From 36baafeb81c0842bc54f965fe1c0de92b8099aa8 Mon Sep 17 00:00:00 2001
From: Baozier <byn9826@gmail.com>
Date: Thu, 12 Dec 2024 20:48:50 -0500
Subject: [PATCH] Require confirm before unlink account and reset MFA on admin
 panel (#201)

---
 .../app/[lang]/users/[authId]/page.tsx        | 70 ++++++++++++++++---
 admin-panel/translations/en.json              |  4 ++
 admin-panel/translations/fr.json              |  4 ++
 3 files changed, 70 insertions(+), 8 deletions(-)

diff --git a/admin-panel/app/[lang]/users/[authId]/page.tsx b/admin-panel/app/[lang]/users/[authId]/page.tsx
index 96e551f..df3a0e7 100644
--- a/admin-panel/app/[lang]/users/[authId]/page.tsx
+++ b/admin-panel/app/[lang]/users/[authId]/page.tsx
@@ -45,6 +45,7 @@ import {
   usePutApiV1UsersByAuthIdMutation,
   UserDetail,
 } from 'services/auth/api'
+import ConfirmModal from 'components/ConfirmModal'
 
 const Page = () => {
   const { authId } = useParams()
@@ -60,6 +61,11 @@ const Page = () => {
   const [emailResent, setEmailResent] = useState(false)
   const [userRoles, setUserRoles] = useState<string[] | null>([])
 
+  const [isUnlinking, setIsUnlinking] = useState(false)
+  const [isResettingSmsMfa, setIsResettingSmsMfa] = useState(false)
+  const [isResettingOtpMfa, setIsResettingOtpMfa] = useState(false)
+  const [isResettingEmailMfa, setIsResettingEmailMfa] = useState(false)
+
   const userInfo = useSignalValue(userInfoSignal)
   const enableConsent = configs.ENABLE_USER_APP_CONSENT
   const enableAccountLock = !!configs.ACCOUNT_LOCKOUT_THRESHOLD
@@ -159,16 +165,31 @@ const Page = () => {
     if (res.data?.success) setEmailResent(true)
   }
 
-  const handleResetOtpMfa = async () => {
+  const handleClickResetOtpMfa = () => setIsResettingOtpMfa(true)
+
+  const handleCancelResetOtpMfa = () => setIsResettingOtpMfa(false)
+
+  const handleConfirmResetOtpMfa = async () => {
     await unenrollOtpMfa({ authId: String(authId) })
+    setIsResettingOtpMfa(false)
   }
 
-  const handleResetSmsMfa = async () => {
+  const handleClickResetSmsMfa = () => setIsResettingSmsMfa(true)
+
+  const handleCancelResetSmsMfa = () => setIsResettingSmsMfa(false)
+
+  const handleConfirmResetSmsMfa = async () => {
     await unenrollSmsMfa({ authId: String(authId) })
+    setIsResettingSmsMfa(false)
   }
 
-  const handleResetEmailMfa = async () => {
+  const handleClickResetEmailMfa = () => setIsResettingEmailMfa(true)
+
+  const handleCancelResetEmailMfa = () => setIsResettingEmailMfa(false)
+
+  const handleConfirmResetEmailMfa = async () => {
     await unenrollEmailMfa({ authId: String(authId) })
+    setIsResettingEmailMfa(false)
   }
 
   const handleEnrollOtpMfa = async () => {
@@ -183,8 +204,13 @@ const Page = () => {
     await enrollEmailMfa({ authId: String(authId) })
   }
 
-  const handleUnlink = async () => {
+  const handleCancelUnlink = () => setIsUnlinking(false)
+
+  const handleClickUnlink = () => setIsUnlinking(true)
+
+  const handleConfirmUnlink = async () => {
     await unlinkAccount({ authId: String(authId) })
+    setIsUnlinking(false)
   }
 
   const handleToggleUserRole = (role: string) => {
@@ -212,7 +238,7 @@ const Page = () => {
         {user.isActive && isEmailEnrolled && !configs.EMAIL_MFA_IS_REQUIRED && (
           <Button
             size='xs'
-            onClick={handleResetEmailMfa}>
+            onClick={handleClickResetEmailMfa}>
             {t('users.resetMfa')}
           </Button>
         )}
@@ -238,7 +264,7 @@ const Page = () => {
         {user.mfaTypes.includes('otp') && user.isActive && (
           <Button
             size='xs'
-            onClick={handleResetOtpMfa}
+            onClick={handleClickResetOtpMfa}
           >
             {t('users.resetMfa')}
           </Button>
@@ -260,7 +286,7 @@ const Page = () => {
         {user.mfaTypes.includes('sms') && user.isActive && (
           <Button
             size='xs'
-            onClick={handleResetSmsMfa}
+            onClick={handleClickResetSmsMfa}
           >
             {t('users.resetMfa')}
           </Button>
@@ -292,7 +318,7 @@ const Page = () => {
     return (
       <Button
         size='xs'
-        onClick={handleUnlink}
+        onClick={handleClickUnlink}
       >
         {t('users.unlink')}
       </Button>
@@ -330,6 +356,13 @@ const Page = () => {
               <Table.Row>
                 <Table.Cell>{t('users.email')}</Table.Cell>
                 <Table.Cell>
+                  <ConfirmModal
+                    title={t('users.resetEmailMfaTitle')}
+                    show={isResettingEmailMfa}
+                    onConfirm={handleConfirmResetEmailMfa}
+                    onClose={handleCancelResetEmailMfa}
+                    confirmButtonText={t('users.resetMfa')}
+                  />
                   <div className='flex flex-col gap-2'>
                     <div className='flex items-center gap-4 max-md:gap-2 max-md:flex-col max-md:items-start'>
                       <p>{user.email}</p>
@@ -358,6 +391,13 @@ const Page = () => {
             )}
             {!user.socialAccountId && (
               <Table.Row>
+                <ConfirmModal
+                  title={t('users.resetOtpMfaTitle')}
+                  show={isResettingOtpMfa}
+                  onConfirm={handleConfirmResetOtpMfa}
+                  onClose={handleCancelResetOtpMfa}
+                  confirmButtonText={t('users.resetMfa')}
+                />
                 <Table.Cell>{t('users.otpMfa')}</Table.Cell>
                 <TableCell>
                   <div className='flex max-md:flex-col gap-2'>
@@ -383,6 +423,13 @@ const Page = () => {
             )}
             {!user.socialAccountId && (
               <Table.Row>
+                <ConfirmModal
+                  title={t('users.resetSmsMfaTitle')}
+                  show={isResettingSmsMfa}
+                  onConfirm={handleConfirmResetSmsMfa}
+                  onClose={handleCancelResetSmsMfa}
+                  confirmButtonText={t('users.resetMfa')}
+                />
                 <Table.Cell>{t('users.smsMfa')}</Table.Cell>
                 <TableCell>
                   <div className='flex max-md:flex-col gap-2'>
@@ -408,6 +455,13 @@ const Page = () => {
             )}
             {user.linkedAuthId && (
               <Table.Row>
+                <ConfirmModal
+                  title={t('users.unlinkTitle')}
+                  show={isUnlinking}
+                  onConfirm={handleConfirmUnlink}
+                  onClose={handleCancelUnlink}
+                  confirmButtonText={t('users.unlink')}
+                />
                 <Table.Cell>{t('users.linkedWith')}</Table.Cell>
                 <Table.Cell>
                   <div className='flex max-md:flex-col gap-2'>
diff --git a/admin-panel/translations/en.json b/admin-panel/translations/en.json
index 0f05f8c..bf8b30c 100644
--- a/admin-panel/translations/en.json
+++ b/admin-panel/translations/en.json
@@ -72,6 +72,7 @@
     "status": "Status",
     "linkedWith": "Linked Account",
     "unlink": "Unlink",
+    "unlinkTitle": "Are you sure you want to unlink these accounts?",
     "loginCount": "Login Count",
     "emailVerified": "Email Verified",
     "emailNotVerified": "Email not Verified",
@@ -80,6 +81,9 @@
     "otpMfaVerified": "OTP MFA Verified",
     "smsMfaEnrolled": "SMS MFA Enrolled",
     "smsMfaVerified": "SMS MFA Verified",
+    "resetEmailMfaTitle": "Are you sure you want to reset email MFA?",
+    "resetSmsMfaTitle": "Are you sure you want to reset SMS MFA?",
+    "resetOtpMfaTitle": "Are you sure you want to reset OTP MFA?",
     "resetMfa": "Reset MFA",
     "enrollMfa": "Enroll MFA",
     "otpMfa": "OTP MFA",
diff --git a/admin-panel/translations/fr.json b/admin-panel/translations/fr.json
index 4543af4..0826bf6 100644
--- a/admin-panel/translations/fr.json
+++ b/admin-panel/translations/fr.json
@@ -72,6 +72,7 @@
     "status": "Statut",
     "linkedWith": "Compte associé",
     "unlink": "Dissocier",
+    "unlinkTitle": "Êtes-vous sûr de vouloir dissocier ces comptes ?",
     "loginCount": "Nombre de connexions",
     "emailVerified": "E-mail vérifié",
     "emailNotVerified": "E-mail non vérifié",
@@ -80,6 +81,9 @@
     "otpMfaVerified": "MFA par OTP vérifié",
     "smsMfaEnrolled": "MFA par SMS activé",
     "smsMfaVerified": "MFA par SMS vérifié",
+    "resetEmailMfaTitle": "Êtes-vous sûr de vouloir réinitialiser l’authentification MFA par e-mail ?",
+	  "resetSmsMfaTitle": "Êtes-vous sûr de vouloir réinitialiser l’authentification MFA par SMS ?",
+	  "resetOtpMfaTitle": "Êtes-vous sûr de vouloir réinitialiser l’authentification MFA par OTP ?",
     "resetMfa": "Réinitialiser MFA",
     "enrollMfa": "Inscrire MFA",
     "otpMfa": "MFA par OTP",