@micha.bigler/ui-core-micha 1.4.38 → 1.4.40

package/dist/auth/authApi.js

@@ -388,12 +388,9 @@ export async function updateUserRole(userId, newRole) {
  */
 export async function updateUserSupportStatus(userId, isSupportAgent) {
     try {
-        // Wir gehen davon aus, dass dein Serializer "profile" nested akzeptiert
-        // (siehe BaseUserSerializer.update Logik im Backend)
+        // Backend expects flat field names, DRF maps via `source="profile.is_support_agent"`
         const payload = {
-            profile: {
-                is_support_agent: isSupportAgent,
-            },
+            is_support_agent: isSupportAgent,
         };
         const res = await apiClient.patch(`${USERS_BASE}/${userId}/`, payload);
         return res.data;

package/dist/i18n/authTranslations.js

@@ -956,14 +956,70 @@ export const authTranslations = {
         "fr": "Expirée",
         "en": "Expired"
     },
-    "Common.Yes": {
+    "Common.YES": {
         "de": "Ja",
         "fr": "Oui",
         "en": "Yes"
     },
-    "Common.No": {
+    "Common.NO": {
         "de": "Nein",
         "fr": "Non",
         "en": "No"
-    }
+    },
+    "Account.TITLE": {
+        "de": "Konto & Verwaltung",
+        "fr": "Compte et administration",
+        "en": "Account & Administration"
+    },
+    "Account.PAGE_TITLE": {
+        "de": "Konto",
+        "fr": "Compte",
+        "en": "Account"
+    },
+    "Account.TAB_PROFILE": {
+        "de": "Profil",
+        "fr": "Profil",
+        "en": "Profile"
+    },
+    "Account.TAB_SECURITY": {
+        "de": "Sicherheit",
+        "fr": "Sécurité",
+        "en": "Security"
+    },
+    "Account.TAB_USERS": {
+        "de": "Benutzer",
+        "fr": "Utilisateurs",
+        "en": "Users"
+    },
+    "Account.TAB_INVITE": {
+        "de": "Einladen",
+        "fr": "Inviter",
+        "en": "Invite"
+    },
+    "Account.TAB_ACCESS_CODES": {
+        "de": "Zugangscodes",
+        "fr": "Codes d'accès",
+        "en": "Access codes"
+    },
+    "Account.TAB_SUPPORT": {
+        "de": "Support",
+        "fr": "Support",
+        "en": "Support"
+    },
+    "Account.ACCESS_CODES_HINT": {
+        "de": "Verwalten Sie Zugangscodes für die Selbstregistrierung.",
+        "fr": "Gérer les codes d'accès pour l'auto-inscription.",
+        "en": "Manage access codes for self-registration."
+    },
+    // --- Missing Auth Keys ---
+    "Auth.NOT_LOGGED_IN": {
+        "de": "Benutzer nicht angemeldet.",
+        "fr": "Utilisateur non connecté.",
+        "en": "User not logged in."
+    },
+    "Auth.INVITE_BUTTON": {
+        "de": "Einladung senden",
+        "fr": "Envoyer l'invitation",
+        "en": "Send invitation"
+    },
 };

package/dist/pages/AccountPage.js

@@ -4,7 +4,7 @@ import { Helmet } from 'react-helmet';
 import { useSearchParams } from 'react-router-dom';
 import { Tabs, Tab, Box, Typography, Alert, CircularProgress } from '@mui/material';
 import { useTranslation } from 'react-i18next';
-// Interne Komponenten der Library
+// Internal Library Components
 import { WidePage } from '../layout/PageLayout';
 import { ProfileComponent } from '../components/ProfileComponent';
 import { SecurityComponent } from '../components/SecurityComponent';
@@ -15,11 +15,10 @@ import { SupportRecoveryRequestsTab } from '../components/SupportRecoveryRequest
 import { AuthContext } from '../auth/AuthContext';
 import { updateUserProfile } from '../auth/authApi';
 /**
- * Vollständige, selbst-konfigurierende Account-Seite.
- * * Architektur:
- * - Permissions: Werden aus user.ui_permissions gelesen (vom Backend).
- * - Rollen: Werden aus user.available_roles gelesen (vom Backend).
- * - Keine Props mehr nötig -> Plug & Play in der App.js.
+ * Complete, self-configuring Account Page.
+ * Architecture:
+ * - Permissions: Read from user.ui_permissions (from Backend).
+ * - Roles: Read from user.available_roles (from Backend).
  */
 export function AccountPage() {
     const { t } = useTranslation();
@@ -29,10 +28,8 @@ export function AccountPage() {
     const currentTab = searchParams.get('tab') || 'profile';
     const fromRecovery = searchParams.get('from') === 'recovery';
     const fromWeakLogin = searchParams.get('from') === 'weak_login';
-    // 2. Daten & Permissions extrahieren (Single Source of Truth)
-    // Backend liefert die Liste der Rollen (Keys), z.B. ['student', 'teacher']
+    // 2. Data & Permissions (Single Source of Truth)
     const activeRoles = (user === null || user === void 0 ? void 0 : user.available_roles) || [];
-    // Backend liefert Permissions basierend auf settings.py
     const perms = (user === null || user === void 0 ? void 0 : user.ui_permissions) || {};
     const handleTabChange = (_event, newValue) => {
         setSearchParams({ tab: newValue });
@@ -41,9 +38,8 @@ export function AccountPage() {
         const updatedUser = await updateUserProfile(payload);
         login(updatedUser);
     };
-    // 3. Dynamische Tabs bauen
+    // 3. Dynamic Tabs
     const tabs = useMemo(() => {
-        // Wenn User noch nicht da ist, leere Liste (Loading State fängt das ab)
         if (!user)
             return [];
         const list = [
@@ -71,8 +67,7 @@ export function AccountPage() {
     if (!user) {
         return (_jsx(WidePage, { children: _jsx(Alert, { severity: "warning", children: t('Auth.NOT_LOGGED_IN', 'User not logged in.') }) }));
     }
-    // 5. Sicherheits-Check: Ist der aktuelle Tab überhaupt erlaubt?
-    // Verhindert Zugriff durch URL-Manipulation (z.B. ?tab=users eingeben ohne Admin-Rechte)
+    // 5. Security Check: Is the active tab allowed?
     const activeTabExists = tabs.some(t => t.value === currentTab);
     const safeTab = activeTabExists ? currentTab : 'profile';
     return (_jsxs(WidePage, { title: t('Account.TITLE', 'Account & Administration'), children: [_jsx(Helmet, { children: _jsxs("title", { children: [t('Account.PAGE_TITLE', 'Account'), " \u2013 ", user.email] }) }), _jsx(Tabs, { value: safeTab, onChange: handleTabChange, variant: "scrollable", scrollButtons: "auto", sx: { mb: 3, borderBottom: 1, borderColor: 'divider' }, children: tabs.map((tab) => (_jsx(Tab, { label: tab.label, value: tab.value }, tab.value))) }), safeTab === 'profile' && (_jsx(Box, { sx: { mt: 2 }, children: _jsx(ProfileComponent, { onSubmit: handleProfileSubmit, showName: true, showPrivacy: true, showCookies: true }) })), safeTab === 'security' && (_jsx(Box, { sx: { mt: 2 }, children: _jsx(SecurityComponent, { fromRecovery: fromRecovery, fromWeakLogin: fromWeakLogin }) })), safeTab === 'users' && (_jsx(Box, { sx: { mt: 2 }, children: _jsx(UserListComponent, { roles: activeRoles, currentUser: user }) })), safeTab === 'invite' && (_jsx(Box, { sx: { mt: 2 }, children: _jsx(UserInviteComponent, {}) })), safeTab === 'access' && (_jsxs(Box, { sx: { mt: 2 }, children: [_jsx(Typography, { variant: "body2", sx: { mb: 2, color: 'text.secondary' }, children: t('Account.ACCESS_CODES_HINT', 'Manage access codes for self-registration.') }), _jsx(AccessCodeManager, {})] })), safeTab === 'support' && (_jsx(Box, { sx: { mt: 2 }, children: _jsx(SupportRecoveryRequestsTab, {}) }))] }));

package/dist/utils/authService.js

@@ -12,24 +12,25 @@ function resolveWebAuthnOptions(options) {
 }
 export async function registerPasskey(name = 'Passkey') {
     ensureWebAuthnSupport();
-    // 1. Get Options from Server
-    const creationOptions = await getPasskeyRegistrationOptions();
-    // 2. Call Browser API
+    // 1. Options vom Server
+    const optionsEnvelope = await getPasskeyRegistrationOptions();
+    // optionsEnvelope ist bei dir: { publicKey: { ... } } oder { creation_options: { publicKey: {...} } }
+    // Extrahiere die eigentlichen publicKey-Options
+    const publicKeyJson = (optionsEnvelope.creation_options && optionsEnvelope.creation_options.publicKey) ||
+        optionsEnvelope.publicKey ||
+        optionsEnvelope;
     let credential;
     try {
-        // FIX: Erst entpacken (JSON -> JSON ohne publicKey Wrapper)
-        const optionsJson = resolveWebAuthnOptions(creationOptions);
-        // Dann parsen (JSON -> ArrayBuffer)
-        const publicKeyOptions = window.PublicKeyCredential.parseCreationOptionsFromJSON(creationOptions);
-        credential = await navigator.credentials.create({ publicKey: publicKeyOptions });
+        const publicKey = window.PublicKeyCredential.parseCreationOptionsFromJSON(publicKeyJson);
+        // Wichtig: create({ publicKey: ... })
+        credential = await navigator.credentials.create({ publicKey });
     }
     catch (err) {
         if (err.name === 'NotAllowedError') {
             throw normaliseApiError(new Error('Auth.PASSKEY_CANCELLED'), 'Auth.PASSKEY_CANCELLED');
         }
-        throw err;
+        throw normaliseApiError(err, 'Auth.PASSKEY_CREATE_FAILED');
     }
-    // 3. Send back to Server
     const credentialJson = serializeCredential(credential);
     return completePasskeyRegistration(credentialJson, name);
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@micha.bigler/ui-core-micha",
-  "version": "1.4.38",
+  "version": "1.4.40",
   "main": "dist/index.js",
   "module": "dist/index.js",
   "private": false,

package/src/auth/authApi.jsx

@@ -402,12 +402,9 @@ export async function updateUserRole(userId, newRole) {
  */
 export async function updateUserSupportStatus(userId, isSupportAgent) {
   try {
-    // Wir gehen davon aus, dass dein Serializer "profile" nested akzeptiert
-    // (siehe BaseUserSerializer.update Logik im Backend)
+    // Backend expects flat field names, DRF maps via `source="profile.is_support_agent"`
     const payload = {
-      profile: {
-        is_support_agent: isSupportAgent,
-      },
+      is_support_agent: isSupportAgent,
     };
     const res = await apiClient.patch(`${USERS_BASE}/${userId}/`, payload);
     return res.data;

package/src/i18n/authTranslations.js

@@ -1003,14 +1003,72 @@ export const authTranslations = {
     "fr": "Expirée",
     "en": "Expired"
   },
-  "Common.Yes": {
+  "Common.YES": {
     "de": "Ja",
     "fr": "Oui",
     "en": "Yes"
   },
-  "Common.No": {
+  "Common.NO": {
     "de": "Nein",
     "fr": "Non",
     "en": "No"
-  }
-};
+  },
+  "Account.TITLE": {
+    "de": "Konto & Verwaltung",
+    "fr": "Compte et administration",
+    "en": "Account & Administration"
+  },
+  "Account.PAGE_TITLE": {
+    "de": "Konto",
+    "fr": "Compte",
+    "en": "Account"
+  },
+  "Account.TAB_PROFILE": {
+    "de": "Profil",
+    "fr": "Profil",
+    "en": "Profile"
+  },
+  "Account.TAB_SECURITY": {
+    "de": "Sicherheit",
+    "fr": "Sécurité",
+    "en": "Security"
+  },
+  "Account.TAB_USERS": {
+    "de": "Benutzer",
+    "fr": "Utilisateurs",
+    "en": "Users"
+  },
+  "Account.TAB_INVITE": {
+    "de": "Einladen",
+    "fr": "Inviter",
+    "en": "Invite"
+  },
+  "Account.TAB_ACCESS_CODES": {
+    "de": "Zugangscodes",
+    "fr": "Codes d'accès",
+    "en": "Access codes"
+  },
+  "Account.TAB_SUPPORT": {
+    "de": "Support",
+    "fr": "Support",
+    "en": "Support"
+  },
+  "Account.ACCESS_CODES_HINT": {
+    "de": "Verwalten Sie Zugangscodes für die Selbstregistrierung.",
+    "fr": "Gérer les codes d'accès pour l'auto-inscription.",
+    "en": "Manage access codes for self-registration."
+  },
+
+  // --- Missing Auth Keys ---
+  "Auth.NOT_LOGGED_IN": {
+    "de": "Benutzer nicht angemeldet.",
+    "fr": "Utilisateur non connecté.",
+    "en": "User not logged in."
+  },
+  "Auth.INVITE_BUTTON": {
+    "de": "Einladung senden",
+    "fr": "Envoyer l'invitation",
+    "en": "Send invitation"
+  },
+
+}

package/src/pages/AccountPage.jsx

@@ -11,7 +11,7 @@ import {
 } from '@mui/material';
 import { useTranslation } from 'react-i18next';
 
-// Interne Komponenten der Library
+// Internal Library Components
 import { WidePage } from '../layout/PageLayout';
 import { ProfileComponent } from '../components/ProfileComponent';
 import { SecurityComponent } from '../components/SecurityComponent';
@@ -23,11 +23,10 @@ import { AuthContext } from '../auth/AuthContext';
 import { updateUserProfile } from '../auth/authApi';
 
 /**
- * Vollständige, selbst-konfigurierende Account-Seite.
- * * Architektur:
- * - Permissions: Werden aus user.ui_permissions gelesen (vom Backend).
- * - Rollen: Werden aus user.available_roles gelesen (vom Backend).
- * - Keine Props mehr nötig -> Plug & Play in der App.js.
+ * Complete, self-configuring Account Page.
+ * Architecture:
+ * - Permissions: Read from user.ui_permissions (from Backend).
+ * - Roles: Read from user.available_roles (from Backend).
  */
 export function AccountPage() {
   const { t } = useTranslation();
@@ -39,11 +38,8 @@ export function AccountPage() {
   const fromRecovery = searchParams.get('from') === 'recovery';
   const fromWeakLogin = searchParams.get('from') === 'weak_login';
 
-  // 2. Daten & Permissions extrahieren (Single Source of Truth)
-  // Backend liefert die Liste der Rollen (Keys), z.B. ['student', 'teacher']
+  // 2. Data & Permissions (Single Source of Truth)
   const activeRoles = user?.available_roles || [];
-  
-  // Backend liefert Permissions basierend auf settings.py
   const perms = user?.ui_permissions || {};
 
   const handleTabChange = (_event, newValue) => {
@@ -55,9 +51,8 @@ export function AccountPage() {
     login(updatedUser);
   };
 
-  // 3. Dynamische Tabs bauen
+  // 3. Dynamic Tabs
   const tabs = useMemo(() => {
-    // Wenn User noch nicht da ist, leere Liste (Loading State fängt das ab)
     if (!user) return [];
 
     const list = [
@@ -103,8 +98,7 @@ export function AccountPage() {
       );
   }
 
-  // 5. Sicherheits-Check: Ist der aktuelle Tab überhaupt erlaubt?
-  // Verhindert Zugriff durch URL-Manipulation (z.B. ?tab=users eingeben ohne Admin-Rechte)
+  // 5. Security Check: Is the active tab allowed?
   const activeTabExists = tabs.some(t => t.value === currentTab);
   const safeTab = activeTabExists ? currentTab : 'profile';
 

package/src/utils/authService.js

@@ -25,28 +25,34 @@ function resolveWebAuthnOptions(options) {
 
 export async function registerPasskey(name = 'Passkey') {
   ensureWebAuthnSupport();
-  
-  // 1. Get Options from Server
-  const creationOptions = await getPasskeyRegistrationOptions();
-  
-  // 2. Call Browser API
+
+  // 1. Options vom Server
+  const optionsEnvelope = await getPasskeyRegistrationOptions();
+  // optionsEnvelope ist bei dir: { publicKey: { ... } } oder { creation_options: { publicKey: {...} } }
+
+  // Extrahiere die eigentlichen publicKey-Options
+  const publicKeyJson =
+    (optionsEnvelope.creation_options && optionsEnvelope.creation_options.publicKey) ||
+    optionsEnvelope.publicKey ||
+    optionsEnvelope;
+
   let credential;
   try {
-      // FIX: Erst entpacken (JSON -> JSON ohne publicKey Wrapper)
-      const optionsJson = resolveWebAuthnOptions(creationOptions);
-      
-      // Dann parsen (JSON -> ArrayBuffer)
-      const publicKeyOptions =
-        window.PublicKeyCredential.parseCreationOptionsFromJSON(creationOptions);
-      credential = await navigator.credentials.create({ publicKey: publicKeyOptions });
+    const publicKey = window.PublicKeyCredential.parseCreationOptionsFromJSON(
+      publicKeyJson,
+    );
+    // Wichtig: create({ publicKey: ... })
+    credential = await navigator.credentials.create({ publicKey });
   } catch (err) {
-      if (err.name === 'NotAllowedError') {
-          throw normaliseApiError(new Error('Auth.PASSKEY_CANCELLED'), 'Auth.PASSKEY_CANCELLED');
-      }
-      throw err;
+    if (err.name === 'NotAllowedError') {
+      throw normaliseApiError(
+        new Error('Auth.PASSKEY_CANCELLED'),
+        'Auth.PASSKEY_CANCELLED',
+      );
+    }
+    throw normaliseApiError(err, 'Auth.PASSKEY_CREATE_FAILED');
   }
 
-  // 3. Send back to Server
   const credentialJson = serializeCredential(credential);
   return completePasskeyRegistration(credentialJson, name);
 }