@micha.bigler/ui-core-micha 1.4.41 → 2.1.1

package/dist/pages/AccountPage.js

@@ -5,6 +5,13 @@ import { useSearchParams } from 'react-router-dom';
 import { Tabs, Tab, Box, Typography, Alert, CircularProgress } from '@mui/material';
 import { useTranslation } from 'react-i18next';
 // Internal Library Components
+// Stellen Sie sicher, dass diese Pfade korrekt auf Ihre Library zeigen!
+// Da Sie '@micha.bigler/ui-core-micha' nutzen, sollten die Imports ggf. so aussehen:
+import { AuthContext,
+// ... andere Komponenten aus der Lib importieren, falls sie dort exportiert sind
+// Wenn sie lokal sind, lassen Sie die relativen Pfade.
+ } from '@micha.bigler/ui-core-micha';
+// Falls die Komponenten noch lokal sind:
 import { WidePage } from '../layout/PageLayout';
 import { ProfileComponent } from '../components/ProfileComponent';
 import { SecurityComponent } from '../components/SecurityComponent';
@@ -12,14 +19,7 @@ import { UserListComponent } from '../components/UserListComponent';
 import { UserInviteComponent } from '../components/UserInviteComponent';
 import { AccessCodeManager } from '../components/AccessCodeManager';
 import { SupportRecoveryRequestsTab } from '../components/SupportRecoveryRequestsTab';
-import { AuthContext } from '../auth/AuthContext';
-import { updateUserProfile } from '../auth/authApi';
-/**
- * Complete, self-configuring Account Page.
- * Architecture:
- * - Permissions: Read from user.ui_permissions (from Backend).
- * - Roles: Read from user.available_roles (from Backend).
- */
+import { updateUserProfile } from '../auth/authApi'; // Ggf. Pfad anpassen
 export function AccountPage() {
     const { t } = useTranslation();
     const { user, login, loading } = useContext(AuthContext);
@@ -28,9 +28,11 @@ export function AccountPage() {
     const currentTab = searchParams.get('tab') || 'profile';
     const fromRecovery = searchParams.get('from') === 'recovery';
     const fromWeakLogin = searchParams.get('from') === 'weak_login';
-    // 2. Data & Permissions (Single Source of Truth)
+    // 2. Data & Permissions
     const activeRoles = (user === null || user === void 0 ? void 0 : user.available_roles) || [];
     const perms = (user === null || user === void 0 ? void 0 : user.ui_permissions) || {};
+    // NEU: Superuser-Flag prüfen
+    const isSuperUser = (user === null || user === void 0 ? void 0 : user.is_superuser) || false;
     const handleTabChange = (_event, newValue) => {
         setSearchParams({ tab: newValue });
     };
@@ -38,7 +40,7 @@ export function AccountPage() {
         const updatedUser = await updateUserProfile(payload);
         login(updatedUser);
     };
-    // 3. Dynamic Tabs
+    // 3. Dynamic Tabs (angepasst für Superuser)
     const tabs = useMemo(() => {
         if (!user)
             return [];
@@ -46,20 +48,21 @@ export function AccountPage() {
             { value: 'profile', label: t('Account.TAB_PROFILE', 'Profile') },
             { value: 'security', label: t('Account.TAB_SECURITY', 'Security') },
         ];
-        if (perms.can_view_users) {
+        // Logik: Superuser darf ALLES, sonst gelten die spezifischen Permissions
+        if (isSuperUser || perms.can_view_users) {
             list.push({ value: 'users', label: t('Account.TAB_USERS', 'Users') });
         }
-        if (perms.can_invite) {
+        if (isSuperUser || perms.can_invite) {
             list.push({ value: 'invite', label: t('Account.TAB_INVITE', 'Invite') });
         }
-        if (perms.can_manage_access_codes) {
+        if (isSuperUser || perms.can_manage_access_codes) {
             list.push({ value: 'access', label: t('Account.TAB_ACCESS_CODES', 'Access Codes') });
         }
-        if (perms.can_view_support) {
+        if (isSuperUser || perms.can_view_support) {
             list.push({ value: 'support', label: t('Account.TAB_SUPPORT', 'Support') });
         }
         return list;
-    }, [user, perms, t]);
+    }, [user, perms, t, isSuperUser]);
     // 4. Loading & Auth Checks
     if (loading) {
         return (_jsx(Box, { sx: { display: 'flex', justifyContent: 'center', mt: 10 }, children: _jsx(CircularProgress, {}) }));
@@ -69,6 +72,7 @@ export function AccountPage() {
     }
     // 5. Security Check: Is the active tab allowed?
     const activeTabExists = tabs.some(t => t.value === currentTab);
+    // Falls der Tab nicht erlaubt ist (z.B. manuell in URL eingegeben), Fallback auf 'profile'
     const safeTab = activeTabExists ? currentTab : 'profile';
     return (_jsxs(WidePage, { title: t('Account.TITLE', 'Account & Administration'), children: [_jsx(Helmet, { children: _jsxs("title", { children: [t('Account.PAGE_TITLE', 'Account'), " \u2013 ", user.email] }) }), _jsx(Tabs, { value: safeTab, onChange: handleTabChange, variant: "scrollable", scrollButtons: "auto", sx: { mb: 3, borderBottom: 1, borderColor: 'divider' }, children: tabs.map((tab) => (_jsx(Tab, { label: tab.label, value: tab.value }, tab.value))) }), safeTab === 'profile' && (_jsx(Box, { sx: { mt: 2 }, children: _jsx(ProfileComponent, { onSubmit: handleProfileSubmit, showName: true, showPrivacy: true, showCookies: true }) })), safeTab === 'security' && (_jsx(Box, { sx: { mt: 2 }, children: _jsx(SecurityComponent, { fromRecovery: fromRecovery, fromWeakLogin: fromWeakLogin }) })), safeTab === 'users' && (_jsx(Box, { sx: { mt: 2 }, children: _jsx(UserListComponent, { roles: activeRoles, currentUser: user }) })), safeTab === 'invite' && (_jsx(Box, { sx: { mt: 2 }, children: _jsx(UserInviteComponent, {}) })), safeTab === 'access' && (_jsxs(Box, { sx: { mt: 2 }, children: [_jsx(Typography, { variant: "body2", sx: { mb: 2, color: 'text.secondary' }, children: t('Account.ACCESS_CODES_HINT', 'Manage access codes for self-registration.') }), _jsx(AccessCodeManager, {})] })), safeTab === 'support' && (_jsx(Box, { sx: { mt: 2 }, children: _jsx(SupportRecoveryRequestsTab, {}) }))] }));
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@micha.bigler/ui-core-micha",
-  "version": "1.4.41",
+  "version": "2.1.1",
   "main": "dist/index.js",
   "module": "dist/index.js",
   "private": false,

package/src/pages/AccountPage.jsx

@@ -12,6 +12,15 @@ import {
 import { useTranslation } from 'react-i18next';
 
 // Internal Library Components
+// Stellen Sie sicher, dass diese Pfade korrekt auf Ihre Library zeigen!
+// Da Sie '@micha.bigler/ui-core-micha' nutzen, sollten die Imports ggf. so aussehen:
+import { 
+    AuthContext, 
+    // ... andere Komponenten aus der Lib importieren, falls sie dort exportiert sind
+    // Wenn sie lokal sind, lassen Sie die relativen Pfade.
+} from '@micha.bigler/ui-core-micha'; 
+
+// Falls die Komponenten noch lokal sind:
 import { WidePage } from '../layout/PageLayout';
 import { ProfileComponent } from '../components/ProfileComponent';
 import { SecurityComponent } from '../components/SecurityComponent';
@@ -19,15 +28,8 @@ import { UserListComponent } from '../components/UserListComponent';
 import { UserInviteComponent } from '../components/UserInviteComponent';
 import { AccessCodeManager } from '../components/AccessCodeManager';
 import { SupportRecoveryRequestsTab } from '../components/SupportRecoveryRequestsTab';
-import { AuthContext } from '../auth/AuthContext';
-import { updateUserProfile } from '../auth/authApi';
-
-/**
- * Complete, self-configuring Account Page.
- * Architecture:
- * - Permissions: Read from user.ui_permissions (from Backend).
- * - Roles: Read from user.available_roles (from Backend).
- */
+import { updateUserProfile } from '../auth/authApi'; // Ggf. Pfad anpassen
+
 export function AccountPage() {
   const { t } = useTranslation();
   const { user, login, loading } = useContext(AuthContext);
@@ -38,9 +40,12 @@ export function AccountPage() {
   const fromRecovery = searchParams.get('from') === 'recovery';
   const fromWeakLogin = searchParams.get('from') === 'weak_login';
 
-  // 2. Data & Permissions (Single Source of Truth)
+  // 2. Data & Permissions
   const activeRoles = user?.available_roles || [];
   const perms = user?.ui_permissions || {};
+  
+  // NEU: Superuser-Flag prüfen
+  const isSuperUser = user?.is_superuser || false;
 
   const handleTabChange = (_event, newValue) => {
     setSearchParams({ tab: newValue });
@@ -51,7 +56,7 @@ export function AccountPage() {
     login(updatedUser);
   };
 
-  // 3. Dynamic Tabs
+  // 3. Dynamic Tabs (angepasst für Superuser)
   const tabs = useMemo(() => {
     if (!user) return [];
 
@@ -60,24 +65,26 @@ export function AccountPage() {
       { value: 'security', label: t('Account.TAB_SECURITY', 'Security') },
     ];
 
-    if (perms.can_view_users) {
+    // Logik: Superuser darf ALLES, sonst gelten die spezifischen Permissions
+    
+    if (isSuperUser || perms.can_view_users) {
       list.push({ value: 'users', label: t('Account.TAB_USERS', 'Users') });
     }
     
-    if (perms.can_invite) {
+    if (isSuperUser || perms.can_invite) {
       list.push({ value: 'invite', label: t('Account.TAB_INVITE', 'Invite') });
     }
     
-    if (perms.can_manage_access_codes) {
+    if (isSuperUser || perms.can_manage_access_codes) {
       list.push({ value: 'access', label: t('Account.TAB_ACCESS_CODES', 'Access Codes') });
     }
     
-    if (perms.can_view_support) {
+    if (isSuperUser || perms.can_view_support) {
       list.push({ value: 'support', label: t('Account.TAB_SUPPORT', 'Support') });
     }
 
     return list;
-  }, [user, perms, t]);
+  }, [user, perms, t, isSuperUser]);
 
   // 4. Loading & Auth Checks
   if (loading) {
@@ -100,6 +107,7 @@ export function AccountPage() {
 
   // 5. Security Check: Is the active tab allowed?
   const activeTabExists = tabs.some(t => t.value === currentTab);
+  // Falls der Tab nicht erlaubt ist (z.B. manuell in URL eingegeben), Fallback auf 'profile'
   const safeTab = activeTabExists ? currentTab : 'profile';
 
   return (