feat(console): add endpoints and credentials section to protected app details (#5367)

packages/console/src/pages/ApplicationDetails/ApplicationDetailsContent/EndpointsAndCredentials.tsx

@@ -140,7 +140,11 @@ function EndpointsAndCredentials({ app: { type, secret, id, isThirdParty }, oidc
       <FormField title="application_details.application_id">
         <CopyToClipboard isFullWidth value={id} variant="border" />
       </FormField>
-      {[ApplicationType.Traditional, ApplicationType.MachineToMachine].includes(type) && (
+      {[
+        ApplicationType.Traditional,
+        ApplicationType.MachineToMachine,
+        ApplicationType.Protected,
+      ].includes(type) && (
         <FormField title="application_details.application_secret">
           <CopyToClipboard hasVisibilityToggle isFullWidth value={secret} variant="border" />
         </FormField>

packages/console/src/pages/ApplicationDetails/ApplicationDetailsContent/ProtectedAppSettings/index.tsx

@@ -3,6 +3,7 @@ import {
   DomainStatus,
   type Application,
   type CustomDomain as CustomDomainType,
+  type SnakeCaseOidcConfig,
 } from '@logto/schemas';
 import { cond } from '@silverhand/essentials';
 import classNames from 'classnames';
@@ -17,6 +18,7 @@ import DomainStatusTag from '@/components/DomainStatusTag';
 import FormCard from '@/components/FormCard';
 import OpenExternalLink from '@/components/OpenExternalLink';
 import { isCloud, isDevFeaturesEnabled } from '@/consts/env';
+import { openIdProviderConfigPath } from '@/consts/oidc';
 import Button from '@/ds-components/Button';
 import CopyToClipboard from '@/ds-components/CopyToClipboard';
 import FormField from '@/ds-components/FormField';
@@ -25,11 +27,12 @@ import Spacer from '@/ds-components/Spacer';
 import TextInput from '@/ds-components/TextInput';
 import NumericInput from '@/ds-components/TextInput/NumericInput';
 import TextLink from '@/ds-components/TextLink';
-import useApi from '@/hooks/use-api';
+import useApi, { type RequestError } from '@/hooks/use-api';
 import useDocumentationUrl from '@/hooks/use-documentation-url';
 import AddDomainForm from '@/pages/TenantSettings/TenantDomainSettings/AddDomainForm';
 import CustomDomain from '@/pages/TenantSettings/TenantDomainSettings/CustomDomain';
 
+import EndpointsAndCredentials from '../EndpointsAndCredentials';
 import { type ApplicationForm } from '../utils';
 
 import * as styles from './index.module.scss';
@@ -44,6 +47,9 @@ const maxSessionDuration = 365; // 1 year
 function ProtectedAppSettings({ data }: Props) {
   const { t } = useTranslation(undefined, { keyPrefix: 'admin_console' });
   const { getDocumentationUrl } = useDocumentationUrl();
+  const { data: oidcConfig } = useSWRImmutable<SnakeCaseOidcConfig, RequestError>(
+    openIdProviderConfigPath
+  );
   const {
     data: customDomains = [],
     isLoading: isLoadingCustomDomain,
@@ -76,7 +82,7 @@ function ProtectedAppSettings({ data }: Props) {
     }
   }, [fields.length, setValue]);
 
-  if (!data.protectedAppMetadata) {
+  if (!data.protectedAppMetadata || !oidcConfig) {
     return null;
   }
 
@@ -241,7 +247,7 @@ function ProtectedAppSettings({ data }: Props) {
             ))}
           </div>
         </FormField>
-        <FormField title="application_details.implement_jwt_verification">
+        <FormField title="application_details.protect_origin_server">
           <InlineNotification severity="alert">
             <Trans
               components={{
@@ -256,11 +262,12 @@ function ProtectedAppSettings({ data }: Props) {
                 ),
               }}
             >
-              {t('application_details.implement_jwt_verification_description')}
+              {t('application_details.protect_origin_server_description')}
             </Trans>
           </InlineNotification>
         </FormField>
       </FormCard>
+      <EndpointsAndCredentials app={data} oidcConfig={oidcConfig} />
       <FormCard title="application_details.session">
         <FormField title="application_details.session_duration">
           <Controller

packages/console/src/pages/ApplicationDetails/ApplicationDetailsContent/Settings.tsx

@@ -31,7 +31,7 @@ function Settings({ data }: Props) {
     formState: { errors },
   } = useFormContext<Application>();
 
-  const { type: applicationType, isThirdParty } = data;
+  const { type: applicationType } = data;
 
   const isNativeApp = applicationType === ApplicationType.Native;
   const isProtectedApp = applicationType === ApplicationType.Protected;

packages/console/src/pages/ApplicationDetails/ApplicationDetailsContent/index.tsx

@@ -192,6 +192,7 @@ function ApplicationDetailsContent({ data, oidcConfig, onApplicationUpdated }: P
             onSubmit={onSubmit}
           >
             <Settings data={data} />
+            {/* Protected apps will reference this section in <ProtectedAppSettings /> component */}
             {data.type !== ApplicationType.Protected && (
               <EndpointsAndCredentials app={data} oidcConfig={oidcConfig} />
             )}

packages/phrases/src/locales/de/translation/admin-console/application-details.ts

@@ -101,10 +101,10 @@ const application_details = {
   authentication_routes_description:
     'Redirect your authentication button using the specified routes. Note: These routes are irreplaceable.',
   /** UNTRANSLATED */
-  implement_jwt_verification: 'Implement JWT verification',
+  protect_origin_server: 'Protect your origin server',
   /** UNTRANSLATED */
-  implement_jwt_verification_description:
-    'Validating JWT in your service before going online is essential for secure communications. Without it, your app will remain vulnerable to unauthorized access. Please <a>follow the guide</a>.',
+  protect_origin_server_description:
+    'Ensure to protect your origin server from direct access. Refer to the guide for more <a>detailed instructions</a>.',
   /** UNTRANSLATED */
   session_duration: 'Session duration (days)',
   /** UNTRANSLATED */

packages/phrases/src/locales/en/translation/admin-console/application-details.ts

@@ -80,9 +80,9 @@ const application_details = {
     "Here are two case scenarios:<ol><li>To only protect routes '/admin' and '/privacy' with authentication: ^/(admin|privacy)/.*</li><li>To exclude JPG images from authentication: ^(?!.*\\.jpg$).*$</li></ol>",
   authentication_routes_description:
     'Redirect your authentication button using the specified routes. Note: These routes are irreplaceable.',
-  implement_jwt_verification: 'Implement JWT verification',
-  implement_jwt_verification_description:
-    'Validating JWT in your service before going online is essential for secure communications. Without it, your app will remain vulnerable to unauthorized access. Please <a>follow the guide</a>.',
+  protect_origin_server: 'Protect your origin server',
+  protect_origin_server_description:
+    'Ensure to protect your origin server from direct access. Refer to the guide for more <a>detailed instructions</a>.',
   session_duration: 'Session duration (days)',
   try_it: 'Try it',
   branding: {

packages/phrases/src/locales/es/translation/admin-console/application-details.ts

@@ -101,10 +101,10 @@ const application_details = {
   authentication_routes_description:
     'Redirect your authentication button using the specified routes. Note: These routes are irreplaceable.',
   /** UNTRANSLATED */
-  implement_jwt_verification: 'Implement JWT verification',
+  protect_origin_server: 'Protect your origin server',
   /** UNTRANSLATED */
-  implement_jwt_verification_description:
-    'Validating JWT in your service before going online is essential for secure communications. Without it, your app will remain vulnerable to unauthorized access. Please <a>follow the guide</a>.',
+  protect_origin_server_description:
+    'Ensure to protect your origin server from direct access. Refer to the guide for more <a>detailed instructions</a>.',
   /** UNTRANSLATED */
   session_duration: 'Session duration (days)',
   /** UNTRANSLATED */

packages/phrases/src/locales/fr/translation/admin-console/application-details.ts

@@ -101,10 +101,10 @@ const application_details = {
   authentication_routes_description:
     'Redirect your authentication button using the specified routes. Note: These routes are irreplaceable.',
   /** UNTRANSLATED */
-  implement_jwt_verification: 'Implement JWT verification',
+  protect_origin_server: 'Protect your origin server',
   /** UNTRANSLATED */
-  implement_jwt_verification_description:
-    'Validating JWT in your service before going online is essential for secure communications. Without it, your app will remain vulnerable to unauthorized access. Please <a>follow the guide</a>.',
+  protect_origin_server_description:
+    'Ensure to protect your origin server from direct access. Refer to the guide for more <a>detailed instructions</a>.',
   /** UNTRANSLATED */
   session_duration: 'Session duration (days)',
   /** UNTRANSLATED */

packages/phrases/src/locales/it/translation/admin-console/application-details.ts

@@ -101,10 +101,10 @@ const application_details = {
   authentication_routes_description:
     'Redirect your authentication button using the specified routes. Note: These routes are irreplaceable.',
   /** UNTRANSLATED */
-  implement_jwt_verification: 'Implement JWT verification',
+  protect_origin_server: 'Protect your origin server',
   /** UNTRANSLATED */
-  implement_jwt_verification_description:
-    'Validating JWT in your service before going online is essential for secure communications. Without it, your app will remain vulnerable to unauthorized access. Please <a>follow the guide</a>.',
+  protect_origin_server_description:
+    'Ensure to protect your origin server from direct access. Refer to the guide for more <a>detailed instructions</a>.',
   /** UNTRANSLATED */
   session_duration: 'Session duration (days)',
   /** UNTRANSLATED */

packages/phrases/src/locales/ja/translation/admin-console/application-details.ts

@@ -101,10 +101,10 @@ const application_details = {
   authentication_routes_description:
     'Redirect your authentication button using the specified routes. Note: These routes are irreplaceable.',
   /** UNTRANSLATED */
-  implement_jwt_verification: 'Implement JWT verification',
+  protect_origin_server: 'Protect your origin server',
   /** UNTRANSLATED */
-  implement_jwt_verification_description:
-    'Validating JWT in your service before going online is essential for secure communications. Without it, your app will remain vulnerable to unauthorized access. Please <a>follow the guide</a>.',
+  protect_origin_server_description:
+    'Ensure to protect your origin server from direct access. Refer to the guide for more <a>detailed instructions</a>.',
   /** UNTRANSLATED */
   session_duration: 'Session duration (days)',
   /** UNTRANSLATED */

packages/phrases/src/locales/ko/translation/admin-console/application-details.ts

@@ -101,10 +101,10 @@ const application_details = {
   authentication_routes_description:
     'Redirect your authentication button using the specified routes. Note: These routes are irreplaceable.',
   /** UNTRANSLATED */
-  implement_jwt_verification: 'Implement JWT verification',
+  protect_origin_server: 'Protect your origin server',
   /** UNTRANSLATED */
-  implement_jwt_verification_description:
-    'Validating JWT in your service before going online is essential for secure communications. Without it, your app will remain vulnerable to unauthorized access. Please <a>follow the guide</a>.',
+  protect_origin_server_description:
+    'Ensure to protect your origin server from direct access. Refer to the guide for more <a>detailed instructions</a>.',
   /** UNTRANSLATED */
   session_duration: 'Session duration (days)',
   /** UNTRANSLATED */

packages/phrases/src/locales/pl-pl/translation/admin-console/application-details.ts

@@ -101,10 +101,10 @@ const application_details = {
   authentication_routes_description:
     'Redirect your authentication button using the specified routes. Note: These routes are irreplaceable.',
   /** UNTRANSLATED */
-  implement_jwt_verification: 'Implement JWT verification',
+  protect_origin_server: 'Protect your origin server',
   /** UNTRANSLATED */
-  implement_jwt_verification_description:
-    'Validating JWT in your service before going online is essential for secure communications. Without it, your app will remain vulnerable to unauthorized access. Please <a>follow the guide</a>.',
+  protect_origin_server_description:
+    'Ensure to protect your origin server from direct access. Refer to the guide for more <a>detailed instructions</a>.',
   /** UNTRANSLATED */
   session_duration: 'Session duration (days)',
   /** UNTRANSLATED */

packages/phrases/src/locales/pt-br/translation/admin-console/application-details.ts

@@ -101,10 +101,10 @@ const application_details = {
   authentication_routes_description:
     'Redirect your authentication button using the specified routes. Note: These routes are irreplaceable.',
   /** UNTRANSLATED */
-  implement_jwt_verification: 'Implement JWT verification',
+  protect_origin_server: 'Protect your origin server',
   /** UNTRANSLATED */
-  implement_jwt_verification_description:
-    'Validating JWT in your service before going online is essential for secure communications. Without it, your app will remain vulnerable to unauthorized access. Please <a>follow the guide</a>.',
+  protect_origin_server_description:
+    'Ensure to protect your origin server from direct access. Refer to the guide for more <a>detailed instructions</a>.',
   /** UNTRANSLATED */
   session_duration: 'Session duration (days)',
   /** UNTRANSLATED */

packages/phrases/src/locales/pt-pt/translation/admin-console/application-details.ts

@@ -101,10 +101,10 @@ const application_details = {
   authentication_routes_description:
     'Redirect your authentication button using the specified routes. Note: These routes are irreplaceable.',
   /** UNTRANSLATED */
-  implement_jwt_verification: 'Implement JWT verification',
+  protect_origin_server: 'Protect your origin server',
   /** UNTRANSLATED */
-  implement_jwt_verification_description:
-    'Validating JWT in your service before going online is essential for secure communications. Without it, your app will remain vulnerable to unauthorized access. Please <a>follow the guide</a>.',
+  protect_origin_server_description:
+    'Ensure to protect your origin server from direct access. Refer to the guide for more <a>detailed instructions</a>.',
   /** UNTRANSLATED */
   session_duration: 'Session duration (days)',
   /** UNTRANSLATED */

packages/phrases/src/locales/ru/translation/admin-console/application-details.ts

@@ -101,10 +101,10 @@ const application_details = {
   authentication_routes_description:
     'Redirect your authentication button using the specified routes. Note: These routes are irreplaceable.',
   /** UNTRANSLATED */
-  implement_jwt_verification: 'Implement JWT verification',
+  protect_origin_server: 'Protect your origin server',
   /** UNTRANSLATED */
-  implement_jwt_verification_description:
-    'Validating JWT in your service before going online is essential for secure communications. Without it, your app will remain vulnerable to unauthorized access. Please <a>follow the guide</a>.',
+  protect_origin_server_description:
+    'Ensure to protect your origin server from direct access. Refer to the guide for more <a>detailed instructions</a>.',
   /** UNTRANSLATED */
   session_duration: 'Session duration (days)',
   /** UNTRANSLATED */

packages/phrases/src/locales/tr-tr/translation/admin-console/application-details.ts

@@ -101,10 +101,10 @@ const application_details = {
   authentication_routes_description:
     'Redirect your authentication button using the specified routes. Note: These routes are irreplaceable.',
   /** UNTRANSLATED */
-  implement_jwt_verification: 'Implement JWT verification',
+  protect_origin_server: 'Protect your origin server',
   /** UNTRANSLATED */
-  implement_jwt_verification_description:
-    'Validating JWT in your service before going online is essential for secure communications. Without it, your app will remain vulnerable to unauthorized access. Please <a>follow the guide</a>.',
+  protect_origin_server_description:
+    'Ensure to protect your origin server from direct access. Refer to the guide for more <a>detailed instructions</a>.',
   /** UNTRANSLATED */
   session_duration: 'Session duration (days)',
   /** UNTRANSLATED */

packages/phrases/src/locales/zh-cn/translation/admin-console/application-details.ts

@@ -99,10 +99,10 @@ const application_details = {
   authentication_routes_description:
     'Redirect your authentication button using the specified routes. Note: These routes are irreplaceable.',
   /** UNTRANSLATED */
-  implement_jwt_verification: 'Implement JWT verification',
+  protect_origin_server: 'Protect your origin server',
   /** UNTRANSLATED */
-  implement_jwt_verification_description:
-    'Validating JWT in your service before going online is essential for secure communications. Without it, your app will remain vulnerable to unauthorized access. Please <a>follow the guide</a>.',
+  protect_origin_server_description:
+    'Ensure to protect your origin server from direct access. Refer to the guide for more <a>detailed instructions</a>.',
   /** UNTRANSLATED */
   session_duration: 'Session duration (days)',
   /** UNTRANSLATED */

packages/phrases/src/locales/zh-hk/translation/admin-console/application-details.ts

@@ -99,10 +99,10 @@ const application_details = {
   authentication_routes_description:
     'Redirect your authentication button using the specified routes. Note: These routes are irreplaceable.',
   /** UNTRANSLATED */
-  implement_jwt_verification: 'Implement JWT verification',
+  protect_origin_server: 'Protect your origin server',
   /** UNTRANSLATED */
-  implement_jwt_verification_description:
-    'Validating JWT in your service before going online is essential for secure communications. Without it, your app will remain vulnerable to unauthorized access. Please <a>follow the guide</a>.',
+  protect_origin_server_description:
+    'Ensure to protect your origin server from direct access. Refer to the guide for more <a>detailed instructions</a>.',
   /** UNTRANSLATED */
   session_duration: 'Session duration (days)',
   /** UNTRANSLATED */

packages/phrases/src/locales/zh-tw/translation/admin-console/application-details.ts

@@ -100,10 +100,10 @@ const application_details = {
   authentication_routes_description:
     'Redirect your authentication button using the specified routes. Note: These routes are irreplaceable.',
   /** UNTRANSLATED */
-  implement_jwt_verification: 'Implement JWT verification',
+  protect_origin_server: 'Protect your origin server',
   /** UNTRANSLATED */
-  implement_jwt_verification_description:
-    'Validating JWT in your service before going online is essential for secure communications. Without it, your app will remain vulnerable to unauthorized access. Please <a>follow the guide</a>.',
+  protect_origin_server_description:
+    'Ensure to protect your origin server from direct access. Refer to the guide for more <a>detailed instructions</a>.',
   /** UNTRANSLATED */
   session_duration: 'Session duration (days)',
   /** UNTRANSLATED */