@micha.bigler/ui-core-micha 1.4.13 → 1.4.16

package/dist/components/MfaLoginComponent.js

@@ -76,6 +76,6 @@ const MfaLoginComponent = ({ availableTypes, identifier, onSuccess, onCancel })
             setSubmitting(false);
         }
     };
-    return (_jsxs(Box, { children: [_jsx(Typography, { variant: "body2", sx: { mb: 2 }, children: t('Auth.MFA_SUBTITLE', 'Please confirm your login using one of the available methods.') }), errorKey && (_jsx(Alert, { severity: "error", sx: { mb: 2 }, children: t(errorKey) })), infoKey && (_jsx(Alert, { severity: "info", sx: { mb: 2 }, children: t(infoKey) })), _jsxs(Stack, { spacing: 2, children: [supportsWebauthn && (_jsx(Button, { variant: "contained", fullWidth: true, onClick: handlePasskey, disabled: submitting || helpRequested, children: t('Auth.LOGIN_USE_PASSKEY_BUTTON', 'Use passkey / security key') })), _jsx(Divider, { sx: { my: 2 }, children: t('Auth.LOGIN_OR') }), supportsTotpOrRecovery && (_jsxs(Box, { component: "form", onSubmit: handleSubmitCode, children: [_jsx(TextField, { label: t('Auth.MFA_CODE_LABEL', 'Authenticator code (or recovery code)'), value: code, onChange: (e) => setCode(e.target.value), fullWidth: true, disabled: submitting || helpRequested, autoComplete: "one-time-code", sx: { mb: 2 } }), _jsx(Button, { type: "submit", variant: "contained", fullWidth: true, disabled: submitting || !code.trim() || helpRequested, children: t('Auth.MFA_VERIFY', 'Verify') })] })), _jsx(Divider, { sx: { my: 2 }, children: t('Auth.LOGIN_OR') }), _jsxs(Stack, { direction: "row", spacing: 1, sx: { mt: 1 }, children: [_jsx(Button, { fullWidth: true, size: "small", variant: "outlined", onClick: onCancel, disabled: submitting, children: t('Auth.MFA_BACK_TO_LOGIN', 'Back to login') }), _jsx(Button, { fullWidth: true, size: "small", variant: "outlined", color: "secondary", onClick: openHelpDialog, disabled: submitting || helpRequested, children: t('Auth.MFA_NEED_HELP', "I can't use any of these methods") })] })] }), _jsxs(Dialog, { open: helpDialogOpen, onClose: () => setHelpDialogOpen(false), fullWidth: true, maxWidth: "sm", children: [_jsx(DialogTitle, { children: t('Auth.MFA_HELP_DIALOG_TITLE', 'Need help with sign-in') }), _jsxs(DialogContent, { dividers: true, children: [_jsx(Typography, { variant: "body2", sx: { mb: 2 }, children: t('Auth.MFA_HELP_DIALOG_DESCRIPTION', 'Describe briefly why you cannot use the available methods. A support person will review your request.') }), _jsx(TextField, { label: t('Auth.MFA_HELP_MESSAGE_LABEL', 'Your message to support'), helperText: t('Auth.MFA_HELP_MESSAGE_HELP', 'Optional, but helps support verify your identity.'), multiline: true, minRows: 3, fullWidth: true, value: helpMessage, onChange: (e) => setHelpMessage(e.target.value), disabled: submitting })] }), _jsxs(DialogActions, { children: [_jsx(Button, { onClick: () => setHelpDialogOpen(false), disabled: submitting, children: t('Common.CANCEL', 'Cancel') }), _jsx(Button, { onClick: handleNeedHelp, disabled: submitting, variant: "contained", children: t('Auth.MFA_HELP_SUBMIT', 'Send request') })] })] })] }));
+    return (_jsxs(Box, { children: [_jsx(Typography, { variant: "body2", sx: { mb: 2 }, children: t('Auth.MFA_SUBTITLE', 'Please confirm your login using one of the available methods.') }), errorKey && (_jsx(Alert, { severity: "error", sx: { mb: 2 }, children: t(errorKey) })), infoKey && (_jsx(Alert, { severity: "info", sx: { mb: 2 }, children: t(infoKey) })), _jsxs(Stack, { spacing: 2, children: [supportsWebauthn && (_jsx(Button, { variant: "contained", fullWidth: true, onClick: handlePasskey, disabled: submitting || helpRequested, children: t('Auth.LOGIN_USE_PASSKEY_BUTTON', 'Use passkey / security key') })), _jsx(Divider, { sx: { my: 2 }, children: t('Auth.LOGIN_OR') }), supportsTotpOrRecovery && (_jsxs(Box, { component: "form", onSubmit: handleSubmitCode, children: [_jsx(TextField, { label: t('Auth.MFA_CODE_LABEL', 'Authenticator code (or recovery code)'), value: code, onChange: (e) => setCode(e.target.value), fullWidth: true, disabled: submitting || helpRequested, autoComplete: "one-time-code", sx: { mb: 2 } }), _jsx(Button, { type: "submit", variant: "contained", fullWidth: true, disabled: submitting || !code.trim() || helpRequested, children: t('Auth.MFA_VERIFY', 'Verify') })] })), _jsx(Divider, { sx: { my: 2 }, children: t('Auth.LOGIN_OR') }), _jsxs(Stack, { direction: "row", spacing: 1, sx: { mt: 1 }, children: [_jsx(Button, { fullWidth: true, size: "small", variant: "outlined", onClick: onCancel, disabled: submitting, children: t('Auth.MFA_BACK_TO_LOGIN', 'Back to login') }), _jsx(Button, { fullWidth: true, size: "small", variant: "outlined", color: "secondary", onClick: openHelpDialog, disabled: submitting || helpRequested, children: t('Auth.MFA_NEED_HELP', "I can't use any of these methods") })] })] }), _jsxs(Dialog, { open: helpDialogOpen, onClose: () => setHelpDialogOpen(false), fullWidth: true, maxWidth: "sm", children: [_jsx(DialogTitle, { children: t('Auth.MFA_HELP_DIALOG_TITLE', 'Need help with sign-in') }), _jsxs(DialogContent, { dividers: true, children: [_jsx(Typography, { variant: "body2", sx: { mb: 2 }, children: t('Auth.MFA_HELP_DIALOG_DESCRIPTION', 'Describe briefly why you cannot use the available methods. A support person will review your request.') }), _jsx(TextField, { label: t('Auth.MFA_HELP_MESSAGE_LABEL', 'Your message to support'), multiline: true, minRows: 3, fullWidth: true, value: helpMessage, onChange: (e) => setHelpMessage(e.target.value), disabled: submitting })] }), _jsxs(DialogActions, { children: [_jsx(Button, { onClick: () => setHelpDialogOpen(false), disabled: submitting, children: t('Common.CANCEL', 'Cancel') }), _jsx(Button, { onClick: handleNeedHelp, disabled: submitting, variant: "contained", children: t('Auth.MFA_HELP_SUBMIT', 'Send request') })] })] })] }));
 };
 export default MfaLoginComponent;

package/dist/components/ProfileComponent.js

@@ -36,7 +36,7 @@ showName = true, showPrivacy = true, showCookies = true, }) {
             setErrorKey(null);
             setSuccessKey(null);
             try {
-                const res = await axios.get(`${USERS_BASE}/current/`, {
+                const res = await apiClient.get(`${USERS_BASE}/current/`, {
                     withCredentials: true,
                 });
                 if (!mounted)

package/dist/components/SecurityComponent.js

@@ -29,12 +29,12 @@ const SecurityComponent = ({ fromRecovery = false, fromWeakLogin = false, // opt
         setErrorKey(null);
         try {
             await authApi.changePassword(currentPassword, newPassword);
-            setMessageKey('Auth.PASSWORD_CHANGE_SUCCESS');
+            setMessageKey('Auth.RESET_PASSWORD_SUCCESS');
         }
         catch (err) {
             setErrorKey(err.code || 'Auth.PASSWORD_CHANGE_FAILED');
         }
     };
-    return (_jsxs(Box, { children: [fromRecovery && (_jsx(Alert, { severity: "warning", sx: { mb: 2 }, children: t('Security.RECOVERY_LOGIN_WARNING') })), fromWeakLogin && (_jsx(Alert, { severity: "warning", sx: { mb: 2 }, children: t('Security.WEAK_LOGIN_WARNING') })), messageKey && (_jsx(Alert, { severity: "success", sx: { mb: 2 }, children: t(messageKey) })), errorKey && (_jsx(Alert, { severity: "error", sx: { mb: 2 }, children: t(errorKey) })), _jsx(Typography, { variant: "h6", gutterBottom: true, children: t('Security.PASSWORD_SECTION_TITLE') }), _jsx(PasswordChangeForm, { onSubmit: handlePasswordChange }), _jsx(Divider, { sx: { my: 3 } }), _jsx(Typography, { variant: "h6", gutterBottom: true, children: t('Security.SOCIAL_SECTION_TITLE') }), _jsx(Typography, { variant: "body2", sx: { mb: 1 }, children: t('Security.SOCIAL_SECTION_DESCRIPTION') }), _jsx(SocialLoginButtons, { onProviderClick: handleSocialClick }), _jsx(Divider, { sx: { my: 3 } }), _jsx(PasskeysComponent, {}), _jsx(Divider, { sx: { my: 3 } }), _jsx(MFAComponent, {})] }));
+    return (_jsxs(Box, { children: [fromRecovery && (_jsx(Alert, { severity: "warning", sx: { mb: 2 }, children: t('Security.RECOVERY_LOGIN_WARNING') })), fromWeakLogin && (_jsx(Alert, { severity: "warning", sx: { mb: 2 }, children: t('Security.WEAK_LOGIN_WARNING') })), messageKey && (_jsx(Alert, { severity: "success", sx: { mb: 2 }, children: t(messageKey) })), errorKey && (_jsx(Alert, { severity: "error", sx: { mb: 2 }, children: t(errorKey) })), _jsx(Typography, { variant: "h6", gutterBottom: true, children: t('Security.LOGIN_PASSWORD_LABEL') }), _jsx(PasswordChangeForm, { onSubmit: handlePasswordChange }), _jsx(Divider, { sx: { my: 3 } }), _jsx(Typography, { variant: "h6", gutterBottom: true, children: t('Security.SOCIAL_SECTION_TITLE') }), _jsx(Typography, { variant: "body2", sx: { mb: 1 }, children: t('Security.SOCIAL_SECTION_DESCRIPTION') }), _jsx(SocialLoginButtons, { onProviderClick: handleSocialClick }), _jsx(Divider, { sx: { my: 3 } }), _jsx(PasskeysComponent, {}), _jsx(Divider, { sx: { my: 3 } }), _jsx(MFAComponent, {})] }));
 };
 export default SecurityComponent;

package/dist/components/SupportRecoveryRequestsTab.js

@@ -70,9 +70,9 @@ const SupportRecoveryRequestsTab = () => {
     if (loading) {
         return (_jsx(Box, { sx: { display: 'flex', justifyContent: 'center', mt: 4 }, children: _jsx(CircularProgress, {}) }));
     }
-    return (_jsxs(Box, { children: [_jsx(Typography, { variant: "h6", gutterBottom: true, children: t('Support.RECOVERY_REQUESTS_TITLE', 'Account recovery requests') }), _jsx(Typography, { variant: "body2", sx: { mb: 2 }, children: t('Support.RECOVERY_REQUESTS_DESCRIPTION', 'Users who cannot complete MFA can request support. You can review their request and approve or reject it.') }), errorKey && (_jsx(Alert, { severity: "error", sx: { mb: 2 }, children: t(errorKey) })), _jsxs(Stack, { direction: "row", spacing: 2, sx: { mb: 2 }, children: [_jsx(Button, { variant: statusFilter === 'pending' ? 'contained' : 'outlined', size: "small", onClick: () => setStatusFilter('pending'), children: t('Support.RECOVERY_FILTER_PENDING', 'Open') }), _jsx(Button, { variant: statusFilter === 'approved' ? 'contained' : 'outlined', size: "small", onClick: () => setStatusFilter('approved'), children: t('Support.RECOVERY_FILTER_APPROVED', 'Approved') }), _jsx(Button, { variant: statusFilter === 'rejected' ? 'contained' : 'outlined', size: "small", onClick: () => setStatusFilter('rejected'), children: t('Support.RECOVERY_FILTER_REJECTED', 'Rejected') })] }), requests.length === 0 ? (_jsx(Typography, { variant: "body2", children: t('Support.RECOVERY_REQUESTS_EMPTY', 'No recovery requests for this filter.') })) : (_jsx(TableContainer, { component: Paper, children: _jsxs(Table, { size: "small", children: [_jsx(TableHead, { children: _jsxs(TableRow, { children: [_jsx(TableCell, { children: t('Support.RECOVERY_COL_CREATED', 'Created') }), _jsx(TableCell, { children: t('Support.RECOVERY_COL_USER', 'User') }), _jsx(TableCell, { children: t('Support.RECOVERY_COL_STATUS', 'Status') }), _jsx(TableCell, { children: t('Support.RECOVERY_COL_ACTIONS', 'Actions') })] }) }), _jsx(TableBody, { children: requests.map((req) => (_jsxs(TableRow, { children: [_jsx(TableCell, { children: req.created_at
+    return (_jsxs(Box, { children: [_jsx(Typography, { variant: "h6", gutterBottom: true, children: t('Support.RECOVERY_REQUESTS_TITLE', 'Account recovery requests') }), _jsx(Typography, { variant: "body2", sx: { mb: 2 }, children: t('Support.RECOVERY_REQUESTS_DESCRIPTION', 'Users who cannot complete MFA can request support. You can review their request and approve or reject it.') }), errorKey && (_jsx(Alert, { severity: "error", sx: { mb: 2 }, children: t(errorKey) })), _jsxs(Stack, { direction: "row", spacing: 2, sx: { mb: 2 }, children: [_jsx(Button, { variant: statusFilter === 'pending' ? 'contained' : 'outlined', size: "small", onClick: () => setStatusFilter('pending'), children: t('Support.RECOVERY_FILTER_PENDING', 'Open') }), _jsx(Button, { variant: statusFilter === 'approved' ? 'contained' : 'outlined', size: "small", onClick: () => setStatusFilter('approved'), children: t('Support.RECOVERY_FILTER_APPROVED', 'Approved') }), _jsx(Button, { variant: statusFilter === 'rejected' ? 'contained' : 'outlined', size: "small", onClick: () => setStatusFilter('rejected'), children: t('Support.RECOVERY_FILTER_REJECTED', 'Rejected') })] }), requests.length === 0 ? (_jsx(Typography, { variant: "body2", children: t('Support.RECOVERY_REQUESTS_EMPTY', 'No recovery requests for this filter.') })) : (_jsx(TableContainer, { component: Paper, children: _jsxs(Table, { size: "small", children: [_jsx(TableHead, { children: _jsxs(TableRow, { children: [_jsx(TableCell, { children: t('Support.RECOVERY_COL_CREATED', 'Created') }), _jsx(TableCell, { children: t('Support.RECOVERY_USER', 'User') }), _jsx(TableCell, { children: t('Support.RECOVERY_COL_STATUS', 'Status') }), _jsx(TableCell, { children: t('Support.RECOVERY_COL_ACTIONS', 'Actions') })] }) }), _jsx(TableBody, { children: requests.map((req) => (_jsxs(TableRow, { children: [_jsx(TableCell, { children: req.created_at
                                             ? new Date(req.created_at).toLocaleString()
-                                            : '-' }), _jsx(TableCell, { children: req.user_email || req.user }), _jsx(TableCell, { children: req.status }), _jsx(TableCell, { children: _jsx(Button, { variant: "contained", size: "small", onClick: () => openDialog(req), disabled: req.status !== 'pending', children: t('Support.RECOVERY_ACTION_REVIEW', 'Review') }) })] }, req.id))) })] }) })), _jsxs(Dialog, { open: dialogOpen, onClose: closeDialog, fullWidth: true, maxWidth: "sm", children: [_jsx(DialogTitle, { children: t('Support.RECOVERY_REVIEW_DIALOG_TITLE', 'Review recovery request') }), _jsxs(DialogContent, { dividers: true, children: [selectedRequest && (_jsxs(Box, { sx: { mb: 2 }, children: [_jsxs(Typography, { variant: "body2", sx: { mb: 1 }, children: [_jsxs("strong", { children: [t('Support.RECOVERY_REVIEW_USER', 'User'), ":"] }), ' ', selectedRequest.user_email || selectedRequest.user] }), _jsxs(Typography, { variant: "body2", sx: { mb: 1 }, children: [_jsxs("strong", { children: [t('Support.RECOVERY_REVIEW_CREATED', 'Requested at'), ":"] }), ' ', selectedRequest.created_at
+                                            : '-' }), _jsx(TableCell, { children: req.user_email || req.user }), _jsx(TableCell, { children: req.status }), _jsx(TableCell, { children: _jsx(Button, { variant: "contained", size: "small", onClick: () => openDialog(req), disabled: req.status !== 'pending', children: t('Support.RECOVERY_ACTION_REVIEW', 'Review') }) })] }, req.id))) })] }) })), _jsxs(Dialog, { open: dialogOpen, onClose: closeDialog, fullWidth: true, maxWidth: "sm", children: [_jsx(DialogTitle, { children: t('Support.RECOVERY_REVIEW_DIALOG_TITLE', 'Review recovery request') }), _jsxs(DialogContent, { dividers: true, children: [selectedRequest && (_jsxs(Box, { sx: { mb: 2 }, children: [_jsxs(Typography, { variant: "body2", sx: { mb: 1 }, children: [_jsxs("strong", { children: [t('Support.RECOVERY_USER', 'User'), ":"] }), ' ', selectedRequest.user_email || selectedRequest.user] }), _jsxs(Typography, { variant: "body2", sx: { mb: 1 }, children: [_jsxs("strong", { children: [t('Support.RECOVERY_REVIEW_CREATED', 'Requested at'), ":"] }), ' ', selectedRequest.created_at
                                                 ? new Date(selectedRequest.created_at).toLocaleString()
                                                 : '-'] }), _jsx(Typography, { variant: "body2", sx: { mb: 1 }, children: _jsxs("strong", { children: [t('Support.RECOVERY_REVIEW_MESSAGE', 'User’s explanation'), ":"] }) }), _jsx(Box, { sx: {
                                             border: 1,
@@ -84,4 +84,4 @@ const SupportRecoveryRequestsTab = () => {
                                             fontSize: '0.875rem',
                                         }, children: selectedRequest.message || t('Support.RECOVERY_NO_MESSAGE', 'No message provided.') })] })), _jsx(TextField, { label: t('Support.RECOVERY_NOTE_LABEL', 'Reason for your decision'), helperText: t('Support.RECOVERY_NOTE_HELP', 'Explain briefly why you approve or reject this request.'), multiline: true, minRows: 3, fullWidth: true, value: dialogNote, onChange: (e) => setDialogNote(e.target.value) })] }), _jsxs(DialogActions, { children: [_jsx(Button, { onClick: closeDialog, children: t('Common.CANCEL', 'Cancel') }), _jsx(Button, { onClick: handleReject, color: "error", disabled: !dialogNote.trim(), children: t('Support.RECOVERY_REJECT_SUBMIT', 'Reject request') }), _jsx(Button, { onClick: handleApprove, variant: "contained", disabled: !dialogNote.trim(), children: t('Support.RECOVERY_APPROVE_SUBMIT', 'Approve and send link') })] })] })] }));
 };
-export default SupportRecove;
+export default SupportRecoveryRequestsTab;

package/dist/i18n/authTranslations.js

@@ -1,16 +1,6 @@
 // ui-core-micha/src/i18n/authTranslations.js
 // Gleiche Struktur wie deine app-eigene translations.json
 export const authTranslations = {
-    "Auth.Login.Title": {
-        de: "Anmelden",
-        fr: "Connexion",
-        en: "Login",
-    },
-    "Auth.Mfa.Required": {
-        de: "Zwei-Faktor-Authentifizierung erforderlich.",
-        fr: "Authentification à deux facteurs requise.",
-        en: "Two-factor authentication required.",
-    },
     "Auth.INVALID_CREDENTIALS": {
         "de": "E-Mail-Adresse oder Passwort ist falsch.",
         "fr": "Adresse e-mail ou mot de passe incorrect.",
@@ -201,16 +191,6 @@ export const authTranslations = {
         "fr": "Les codes de récupération n'ont pas pu être regénérés.",
         "en": "Recovery codes could not be regenerated."
     },
-    "Auth.PASSWORD_CHANGE_SUCCESS": {
-        "de": "Das Passwort wurde erfolgreich geändert.",
-        "fr": "Le mot de passe a été modifié avec succès.",
-        "en": "Password changed successfully."
-    },
-    "Auth.PAGE_CHANGE_PASSWORD_TITLE": {
-        "de": "Passwort ändern",
-        "fr": "Modifier le mot de passe",
-        "en": "Change password"
-    },
     "Auth.PAGE_CHANGE_PASSWORD_SUBTITLE": {
         "de": "Geben Sie Ihr aktuelles und ein neues Passwort ein.",
         "fr": "Saisissez votre mot de passe actuel et un nouveau mot de passe.",
@@ -256,11 +236,6 @@ export const authTranslations = {
         "fr": "Le mot de passe a été modifié. Vous pouvez maintenant vous connecter.",
         "en": "Password changed successfully. You can now log in."
     },
-    "Auth.PAGE_RESET_REQUEST_TITLE": {
-        "de": "Passwort zurücksetzen",
-        "fr": "Réinitialiser le mot de passe",
-        "en": "Reset password"
-    },
     "Auth.PAGE_RESET_REQUEST_SUBTITLE": {
         "de": "Geben Sie Ihre E-Mail-Adresse ein, um den Link zum Zurücksetzen zu erhalten.",
         "fr": "Saisissez votre adresse e-mail pour recevoir le lien de réinitialisation.",
@@ -271,11 +246,6 @@ export const authTranslations = {
         "fr": "Veuillez saisir une adresse e-mail.",
         "en": "Please enter an email address."
     },
-    "Auth.PAGE_SIGNUP_TITLE": {
-        "de": "Registrieren",
-        "fr": "Inscription",
-        "en": "Sign up"
-    },
     "Auth.PAGE_SIGNUP_SUBTITLE": {
         "de": "Geben Sie Ihre E-Mail-Adresse und den Zugangscode ein, um eine Einladung anzufordern.",
         "fr": "Saisissez votre adresse e-mail et le code d'accès pour demander une invitation.",
@@ -286,11 +256,6 @@ export const authTranslations = {
         "fr": "Adresse e-mail",
         "en": "Email address"
     },
-    "Auth.SIGNUP_ACCESS_CODE_LABEL": {
-        "de": "Zugangscode",
-        "fr": "Code d'accès",
-        "en": "Access code"
-    },
     "Auth.SIGNUP_SUBMIT": {
         "de": "Einladung anfordern",
         "fr": "Demander une invitation",
@@ -351,11 +316,6 @@ export const authTranslations = {
         "fr": "Longueur : {{length}}",
         "en": "Length: {{length}}"
     },
-    "Auth.ACCESS_CODE_SAVING": {
-        "de": "Wird gespeichert…",
-        "fr": "Enregistrement…",
-        "en": "Saving…"
-    },
     "Auth.ACCESS_CODE_GENERATE_BUTTON": {
         "de": "Code generieren",
         "fr": "Générer un code",
@@ -376,11 +336,6 @@ export const authTranslations = {
         "fr": "Ajouter",
         "en": "Add"
     },
-    "Auth.ACCESS_CODE_REQUIRED_ADMIN": {
-        "de": "Bitte geben Sie einen Zugangscode ein.",
-        "fr": "Veuillez saisir un code d'accès.",
-        "en": "Please enter an access code."
-    },
     "Auth.ACCESS_CODE_LIST_FAILED": {
         "de": "Zugangscodes konnten nicht geladen werden.",
         "fr": "Impossible de charger les codes d'accès.",
@@ -411,11 +366,6 @@ export const authTranslations = {
         "fr": "Mot de passe",
         "en": "Password"
     },
-    "Auth.LOGIN_SUBMIT": {
-        "de": "Anmelden",
-        "fr": "Connexion",
-        "en": "Log in"
-    },
     "Auth.LOGIN_SIGNUP_BUTTON": {
         "de": "Registrieren",
         "fr": "Créer un compte",
@@ -741,11 +691,6 @@ export const authTranslations = {
         "fr": "Vous vous êtes connecté avec un code de récupération. Veuillez vérifier vos paramètres de sécurité, configurer une clé d’accès ou une application d’authentification et générer de nouveaux codes de récupération.",
         "en": "You have signed in using a recovery code. Please review your security settings, set up a passkey or authenticator app, and generate new recovery codes."
     },
-    "Security.PASSWORD_SECTION_TITLE": {
-        "de": "Passwort",
-        "fr": "Mot de passe",
-        "en": "Password"
-    },
     "Security.SOCIAL_SECTION_TITLE": {
         "de": "Soziale Logins",
         "fr": "Connexions sociales",
@@ -771,11 +716,6 @@ export const authTranslations = {
         "fr": "Veuillez confirmer votre connexion à l’aide d’une des méthodes disponibles.",
         "en": "Please confirm your login using one of the available methods."
     },
-    "Auth.MFA_SUBTITLE_SHORT": {
-        "de": "Bitte bestätige deine Anmeldung mit einer der verfügbaren Methoden.",
-        "fr": "Veuillez confirmer votre connexion à l’aide d’une des méthodes disponibles.",
-        "en": "Please confirm your login using one of the available methods."
-    },
     "Auth.MFA_USE_PASSKEY": {
         "de": "Passkey / Sicherheitsschlüssel verwenden",
         "fr": "Utiliser une clé d’accès / clé de sécurité",
@@ -821,16 +761,6 @@ export const authTranslations = {
         "fr": "Récupération de compte",
         "en": "Account recovery"
     },
-    "Auth.MFA_IDENTIFIER_REQUIRED": {
-        "de": "E-Mail-Adresse oder Kennung ist erforderlich.",
-        "fr": "L’adresse e-mail ou l’identifiant est requis.",
-        "en": "Email address or identifier is required."
-    },
-    "Auth.MFA_HELP_REQUESTED": {
-        "de": "Falls dieses Konto existiert, wurde Ihre Anfrage dem Support weitergeleitet. Bitte kontaktiere den Support für weitere Hilfe.",
-        "fr": "Si ce compte existe, votre demande a été transmise au support. Veuillez contacter le support pour obtenir de l’aide supplémentaire.",
-        "en": "If this account exists, your request has been forwarded to support. Please contact support for further assistance."
-    },
     "Support.RECOVERY_APPROVE_DIALOG_TITLE": {
         "de": "Kontowiederherstellung bestätigen",
         "fr": "Confirmer la récupération du compte",
@@ -851,11 +781,6 @@ export const authTranslations = {
         "fr": "Décrivez brièvement pourquoi vous approuvez cette demande.",
         "en": "Briefly describe why you are approving this request."
     },
-    "Support.RECOVERY_APPROVE_SUBMIT": {
-        "de": "Link senden",
-        "fr": "Envoyer le lien",
-        "en": "Send link"
-    },
     "Auth.MFA_HELP_DIALOG_TITLE": {
         "de": "Hilfe bei der Anmeldung",
         "fr": "Aide pour la connexion",
@@ -871,11 +796,6 @@ export const authTranslations = {
         "fr": "Votre message au support",
         "en": "Your message to support"
     },
-    "Auth.MFA_HELP_MESSAGE_HELP": {
-        "de": "Optional, hilft dem Support bei der Überprüfung Ihrer Identität.",
-        "fr": "Facultatif, mais aide le support à vérifier votre identité.",
-        "en": "Optional, but helps support verify your identity."
-    },
     "Auth.MFA_HELP_SUBMIT": {
         "de": "Anfrage senden",
         "fr": "Envoyer la demande",
@@ -896,11 +816,6 @@ export const authTranslations = {
         "fr": "Refuser la récupération de compte",
         "en": "Reject account recovery"
     },
-    "Support.RECOVERY_REJECT_CONFIRM_QUESTION": {
-        "de": "Sind Sie sicher, dass Sie diese Wiederherstellungsanfrage ablehnen möchten?",
-        "fr": "Êtes-vous sûr de vouloir refuser cette demande de récupération ?",
-        "en": "Are you sure you want to reject this recovery request?"
-    },
     "Support.RECOVERY_REJECT_SUBMIT": {
         "de": "Anfrage ablehnen",
         "fr": "Refuser la demande",
@@ -946,7 +861,7 @@ export const authTranslations = {
         "fr": "Créée le",
         "en": "Created"
     },
-    "Support.RECOVERY_COL_USER": {
+    "Support.RECOVERY_USER": {
         "de": "Benutzer",
         "fr": "Utilisateur",
         "en": "User"
@@ -971,11 +886,6 @@ export const authTranslations = {
         "fr": "Examiner la demande de récupération de compte",
         "en": "Review recovery request"
     },
-    "Support.RECOVERY_REVIEW_USER": {
-        "de": "Benutzer",
-        "fr": "Utilisateur",
-        "en": "User"
-    },
     "Support.RECOVERY_REVIEW_CREATED": {
         "de": "Angefragt am",
         "fr": "Demandée le",
@@ -991,21 +901,6 @@ export const authTranslations = {
         "fr": "Aucune explication fournie.",
         "en": "No message provided."
     },
-    "Support.RECOVERY_NOTE_LABEL": {
-        "de": "Begründung für Ihre Entscheidung",
-        "fr": "Raison de votre décision",
-        "en": "Reason for your decision"
-    },
-    "Support.RECOVERY_NOTE_HELP": {
-        "de": "Beschreiben Sie kurz, warum Sie diese Anfrage akzeptieren oder ablehnen.",
-        "fr": "Décrivez brièvement pourquoi vous acceptez ou refusez cette demande.",
-        "en": "Briefly explain why you approve or reject this request."
-    },
-    "Support.RECOVERY_REJECT_SUBMIT": {
-        "de": "Anfrage ablehnen",
-        "fr": "Refuser la demande",
-        "en": "Reject request"
-    },
     "Support.RECOVERY_APPROVE_SUBMIT": {
         "de": "Akzeptieren und Link senden",
         "fr": "Accepter et envoyer le lien",
@@ -1021,31 +916,6 @@ export const authTranslations = {
         "fr": "La demande n’a pas pu être acceptée.",
         "en": "Failed to approve the recovery request."
     },
-    "Auth.MFA_HELP_DIALOG_TITLE": {
-        "de": "Hilfe bei der Anmeldung",
-        "fr": "Aide pour la connexion",
-        "en": "Help with sign-in"
-    },
-    "Auth.MFA_HELP_DIALOG_DESCRIPTION": {
-        "de": "Beschreiben Sie kurz, warum Sie die verfügbaren Methoden nicht nutzen können. Eine Support-Person wird Ihre Anfrage prüfen.",
-        "fr": "Décrivez brièvement pourquoi vous ne pouvez pas utiliser les méthodes disponibles. Une personne du support examinera votre demande.",
-        "en": "Briefly describe why you cannot use the available methods. A support person will review your request."
-    },
-    "Auth.MFA_HELP_MESSAGE_LABEL": {
-        "de": "Ihre Nachricht an den Support",
-        "fr": "Votre message au support",
-        "en": "Your message to support"
-    },
-    "Auth.MFA_HELP_MESSAGE_HELP": {
-        "de": "Optional, hilft dem Support aber bei der Überprüfung Ihrer Identität.",
-        "fr": "Optionnel, mais aide le support à vérifier votre identité.",
-        "en": "Optional, but helps support verify your identity."
-    },
-    "Auth.MFA_HELP_SUBMIT": {
-        "de": "Anfrage senden",
-        "fr": "Envoyer la demande",
-        "en": "Send request"
-    },
     "Auth.MFA_IDENTIFIER_REQUIRED": {
         "de": "Bitte geben Sie eine E-Mail-Adresse an.",
         "fr": "Veuillez indiquer une adresse e-mail.",
@@ -1056,10 +926,4 @@ export const authTranslations = {
         "fr": "Si un compte existe avec cette adresse e-mail, votre demande a été transmise au support.",
         "en": "If an account with this email exists, your request has been forwarded to support."
     },
-    "Auth.MFA_HELP_REQUEST_FAILED": {
-        "de": "Die Anfrage an den Support konnte nicht gesendet werden.",
-        "fr": "Impossible d’envoyer la demande au support.",
-        "en": "Failed to send the request to support."
-    }
-    // ...
 };

package/dist/pages/LoginPage.js

@@ -102,6 +102,6 @@ export function LoginPage() {
         setMfaState(null);
         setErrorKey(null);
     };
-    return (_jsxs(NarrowPage, { title: t('Auth.PAGE_LOGIN_TITLE'), subtitle: t('Auth.PAGE_LOGIN_SUBTITLE'), children: [_jsx(Helmet, { children: _jsxs("title", { children: [t('App.NAME'), " \u2013 ", t('Auth.PAGE_LOGIN_TITLE')] }) }), errorKey && (_jsx(Alert, { severity: "error", sx: { mb: 2 }, children: t(errorKey) })), recoveryToken && !errorKey && (_jsx(Alert, { severity: "info", sx: { mb: 2 }, children: t('Auth.RECOVERY_LOGIN_INFO', 'Your recovery link was validated. Please sign in with your password to continue.') })), step === 'credentials' && (_jsx(LoginForm, { onSubmit: handleSubmitCredentials, onForgotPassword: handleForgotPassword, onSocialLogin: handleSocialLogin, onPasskeyLogin: handlePasskeyLoginInitial, onSignUp: handleSignUp, disabled: submitting, initialIdentifier: recoveryEmail })), step === 'mfa' && mfaState && (_jsx(Box, { children: _jsx(MfaLoginComponent, { availableTypes: mfaState.availableTypes, identifier: mfaState.identifier, onSuccess: handleMfaSuccess, onCancel: handleMfaCancel }) }))] }));
+    return (_jsxs(NarrowPage, { title: t('Auth.PAGE_LOGIN_TITLE'), subtitle: t('Auth.PAGE_LOGIN_SUBTITLE'), children: [_jsx(Helmet, { children: _jsxs("title", { children: [t('App.NAME'), " \u2013 ", t('Auth.PAGE_LOGIN_TITLE')] }) }), errorKey && (_jsx(Alert, { severity: "error", sx: { mb: 2 }, children: t(errorKey) })), recoveryToken && !errorKey && (_jsx(Alert, { severity: "info", sx: { mb: 2 }, children: t('Auth.RECOVERY_LOGIN_WARNING', 'Your recovery link was validated. Please sign in with your password to continue.') })), step === 'credentials' && (_jsx(LoginForm, { onSubmit: handleSubmitCredentials, onForgotPassword: handleForgotPassword, onSocialLogin: handleSocialLogin, onPasskeyLogin: handlePasskeyLoginInitial, onSignUp: handleSignUp, disabled: submitting, initialIdentifier: recoveryEmail })), step === 'mfa' && mfaState && (_jsx(Box, { children: _jsx(MfaLoginComponent, { availableTypes: mfaState.availableTypes, identifier: mfaState.identifier, onSuccess: handleMfaSuccess, onCancel: handleMfaCancel }) }))] }));
 }
 export default LoginPage;

package/dist/pages/PasswordChangePage.js

@@ -18,7 +18,7 @@ export function PasswordChangePage() {
         setSubmitting(true);
         try {
             await changePassword(oldPassword, newPassword);
-            setSuccessKey('Auth.PASSWORD_CHANGE_SUCCESS');
+            setSuccessKey('Auth.RESET_PASSWORD_SUCCESS');
         }
         catch (err) {
             setErrorKey(err.code || 'Auth.PASSWORD_CHANGE_FAILED');
@@ -27,6 +27,6 @@ export function PasswordChangePage() {
             setSubmitting(false);
         }
     };
-    return (_jsxs(NarrowPage, { title: t('Auth.PAGE_CHANGE_PASSWORD_TITLE'), subtitle: t('Auth.PAGE_CHANGE_PASSWORD_SUBTITLE'), children: [_jsx(Helmet, { children: _jsxs("title", { children: [t('App.NAME'), " \u2013 ", t('Auth.PAGE_CHANGE_PASSWORD_TITLE')] }) }), successKey && (_jsx(Typography, { color: "primary", gutterBottom: true, children: t(successKey) })), errorKey && (_jsx(Typography, { color: "error", gutterBottom: true, children: t(errorKey) })), _jsx(PasswordChangeForm, { onSubmit: handleSubmit, submitting: submitting })] }));
+    return (_jsxs(NarrowPage, { title: t('Auth.CHANGE_PASSWORD_BUTTON'), subtitle: t('Auth.PAGE_CHANGE_PASSWORD_SUBTITLE'), children: [_jsx(Helmet, { children: _jsxs("title", { children: [t('App.NAME'), " \u2013 ", t('Auth.CHANGE_PASSWORD_BUTTON')] }) }), successKey && (_jsx(Typography, { color: "primary", gutterBottom: true, children: t(successKey) })), errorKey && (_jsx(Typography, { color: "error", gutterBottom: true, children: t(errorKey) })), _jsx(PasswordChangeForm, { onSubmit: handleSubmit, submitting: submitting })] }));
 }
 export default PasswordChangePage;

package/dist/pages/PasswordResetRequestPage.js

@@ -32,6 +32,6 @@ export function PasswordResetRequestPage() {
             setSubmitting(false);
         }
     };
-    return (_jsxs(NarrowPage, { title: t('Auth.PAGE_RESET_REQUEST_TITLE'), subtitle: t('Auth.PAGE_RESET_REQUEST_SUBTITLE'), children: [_jsx(Helmet, { children: _jsxs("title", { children: [t('App.NAME'), " \u2013 ", t('Auth.PAGE_RESET_REQUEST_TITLE')] }) }), successKey && (_jsx(Typography, { color: "primary", gutterBottom: true, children: t(successKey) })), errorKey && (_jsx(Typography, { color: "error", gutterBottom: true, children: t(errorKey) })), _jsx(PasswordResetRequestForm, { onSubmit: handleSubmit, submitting: submitting })] }));
+    return (_jsxs(NarrowPage, { title: t('Auth.PAGE_RESET_PASSWORD_TITLE'), subtitle: t('Auth.PAGE_RESET_REQUEST_SUBTITLE'), children: [_jsx(Helmet, { children: _jsxs("title", { children: [t('App.NAME'), " \u2013 ", t('Auth.PAGE_RESET_PASSWORD_TITLE')] }) }), successKey && (_jsx(Typography, { color: "primary", gutterBottom: true, children: t(successKey) })), errorKey && (_jsx(Typography, { color: "error", gutterBottom: true, children: t(errorKey) })), _jsx(PasswordResetRequestForm, { onSubmit: handleSubmit, submitting: submitting })] }));
 }
 export default PasswordResetRequestPage;

package/dist/pages/SignUpPage.js

@@ -50,7 +50,7 @@ export function SignUpPage() {
     const handleGoToLogin = () => {
         navigate('/login');
     };
-    return (_jsxs(NarrowPage, { title: t('Auth.PAGE_SIGNUP_TITLE'), subtitle: t('Auth.PAGE_SIGNUP_SUBTITLE'), children: [_jsx(Helmet, { children: _jsxs("title", { children: [t('App.NAME'), " \u2013 ", t('Auth.PAGE_SIGNUP_TITLE')] }) }), successKey && (_jsx(Alert, { severity: "success", sx: { mb: 2 }, children: t(successKey, { email }) })), errorKey && (_jsx(Alert, { severity: "error", sx: { mb: 2 }, children: t(errorKey) })), _jsxs(Box, { component: "form", onSubmit: handleSubmit, sx: { display: 'flex', flexDirection: 'column', gap: 2 }, children: [_jsx(TextField, { label: t('Auth.EMAIL_LABEL'), type: "email", required: true, fullWidth: true, value: email, onChange: (e) => setEmail(e.target.value), disabled: submitting }), _jsx(TextField, { label: t('Auth.SIGNUP_ACCESS_CODE_LABEL'), type: "text", required: true, fullWidth: true, value: accessCode, onChange: (e) => setAccessCode(e.target.value), disabled: submitting }), _jsx(Button, { type: "submit", variant: "contained", disabled: submitting, children: submitting
+    return (_jsxs(NarrowPage, { title: t('Auth.LOGIN_SIGNUP_BUTTON'), subtitle: t('Auth.PAGE_SIGNUP_SUBTITLE'), children: [_jsx(Helmet, { children: _jsxs("title", { children: [t('App.NAME'), " \u2013 ", t('Auth.LOGIN_SIGNUP_BUTTON')] }) }), successKey && (_jsx(Alert, { severity: "success", sx: { mb: 2 }, children: t(successKey, { email }) })), errorKey && (_jsx(Alert, { severity: "error", sx: { mb: 2 }, children: t(errorKey) })), _jsxs(Box, { component: "form", onSubmit: handleSubmit, sx: { display: 'flex', flexDirection: 'column', gap: 2 }, children: [_jsx(TextField, { label: t('Auth.EMAIL_LABEL'), type: "email", required: true, fullWidth: true, value: email, onChange: (e) => setEmail(e.target.value), disabled: submitting }), _jsx(TextField, { label: t('Auth.ACCESS_CODE_LABEL'), type: "text", required: true, fullWidth: true, value: accessCode, onChange: (e) => setAccessCode(e.target.value), disabled: submitting }), _jsx(Button, { type: "submit", variant: "contained", disabled: submitting, children: submitting
                             ? t('Auth.SIGNUP_SUBMITTING')
                             : t('Auth.SIGNUP_SUBMIT') })] }), _jsx(Box, { sx: { mt: 3 }, children: _jsxs(Typography, { variant: "body2", children: [t('Auth.SIGNUP_ALREADY_HAVE_ACCOUNT'), ' ', _jsx(Button, { onClick: handleGoToLogin, variant: "text", size: "small", children: t('Auth.SIGNUP_GO_TO_LOGIN') })] }) })] }));
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@micha.bigler/ui-core-micha",
-  "version": "1.4.13",
+  "version": "1.4.16",
   "main": "dist/index.js",
   "module": "dist/index.js",
   "private": false,

package/src/auth/AuthContext.jsx

@@ -4,8 +4,8 @@ import React, {
   useState,
   useEffect,
 } from 'react';
-import axios from 'axios';
-import { CSRF_URL } from './authConfig';
+// REMOVED: import axios from 'axios'; -> Not needed here anymore
+import { ensureCsrfToken } from './apiClient'; // <--- IMPORT ADDED
 import {
   fetchCurrentUser,
   logoutSession,
@@ -17,31 +17,19 @@ export const AuthProvider = ({ children }) => {
   const [user, setUser] = useState(null);
   const [loading, setLoading] = useState(true);
 
-  // Einmalige Axios-Basis-Konfiguration
-  useEffect(() => {
-    axios.defaults.withCredentials = true;
-    axios.defaults.xsrfCookieName = 'csrftoken';
-    axios.defaults.xsrfHeaderName = 'X-CSRFToken';
-  }, []);
-
   useEffect(() => {
     let isMounted = true;
 
     const initAuth = async () => {
       try {
-        // 1) CSRF-Cookie setzen (Django-View /api/csrf/)
-        try {
-          await axios.get(CSRF_URL, { withCredentials: true });
-          // console.log('CSRF cookie set');
-        } catch (err) {
-          // eslint-disable-next-line no-console
-          console.error('Error setting CSRF cookie:', err);
-        }
+        // 1) Ensure CSRF cookie exists using the specific client
+        await ensureCsrfToken();
 
-        // 2) aktuellen User laden (falls Session vorhanden)
-        try {
-          const data = await fetchCurrentUser();
-          if (!isMounted) return;
+        // 2) Load user
+        const data = await fetchCurrentUser();
+        
+        if (isMounted) {
+          // Map data to ensure consistent structure
           setUser({
             id: data.id,
             username: data.username,
@@ -50,33 +38,22 @@ export const AuthProvider = ({ children }) => {
             last_name: data.last_name,
             role: data.role,
             is_superuser: data.is_superuser,
+            security_state: data.security_state, // Ensure this is passed if needed
           });
-        } catch (err) {
-          const status = err.response?.status;
-          if (status && status !== 401) {
-            console.error('Error while fetching current user:', err);
-          } else {
-            console.log('No logged-in user');
-          }
-          if (!isMounted) return;
-          setUser(null);
         }
+      } catch (err) {
+        // Silent failure on 401/403 is expected (user not logged in)
+        if (isMounted) setUser(null);
       } finally {
-        if (isMounted) {
-          setLoading(false);
-        }
+        if (isMounted) setLoading(false);
       }
     };
 
     initAuth();
 
-    return () => {
-      isMounted = false;
-    };
+    return () => { isMounted = false; };
   }, []);
 
-  // Nach erfolgreichem Login das User-Objekt setzen
-  // (z. B. aus loginWithPassword in authApi)
   const login = (userData) => {
     setUser((prev) => ({
       ...prev,
@@ -84,7 +61,6 @@ export const AuthProvider = ({ children }) => {
     }));
   };
 
-  // Logout im Backend + lokalen State leeren
   const logout = async () => {
     try {
       await logoutSession();
@@ -108,4 +84,4 @@ export const AuthProvider = ({ children }) => {
       {children}
     </AuthContext.Provider>
   );
-};
+};

package/src/auth/apiClient.jsx

@@ -0,0 +1,20 @@
+// src/auth/apiClient.js
+import axios from 'axios';
+import { CSRF_URL } from './authConfig';
+
+const apiClient = axios.create({
+  withCredentials: true,
+  xsrfCookieName: 'csrftoken',
+  xsrfHeaderName: 'X-CSRFToken',
+});
+
+export async function ensureCsrfToken() {
+  try {
+    await apiClient.get(CSRF_URL);
+  } catch (err) {
+    // eslint-disable-next-line no-console
+    console.warn("CSRF Initialization failed", err);
+  }
+}
+
+export default apiClient;