From 46a68e227b1800501d1b35616d368477ae63ef87 Mon Sep 17 00:00:00 2001
From: stevepodell <steve@podell.com>
Date: Mon, 3 Mar 2025 12:40:47 -0800
Subject: [PATCH] The race conditions and hanging tab (which was due to a
 strange bug if you use a html form tag without a submit in React). Uses
 viewerAccessRights to determine admin like rights. There is a new "Create
 Account for Someone Else" button for users with admin like rights, that
 allows them to create a person, but not verify their emails.  When that new
 user logs in with the credentials that they were sent, they will have to
 verify their email at that time. There might be some edge cases, but it is
 ready to go.

---
 src/js/components/Login/ResetYourPassword.jsx |  4 +--
 src/js/components/PrivateRoute.jsx            |  1 -
 src/js/contexts/ConnectAppContext.jsx         |  1 -
 src/js/contexts/contextFunctions.jsx          |  1 -
 src/js/pages/Login.jsx                        | 31 +++++++++++++------
 5 files changed, 22 insertions(+), 16 deletions(-)

diff --git a/src/js/components/Login/ResetYourPassword.jsx b/src/js/components/Login/ResetYourPassword.jsx
index 27d080c..d621e29 100644
--- a/src/js/components/Login/ResetYourPassword.jsx
+++ b/src/js/components/Login/ResetYourPassword.jsx
@@ -23,6 +23,7 @@ const ResetYourPassword = ({ openDialog, closeDialog }) => {
   const { mutate: mutatePasswordSave } = usePasswordSaveMutation();
   const { mutate: mutateLogout } = useLogoutMutation();
   const { getAppContextValue, setAppContextValue } = useConnectAppContext();
+  // console.log('ResetYourPassword ', getAppContextData());
 
   const [open, setOpen] = React.useState(openDialog);
   const [displayEmailAddress, setDisplayEmailAddress] = useState(true);
@@ -57,9 +58,6 @@ const ResetYourPassword = ({ openDialog, closeDialog }) => {
     const authP = getAppContextValue('authenticatedPerson');
     authPersonRef.current = authP;
     if (authP && open) {
-      console.log('received new authP', authP);
-      console.log('authPersonRef.personId in Login useEffect [auth] id: ', authP.personId);
-      console.log('authPersonRef.personId in Login useEffect [auth] open: ', open);
       setPersonId(authP.personId);
       weConnectQueryFn('send-email-code', { personId: authP.personId }, METHOD.POST)
         .then(setAppContextValue('openVerifySecretCodeModalDialog', true));
diff --git a/src/js/components/PrivateRoute.jsx b/src/js/components/PrivateRoute.jsx
index 5a49563..24d0437 100644
--- a/src/js/components/PrivateRoute.jsx
+++ b/src/js/components/PrivateRoute.jsx
@@ -17,7 +17,6 @@ const PrivateRoute = () => {
     if (isSuccessAuth) {
       authLog('useFetchData in PrivateRoute useEffect dataAuth good:', dataAuth, isSuccessAuth);
       setIsAuthenticated(dataAuth.isAuthenticated);
-      setAppContextValue('loggedInPersonIsAdmin', dataAuth.loggedInPersonIsAdmin);
       captureAccessRightsData(dataAuth, isSuccessAuth, apiDataCache, dispatch);
     }
   }, [dataAuth, isSuccessAuth]);
diff --git a/src/js/contexts/ConnectAppContext.jsx b/src/js/contexts/ConnectAppContext.jsx
index 2d1ae9c..9ec2be2 100644
--- a/src/js/contexts/ConnectAppContext.jsx
+++ b/src/js/contexts/ConnectAppContext.jsx
@@ -98,7 +98,6 @@ export const ConnectAppContextProvider = ({ children }) => {
       setAppContextValue('authenticatedPerson', dataAuth.person);
       if (dataAuth.person) {
         setAppContextValue('isAuthenticated', isAuthenticated);
-        setAppContextValue('loggedInPersonIsAdmin', dataAuth.loggedInPersonIsAdmin);
       }
       captureAccessRightsData(dataAuth, isSuccessAuth, apiDataCache, dispatch);
 
diff --git a/src/js/contexts/contextFunctions.jsx b/src/js/contexts/contextFunctions.jsx
index 0a007f2..ab4e4d4 100644
--- a/src/js/contexts/contextFunctions.jsx
+++ b/src/js/contexts/contextFunctions.jsx
@@ -1,7 +1,6 @@
 const clearSignedInGlobals = (setAppContextValue, getAppContextData) => {
   setAppContextValue('authenticatedPerson', {});
   setAppContextValue('isAuthenticated', false);
-  setAppContextValue('loggedInPersonIsAdmin', false);
   setAppContextValue('secretCodeVerifiedForReset', false);
   setAppContextValue('secretCodeVerified', false);
   console.log('appContextData in clearSignedInGlobals after clear: ', getAppContextData());
diff --git a/src/js/pages/Login.jsx b/src/js/pages/Login.jsx
index 29793aa..f277759 100644
--- a/src/js/pages/Login.jsx
+++ b/src/js/pages/Login.jsx
@@ -14,7 +14,7 @@ import VerifySecretCodeModal from '../components/VerifySecretCodeModal';
 import webAppConfig from '../config';
 import { useConnectAppContext, useConnectDispatch } from '../contexts/ConnectAppContext';
 import { clearSignedInGlobals } from '../contexts/contextFunctions';
-import { captureAccessRightsData } from '../models/AuthModel';
+import { captureAccessRightsData, viewerCanSeeOrDo } from '../models/AuthModel';
 import { getFullNamePreferredPerson } from '../models/PersonModel';
 import { useLogoutMutation } from '../react-query/mutations';
 import weConnectQueryFn, { METHOD, useFetchData } from '../react-query/WeConnectQuery';
@@ -22,7 +22,7 @@ import weConnectQueryFn, { METHOD, useFetchData } from '../react-query/WeConnect
 
 const Login = ({ classes }) => {
   renderLog('Login');
-  const { apiDataCache, getAppContextValue, setAppContextValue, getAppContextData } = useConnectAppContext();
+  const { apiDataCache, apiDataCache: { viewerAccessRights }, getAppContextValue, setAppContextValue, getAppContextData } = useConnectAppContext();
   const dispatch = useConnectDispatch();
   const queryClient = useQueryClient();
   const { mutate: mutateLogout } = useLogoutMutation();
@@ -63,7 +63,6 @@ const Login = ({ classes }) => {
         setAppContextValue('openVerifySecretCodeModalDialog', true);
       } else if (isAuthenticated && authenticatedPerson) {
         setSuccessLine(`Signed in as ${getFullNamePreferredPerson(authenticatedPerson)}`);
-        setAppContextValue('loggedInPersonIsAdmin', dataAuth.loggedInPersonIsAdmin);
         if (loginAttempted) {  // if we navigate to here directly, not as a result of a loginAPI
           // setTimeout(() => {
           //   navigate('/tasks');
@@ -106,8 +105,13 @@ const Login = ({ classes }) => {
       setAppContextValue('authenticatedPerson', data.person);
       queryClient.invalidateQueries('get-auth');
       if (data.emailVerified) {
+        passwordFldRef.current.value = '';   // Blank the email field after signing in
         setWarningLine('');
-        passwordFldRef.current = '';   // Blank the email field after signing in
+        setAppContextValue('secretCodeVerified', true);
+        setAppContextValue('openVerifySecretCodeModalDialog', false);
+        setAppContextValue('secretCodeVerified', false);
+        setAppContextValue('secretCodeVerifiedForReset', false);
+        setAppContextValue('resetPassword', '');
         setSuccessLine(`${getFullNamePreferredPerson(data.person)}, you are signed in!`);
         // setTimeout(() => {
         //   navigate('/tasks');
@@ -135,10 +139,11 @@ const Login = ({ classes }) => {
       setAppContextValue('openVerifySecretCodeModalDialog', false);
       setAppContextValue('secretCodeVerified', false);
       setAppContextValue('secretCodeVerifiedForReset', false);
+      setOpenResetPasswordDialog(false);
       setShowCreateStuff(false);
       const per = authPerson.current ? authPerson.current : getAppContextValue('authenticatedPerson');
       setSuccessLine(`${getFullNamePreferredPerson(per)}, you are signed in!`);
-      passwordFldRef.current = '';   // Blank the email field after signing in
+      passwordFldRef.current.value = '';   // Blank the email field after signing in
     }
   };
 
@@ -214,7 +219,7 @@ const Login = ({ classes }) => {
     const password = (passwordFldRef.current.value)?.trim();
 
     if (email?.length === 0 || password?.length === 0) {
-      console.log('too short');
+      // console.log('too short');
       setWarningLine('Enter a valid username and password');
     } else {
       setWarningLine('');
@@ -236,6 +241,7 @@ const Login = ({ classes }) => {
   };
 
   const signOutButtonPressed = () => {
+    passwordFldRef.current.value = '';   // Blank the email field after signing out
     clearSignedInGlobals(setAppContextValue, getAppContextData);
     setOpenResetPasswordDialog(false);
     // console.log('signOutButtonPressed in Login before logoutApiInLogin()');
@@ -279,8 +285,14 @@ const Login = ({ classes }) => {
     createPressed();
   };
 
+  const resetYourPasswordClicked = () => {
+    console.log('resetYourPasswordClicked', openResetPasswordDialog);
+    setOpenResetPasswordDialog(true);
+    setAppContextValue('openVerifySecretCodeModalDialog', true);
+  };
+
   // console.log(getAppContextData());
-  const isAdmin = getAppContextValue('loggedInPersonIsAdmin') || false;
+  const isAdmin = viewerCanSeeOrDo('canAddTeamMemberAnyTeam', viewerAccessRights);
   const isAuthSafe = getAppContextValue('isAuthenticated') || false;
   const displayVerify =
     !isForSomeOneElse &&
@@ -289,6 +301,7 @@ const Login = ({ classes }) => {
     getAppContextValue('secretCodeVerified') !== true &&
     (getAppContextValue('openVerifySecretCodeModalDialog') || false);
 
+  // console.log('login before return render, getAppContextData()', getAppContextData());
   return (
     <div>
       <Helmet>
@@ -387,7 +400,7 @@ const Login = ({ classes }) => {
             <Button
               classes={{ root: classes.loginButtonRoot }}
               color="primary"
-              onClick={() => setOpenResetPasswordDialog(true)}
+              onClick={resetYourPasswordClicked}
               sx={showCreateStuff ? { display: 'none' } : { margin: '0 0 15px 20px !important', width: '200px !important' }}
             >
               Reset your password
@@ -432,8 +445,6 @@ const Login = ({ classes }) => {
         </div>
         {displayVerify && <VerifySecretCodeModal person={authPerson.current} />}
         <ResetYourPassword openDialog={openResetPasswordDialog} closeDialog={closeResetYourPassword} />
-        {/* This following test can be deleted or converted to an automated test */}
-        {/* <ReactQuerySaveReadTest personId="1" /> */}
       </PageContentContainer>
     </div>
   );