feat: [M3-7160] - Add AGLB "Edit Certificate" drawer

[mjac0bs]

Description 📝

Add an edit drawer for AGLB certificates.

Major Changes 🔄

• Creates the Edit Certificate drawer with dynamic fields depending on certificate type
• Adds the useLoadBalancerCertificateMutation
• Adds a unit test for EditCertificateDrawer component
• Updates the MSW PUT endpoint for */v4beta/aglb/:id/certificates/:certId to return a downstream cert in addition to the existing ca certs.

Preview 📷

Service Target Certificates	TLS Certificates

How to test 🧪

1. How to setup test environment?

• Check out this PR.
• yarn dev
• Ensure AGLB feature flag is on and MSW is enabled.

2. How to verify changes?

• Go to http://localhost:3000/loadbalancers/0/certificates/downstream.
• Click on the Edit button in the action menu of the tls-certificate. Confirm that the edit drawer matches the mocks above for a TLS certificate.
• Click on the Edit button in the action menu of any other certificate (they're all of type ca). Confirm that the edit drawer matches the mocks above for a Service Target certificate.
• Confirm that a PUT request is sent by the MSW when the Update Certificate button is clicked.
• Confirm that no PUT request is sent by the MSW when the drawer is Canceled or closed out of.
• Confirm form validation:
  • If a user edits the label of either certificate type, the form submits without error.
  • If a user edits the certificate of a Service Target (ca) cert, the form submits without error.
  • If a user edits the certificate of a TLS (downstream) cert and submits without a key, they should receive a validation error upon submission indicating Private Key is required in that case.

4. How to run Unit or E2E tests?
   Unit:

yarn test EditCertificateDrawer

E2E:
Will be completed in M3-7134, since there was an existing ticket created for this.

[mjac0bs]

I'm not sure what the plan is for the copy in these tooltips, but given that we are not able to retrieve or display a certificate object's certificate or key fields for security reasons, we should probably mention that in this form so that the user does not think that their cert/key data is missing.

[bnussman-akamai]

Looks great! My only concerns regard consistency between the Create Drawer and this new Edit Drawer. We may need to ask Daniel for some clarification.

• In the Create Service Target Cert drawer we say "TLS Certificate" but in the edit drawer we say "Service Certificate". I guess we should say "Service Certificate" in both places?
• We have placeholders in the Create drawer but not the edit drawer

[mjac0bs]

@bnussman-akamai

• In the Create Service Target Cert drawer we say "TLS Certificate" but in the edit drawer we say "Service Certificate". I guess we should say "Service Certificate" in both places?

Good catch on this! 🔍 Asked Daniel for clarification in a comment on the mocks and reached out to let him know.

• We have placeholders in the Create drawer but not the edit drawer

Yeah, I'm not sure what's best here because we could use the same example placeholder as the Create drawer, but that might face the same problem as leaving it blank -- causing users to think that it is missing/incomplete, when really we're just not able to display the data. I also asked Daniel about this in the mocks.

[mjac0bs]

In the Create Service Target Cert drawer we say "TLS Certificate" but in the edit drawer we say "Service Certificate". I guess we should say "Service Certificate" in both places?

Daniel updated to mocks so that the Create drawer now labels the field as "Server Certificate" for ca/service target certificates and is "TLS Certificate" for downstream/TLS, so I made the change to dynamically render the label based on type in the Create drawer here.

[mjac0bs]

I preemptively renamed in hope of making it clear that these are not real values that are a cause of security concern.

[mjac0bs]

The API spec has been updated to indicate that certificate will now be returned in GET /v4beta/aglb/{id}/certificates.

[bnussman-akamai]

When we make the PUT, I think we may want to omit certificate and key from the body if they are unchanged. I worry this might make the API clear out the certificate and key if we send an empty string or perhaps cause a validation error.

[bnussman-akamai]

Great job! 🎉

[cpathipa]

Over all looks great! left couple comments for minor suggestions.
Validated

• Edit Certificate drawer with dynamic fields depending on certificate type
• test coverage for EditCertificateDrawer

[mjac0bs]

@bnussman-akamai , @cpathipa

Thanks for the reviews! I'll be merging this shortly. In my last commit, I addressed UX feedback to make the cert field contain the actual cert value instead of placeholder text. We now check whether the user is updating the cert from its original value and, if they are, require them to provide a key (as per the API spec). Otherwise, we can safely exclude the cert in the request and therefore avoid the user needing to submit their existing key, which we cannot return. (Validation seems to work correctly, as do request payloads; I think when I tried this initially, I was having unrelated validation issues.)

Creating follow up tickets to address additional UX feedback:

• display the cert id in the table

[mjac0bs]

One relevant e2e failure fixed due to the typo correction in the Create Cert drawer; this test now passes: