headerAuth", null) ) } />

!open && closeCredenza()} defaultPincode={pincode?.pincode ?? ""} onSave={(value) => { parentForm.setValue("pincode", { pincode: value }); }} /> !open && closeCredenza()} defaultPassword={password?.password ?? ""} onSave={(value) => { parentForm.setValue("password", { password: value }); }} /> !open && closeCredenza()} emailEnabled={emailEnabled} emails={emails} onSave={(value) => parentForm.setValue( "emails", value as PolicyFormValues["emails"] ) } /> !open && closeCredenza()} defaultValues={ headerAuth ? { user: headerAuth.user, password: headerAuth.password, extendedCompatibility: headerAuth.extendedCompatibility } : undefined } onSave={(value) => { parentForm.setValue("headerAuth", value); }} /> ); }