Merge branch 'redhat-3.16' into cherry-pick-9879-to-redhat-3.16

2026-01-26 06:21:37 +03:00 · 2025-12-03 23:22:05 -05:00
parent fa439aa1d9 ddf90542f6
commit 0db6388d60
2 changed files with 67 additions and 2 deletions
--- a/web/cypress/e2e/account-settings.cy.ts
+++ b/web/cypress/e2e/account-settings.cy.ts
@@ -1090,6 +1090,50 @@ describe('Account Settings Page', () => {
    cy.url().should('include', 'tab=Settings');
  });

+  it('CLI Configuration - Password Not Set Alert (PROJQUAY-9898)', () => {
+    // Mock config with OIDC and Database authentication
+    cy.fixture('config.json').then((config) => {
+      config.config.AUTHENTICATION_TYPE = 'Database';
+      config.external_login = [
+        {
+          id: 'oidc',
+          title: 'OIDC Login',
+          icon: 'oidc-icon',
+        },
+      ];
+      cy.intercept('GET', '/config', config).as('getConfigWithOIDC');
+    });
+
+    // Mock user with has_password_set: false (simulates OIDC user without password)
+    cy.intercept('GET', '/api/v1/user', (req) => {
+      req.continue((res) => {
+        res.body.has_password_set = false;
+      });
+    }).as('getUserNoPassword');
+
+    cy.visit('/organization/user1?tab=Settings');
+    cy.wait('@getConfigWithOIDC');
+    cy.wait('@getUserNoPassword');
+
+    // Navigate to CLI configuration tab
+    cy.contains('CLI configuration').click();
+
+    // Verify info alert is displayed
+    cy.contains('Password not set').should('exist');
+    cy.contains('A password must be set on your account').should('exist');
+
+    // Verify "Set password" button exists and works
+    cy.get('[data-testid="set-password-button"]').should('exist').click();
+
+    // Verify modal opens
+    cy.get('[data-testid="change-password-modal"]').should('be.visible');
+    cy.contains('Change Password').should('exist');
+
+    // Close modal
+    cy.contains('button', 'Cancel').click();
+    cy.get('[data-testid="change-password-modal"]').should('not.exist');
+  });
+
  it('normalizes lowercase "settings" to correct tab', () => {
    cy.visit('/user/user1?tab=settings');
    cy.wait('@getConfig');
--- a/web/src/routes/OrganizationsList/Organization/Tabs/Settings/CLIConfiguration.tsx
+++ b/web/src/routes/OrganizationsList/Organization/Tabs/Settings/CLIConfiguration.tsx
@@ -24,6 +24,7 @@ import {GenerateEncryptedPassword} from 'src/components/modals/GenerateEncrypted
 import CreateApplicationTokenModal from 'src/components/modals/CreateApplicationTokenModal';
 import RevokeTokenModal from 'src/components/modals/RevokeTokenModal';
 import CredentialsModal from 'src/components/modals/CredentialsModal';
+import ChangePasswordModal from 'src/components/modals/ChangePasswordModal';
 import {
  useFetchApplicationTokens,
  useApplicationToken,
@@ -41,6 +42,7 @@ export const CliConfiguration = () => {
  const {user} = useCurrentUser();
  const [encryptedPasswordModalOpen, toggleEncryptedPasswordModal] =
    useState(false);
+  const [changePasswordModalOpen, setChangePasswordModalOpen] = useState(false);
  const [createTokenModalOpen, setCreateTokenModalOpen] = useState(false);
  const [revokeTokenModalOpen, setRevokeTokenModalOpen] = useState(false);
  const [tokenToRevoke, setTokenToRevoke] = useState<IApplicationToken | null>(
@@ -114,6 +116,12 @@ export const CliConfiguration = () => {
  const showAppTokens = quayConfig?.features?.APP_SPECIFIC_TOKENS === true;
  const requireEncryptedAuth =
    quayConfig?.features?.REQUIRE_ENCRYPTED_BASIC_AUTH === true;
+  const hasOIDC =
+    quayConfig?.external_login && quayConfig.external_login.length > 0;
+  const isAuthTypeDatabase =
+    quayConfig?.config?.AUTHENTICATION_TYPE === 'Database';
+  const shouldShowPasswordPrompt =
+    !user?.has_password_set && hasOIDC && isAuthTypeDatabase;

  return (
    <Form id="cli-configuration-form" width="70%">
@@ -146,7 +154,7 @@ export const CliConfiguration = () => {
            </FlexItem>
          </Flex>
          <Flex width={'70%'}>
-            {user?.has_password_set ? (
+            {!shouldShowPasswordPrompt ? (
              <Button
                variant="secondary"
                onClick={() => toggleEncryptedPasswordModal(true)}
@@ -157,7 +165,15 @@ export const CliConfiguration = () => {
            ) : (
              <Alert variant="info" isInline title="Password not set">
                A password must be set on your account before generating an
-                encrypted version.
+                encrypted version.{' '}
+                <Button
+                  variant="link"
+                  isInline
+                  onClick={() => setChangePasswordModalOpen(true)}
+                  data-testid="set-password-button"
+                >
+                  Set password
+                </Button>
              </Alert>
            )}
          </Flex>
@@ -358,6 +374,11 @@ export const CliConfiguration = () => {
        token={tokenToRevoke}
      />

+      <ChangePasswordModal
+        isOpen={changePasswordModalOpen}
+        onClose={() => setChangePasswordModalOpen(false)}
+      />
+
      {/* View Token Credentials Modal */}
      {viewTokenModalOpen && (
        <>