import { useMutation, useQuery } from "@tanstack/react-query"; import type { AxiosError } from "axios"; import { BookOpenText, Filter, Plus, Search, X } from "lucide-react"; import { useEffect, useMemo, useState } from "react"; import { useAuth } from "react-oidc-context"; import { Link, useNavigate } from "react-router-dom"; import { SortableTableHead, sortableTableHeadBaseClassName, sortableTableHeaderClassName, } from "../../../../common/core/components/sort"; import { type SortConfig, type SortResolverMap, sortItems, toggleSort, } from "../../../../common/core/utils"; import { commonTableShellClass, commonTableViewportClass, } from "../../../../common/ui/table"; import { ForbiddenMessage } from "../../components/common/ForbiddenMessage"; import { Avatar, AvatarFallback, AvatarImage, } from "../../components/ui/avatar"; import { Badge } from "../../components/ui/badge"; import { Button } from "../../components/ui/button"; import { Card, CardContent, CardDescription, CardHeader, CardTitle, } from "../../components/ui/card"; import { Input } from "../../components/ui/input"; import { Label } from "../../components/ui/label"; import { Separator } from "../../components/ui/separator"; import { Table, TableBody, TableCell, TableHead, TableHeader, TableRow, } from "../../components/ui/table"; import { Textarea } from "../../components/ui/textarea"; import { type ClientSummary, fetchClients, fetchDevStats, fetchDeveloperRequestStatus, fetchMyTenants, requestDeveloperAccess, } from "../../lib/devApi"; import { t } from "../../lib/i18n"; import { resolveProfileRole } from "../../lib/role"; import { cn } from "../../lib/utils"; import { fetchMe } from "../auth/authApi"; import { ClientLogo } from "./components/ClientLogo"; type ClientSortKey = "application" | "id" | "type" | "status" | "createdAt"; function ClientsPage() { const navigate = useNavigate(); const auth = useAuth(); const hasAccessToken = Boolean(auth.user?.access_token); const userProfile = auth.user?.profile as Record | undefined; const role = resolveProfileRole(userProfile); const tenantId = userProfile?.tenant_id as string | undefined; const companyCode = userProfile?.companyCode as string | undefined; const { data, isLoading: isLoadingClients, error: clientError, } = useQuery({ queryKey: ["clients"], queryFn: fetchClients, enabled: hasAccessToken, }); const { data: statsData, isLoading: isLoadingStats } = useQuery({ queryKey: ["dev-stats"], queryFn: fetchDevStats, enabled: hasAccessToken, }); const { data: requestStatus, isLoading: isLoadingRequest, refetch: refetchRequest, } = useQuery({ queryKey: ["developer-request", tenantId], queryFn: () => fetchDeveloperRequestStatus(tenantId), enabled: hasAccessToken && role === "user", }); const { data: tenants } = useQuery({ queryKey: ["myTenants"], queryFn: fetchMyTenants, enabled: hasAccessToken, }); const { data: me } = useQuery({ queryKey: ["userMe"], queryFn: fetchMe, enabled: hasAccessToken, }); const canCreateClient = (role !== "user" && role !== "tenant_member") || requestStatus?.status === "approved"; const isDeveloperRequestPending = requestStatus?.status === "pending"; const canRequestDeveloperAccess = role === "user" && !isLoadingRequest && !canCreateClient && !isDeveloperRequestPending; const [searchQuery, setSearchQuery] = useState(""); const [typeFilter, setTypeFilter] = useState("all"); const [statusFilter, setStatusFilter] = useState("all"); const [isAdvancedFilterOpen, setIsAdvancedFilterOpen] = useState(false); const [isRequestModalOpen, setIsRequestModalOpen] = useState(false); const [sortConfig, setSortConfig] = useState | null>({ key: "createdAt", direction: "desc", }); const clients = data?.items || []; const clientSortResolvers = useMemo< SortResolverMap >( () => ({ application: (client) => client.name || client.id, id: (client) => client.id, type: (client) => client.metadata?.headless_login_enabled ? "private-headless" : client.type, status: (client) => client.status, createdAt: (client) => client.createdAt ? new Date(client.createdAt) : null, }), [], ); const filteredClients = useMemo(() => { const nextClients = clients.filter((client) => { const matchesSearch = !searchQuery || client.name?.toLowerCase().includes(searchQuery.toLowerCase()) || client.id.toLowerCase().includes(searchQuery.toLowerCase()); const matchesType = typeFilter === "all" || client.type === typeFilter; const matchesStatus = statusFilter === "all" || client.status === statusFilter; return matchesSearch && matchesType && matchesStatus; }); return sortItems(nextClients, sortConfig, clientSortResolvers); }, [ clientSortResolvers, clients, searchQuery, sortConfig, statusFilter, typeFilter, ]); const totalClients = statsData?.total_clients ?? clients.length; const activeSessions = statsData?.active_sessions ?? 0; const authFailures = statsData?.auth_failures_24h ?? 0; const hasFilterResult = filteredClients.length > 0; const isFilteredOut = clients.length > 0 && !hasFilterResult; const currentTenant = tenants?.find( (tenant) => tenant.id === tenantId || tenant.slug === companyCode, ); const organizationName = currentTenant?.name || companyCode || ""; const profileName = me?.name || (userProfile?.name as string) || ""; const profileEmail = me?.email || (userProfile?.email as string) || ""; const profilePhone = me?.phone || (userProfile?.phone as string | undefined) || (userProfile?.phone_number as string | undefined) || ""; const profileRole = me?.role || role; const profileRoleLabel = t(`ui.admin.role.${profileRole}`, profileRole); type StatTone = "up" | "down" | "stable"; type StatItem = { labelKey: string; labelFallback: string; value: string; deltaKey: string; deltaFallback: string; tone: StatTone; }; const stats: StatItem[] = [ { labelKey: "ui.dev.clients.stats.total", labelFallback: "Total Applications", value: totalClients.toString(), deltaKey: "ui.dev.clients.stats.realtime", deltaFallback: "Realtime", tone: "up" as const, }, { labelKey: "ui.dev.clients.stats.active_sessions", labelFallback: "Active Sessions", value: activeSessions.toString(), deltaKey: "ui.dev.clients.stats.realtime", deltaFallback: "Realtime", tone: "up" as const, }, { labelKey: "ui.dev.clients.stats.auth_failures", labelFallback: "Auth Failures (24h)", value: authFailures.toString(), deltaKey: authFailures > 0 ? "ui.dev.clients.stats.alert" : "ui.dev.clients.stats.stable", deltaFallback: authFailures > 0 ? "Check Logs" : "Stable", tone: authFailures > 0 ? ("down" as const) : ("stable" as const), }, ]; const isLoading = isLoadingClients || isLoadingStats || isLoadingRequest; const requestSort = (key: ClientSortKey) => { setSortConfig((current) => toggleSort(current, key)); }; if (auth.isLoading || !hasAccessToken || isLoading) { return (
{t("msg.dev.clients.loading", "Loading clients...")}
); } if (clientError) { const axiosError = clientError as AxiosError<{ error?: string }>; if (axiosError.response?.status === 403) { return ; } const errMsg = axiosError.response?.data?.error ?? (clientError as Error).message; return (
{t("msg.dev.clients.load_error", "Error loading clients: {{error}}", { error: errMsg, })}
); } return (

{t("ui.dev.clients.registry.title", "RP registry")}

{t("ui.dev.clients.registry.subtitle", "연동 앱")} {t( "msg.dev.clients.registry.description", "OIDC 클라이언트, 인증 방식, 리다이렉트 URI, 비밀키 재발행을 감사 로그와 함께 관리합니다.", )}
{canCreateClient && (
)}
setSearchQuery(e.target.value)} />
{t( "ui.dev.clients.badge.tenant_selected", "테넌트: 선택됨", )} {t("ui.dev.clients.badge.dev_session", "DevFront 세션")}
{isAdvancedFilterOpen && (
{t("ui.dev.clients.filter.type_label", "Type:")}
{t("ui.dev.clients.consents.status_label", "Status:")}
)}
{stats.map((item) => ( {t(item.labelKey, item.labelFallback)}
{item.value} {t(item.deltaKey, item.deltaFallback)}
))}
{t("ui.dev.clients.list.title", "클라이언트 목록")} {t( "msg.dev.clients.showing", "총 {{shown}}개의 애플리케이션이 등록되어 있습니다.", { shown: totalClients }, )}
{canCreateClient && (
)}
{t("ui.dev.clients.table.actions", "액션")} {!hasFilterResult && (

{isFilteredOut ? t( "msg.dev.clients.empty_filtered", "조건에 맞는 연동 앱이 없습니다.", ) : canCreateClient ? t( "msg.dev.clients.empty_can_create", "아직 등록된 연동 앱이 없습니다.", ) : isDeveloperRequestPending ? t( "msg.dev.clients.empty_pending", "개발자 권한 신청을 검토 중입니다.", ) : t( "msg.dev.clients.empty", "조회 가능한 RP가 없습니다.", )}

{isFilteredOut ? t( "msg.dev.clients.empty_filtered_detail", "검색어나 필터 조건을 변경해 보세요.", ) : canCreateClient ? t( "msg.dev.clients.empty_can_create_detail", "연동 앱 추가 버튼으로 새 RP를 생성하면 이 목록에 표시됩니다.", ) : isDeveloperRequestPending ? t( "msg.dev.clients.empty_pending_detail", "super admin이 승인하면 연동 앱을 추가할 수 있습니다.", ) : t( "msg.dev.clients.empty_detail", "RP 관계가 부여되면 이 목록에 해당 RP가 표시됩니다.", )}

{!isFilteredOut && canCreateClient && ( )} {!isFilteredOut && canRequestDeveloperAccess && ( )}
)} {filteredClients.map((client) => (

{client.name || t("ui.dev.clients.untitled", "Untitled")}

{t( "ui.dev.clients.tenant_scoped", "Tenant-scoped", )}

{client.id}
{client.metadata?.headless_login_enabled ? t( "ui.dev.clients.type.private_headless", "Server side App (Headless Login)", ) : client.type === "private" ? t( "ui.dev.clients.type.private", "Server side App", ) : t("ui.dev.clients.type.pkce", "PKCE")}
{client.status === "active" ? t("ui.common.status.active", "Active") : t("ui.common.status.inactive", "Inactive")} {client.createdAt ? new Date(client.createdAt).toLocaleDateString() : "-"}
))}
{t( "ui.dev.clients.help.title", "Need help with OIDC configuration?", )} {t( "msg.dev.clients.help.subtitle", "Developer guides for Confidential/Public clients, redirect URIs, and auth methods.", )}

{t("ui.dev.clients.help.docs_title", "Docs & Examples")}

{t( "msg.dev.clients.help.docs_body", "Includes PKCE, client_secret_basic, redirect URI validation tips.", )}

{t("ui.dev.clients.owner.title", "Owner")} {t("ui.dev.clients.owner.subtitle", "Tenant admin on-call")}
AR

{t("ui.dev.clients.owner.name", "AI Admin Bot")}

{t("ui.dev.clients.owner.email", "admin@brsw.kr")}

{t("ui.dev.clients.owner.role", "Role: Tenant Admin")} {t("ui.dev.clients.owner.scope", "Scope: TENANT-12")}
setIsRequestModalOpen(false)} onSuccess={() => { refetchRequest(); setIsRequestModalOpen(false); }} tenantId={tenantId || ""} initialName={profileName} initialOrg={organizationName} initialEmail={profileEmail} initialPhone={profilePhone} initialRole={profileRoleLabel} />
); } interface RequestAccessModalProps { isOpen: boolean; onClose: () => void; onSuccess: () => void; tenantId: string; initialName: string; initialOrg: string; initialEmail: string; initialPhone: string; initialRole: string; } function RequestAccessModal({ isOpen, onClose, onSuccess, tenantId, initialName, initialOrg, initialEmail, initialPhone, initialRole, }: RequestAccessModalProps) { const [name, setName] = useState(initialName); const [organization, setOrganization] = useState(initialOrg); const [reason, setReason] = useState(""); useEffect(() => { if (!isOpen) return; setName(initialName); setOrganization(initialOrg); }, [initialName, initialOrg, isOpen]); const mutation = useMutation({ mutationFn: requestDeveloperAccess, onSuccess: () => { onSuccess(); }, }); const handleSubmit = (e: React.FormEvent) => { e.preventDefault(); mutation.mutate({ name, organization, reason, tenantId, }); }; if (!isOpen) return null; return (

{t("ui.dev.request.modal.title", "개발자 등록 신청")}

{t( "msg.dev.request.modal.desc", "신청 사유를 입력해 주세요. 관리자 확인 후 승인됩니다.", )}