trinodb · mosabua · Apr 5, 2024 · Apr 3, 2024 · mosabua · Apr 3, 2024
diff --git a/docs/security.md b/docs/security.md
@@ -173,3 +173,24 @@ The LDAP config file should have the following contents:
   poolMinIdle: 0
   poolTestOnBorrow: true
 ```
+
+## Web page permissions
+
+By default, all pages are accessible to all roles.
+To limit page access, you can set page permissions by pages 
+and `_` as separator field.
+
+The following pages are available:
+- `dashboard`
+- `cluster`
+- `resource-group`
+- `selector`
+- `history`
+
+```yaml
+# admin/api can access all pages, while user can only access dashboard/history
+pagePermissions:
+  admin: 
+  user: dashboard_history 
+  api: 
+```
diff --git a/gateway-ha/src/main/java/io/trino/gateway/ha/resource/LoginResource.java b/gateway-ha/src/main/java/io/trino/gateway/ha/resource/LoginResource.java
@@ -107,7 +107,7 @@ public Response processRESTLogin()
     public Response restUserinfo(@Context SecurityContext securityContext)
     {
         LbPrincipal principal = (LbPrincipal) securityContext.getUserPrincipal();
-        List<String> roles = List.of(principal.getMemberOf().orElse("").split("_"));
+        List<String> roles = List.of(principal.getMemberOf().map(String::toLowerCase).orElse("").split("_"));
         List<String> pagePermissions;
         if (formAuthManager != null) {
             pagePermissions = formAuthManager.processPagePermissions(roles);

diff --git a/gateway-ha/src/main/resources/static/assets/index-05SkmtNI.js b/gateway-ha/src/main/resources/static/assets/index-05SkmtNI.js
diff --git a/gateway-ha/src/main/resources/static/assets/index-DjKQuKRX.js b/gateway-ha/src/main/resources/static/assets/index-DjKQuKRX.js
diff --git a/gateway-ha/src/main/resources/static/assets/index-LPSIbY_J.js b/gateway-ha/src/main/resources/static/assets/index-LPSIbY_J.js
diff --git a/gateway-ha/src/main/resources/static/assets/index-aIgX_lG9.js b/gateway-ha/src/main/resources/static/assets/index-aIgX_lG9.js
diff --git a/gateway-ha/src/main/resources/static/assets/index-uyYFzuRs.js b/gateway-ha/src/main/resources/static/assets/index-uyYFzuRs.js
diff --git a/gateway-ha/src/main/resources/static/assets/index-ytwn7x7b.js b/gateway-ha/src/main/resources/static/assets/index-ytwn7x7b.js
diff --git a/gateway-ha/src/main/resources/static/index.html b/gateway-ha/src/main/resources/static/index.html
@@ -5,7 +5,7 @@
     <link rel="icon" type="image/svg+xml" href="/logo.svg" />
     <meta name="viewport" content="width=device-width, initial-scale=1.0" />
     <title>Trino Gateway</title>
-    <script type="module" crossorigin src="/assets/index-d2L8ur2V.js"></script>
+    <script type="module" crossorigin src="/assets/index-DjKQuKRX.js"></script>
     <link rel="stylesheet" crossorigin href="/assets/index-WjKhXYTT.css">
   </head>
   <body>

diff --git a/webapp/src/App.tsx b/webapp/src/App.tsx
@@ -3,7 +3,8 @@ import { ErrorBoundary } from './components/error';
 import {
   HashRouter as Router,
   Routes,
-  Route
+  Route,
+  Navigate
 } from "react-router-dom";
 import { Login } from './components/login';
 import { RootLayout as Layout } from './components/layout';
@@ -48,6 +49,8 @@ function Screen() {
             {routers.flatMap(router => {
               return hasPagePermission(router, access) ? [<Route {...router.routeProps} key={router.itemKey} />] : [];
             })}
+            {/* Landing page */}
+            <Route path="/" element={<Navigate to="/dashboard" />} />
             {/* Default page */}
             <Route path="*" element={<Home />} key={"*"} />
           </Routes>

diff --git a/webapp/src/components/layout.tsx b/webapp/src/components/layout.tsx
@@ -26,7 +26,7 @@ export const RootLayout = (props: {
     }
   }, [location]);
 
-  const lonout = () => {
+  const logout = () => {
     logoutApi({}).then(data => {
       console.log(data);
       access.updateToken("");
@@ -56,7 +56,11 @@ export const RootLayout = (props: {
                   className={styles.navigationHeaderLogo}
                 />
               ),
-              text: "Trino Gateway",
+              text: (
+                <Link to="/" style={{ textDecoration: "none" }}>
+                  Trino Gateway
+                </Link>
+              ),
             }}
             footer={
               <div className={styles.dIV}>
@@ -80,7 +84,7 @@ export const RootLayout = (props: {
                   render={
                     <Dropdown.Menu>
                       <Dropdown.Item onClick={() => { setUserProfile(true) }}>{Locale.Menu.Header.PersonalCenter}</Dropdown.Item>
-                      <Dropdown.Item onClick={lonout}>{Locale.Menu.Header.Logout}</Dropdown.Item>
+                      <Dropdown.Item onClick={logout}>{Locale.Menu.Header.Logout}</Dropdown.Item>
                     </Dropdown.Menu>
                   }
                 >

diff --git a/webapp/src/router.tsx b/webapp/src/router.tsx
@@ -33,13 +33,13 @@ export type RouterItems = (RouterItem | SubRouterItem)[]
 
 export const routers: RouterItems = [
   {
-    itemKey: '',
+    itemKey: 'dashboard',
     text: Locale.Menu.Sider.Dashboard,
     icon: <IconIntro className={styles.icon} />,
     // Role.****
     roles: [],
     routeProps: {
-      path: '/',
+      path: '/dashboard',
       element: < Dashboard />
     },
   },