Reverted to commit 0091584677

2025-12-21 08:31:13 -05:00 · 2025-11-01 15:22:30 +00:00
parent 26e5753807
commit 133141d474
125 changed files with 2316 additions and 9102 deletions
--- a/src/components/settings/PasswordUpdateDialog.tsx
+++ b/src/components/settings/PasswordUpdateDialog.tsx
@@ -1,7 +1,7 @@
 import { useState, useEffect } from 'react';
+import { invokeWithTracking } from '@/lib/edgeFunctionTracking';
 import { useForm } from 'react-hook-form';
 import { zodResolver } from '@hookform/resolvers/zod';
-import { usePasswordUpdateMutation } from '@/hooks/security/usePasswordUpdateMutation';
 import {
  Dialog,
  DialogContent,
@@ -45,7 +45,6 @@ function isErrorWithCode(error: unknown): error is Error & ErrorWithCode {

 export function PasswordUpdateDialog({ open, onOpenChange, onSuccess }: PasswordUpdateDialogProps) {
  const { theme } = useTheme();
-  const { updatePassword, isUpdating } = usePasswordUpdateMutation();
  const [step, setStep] = useState<Step>('password');
  const [loading, setLoading] = useState(false);
  const [nonce, setNonce] = useState<string>('');
@@ -289,26 +288,62 @@ export function PasswordUpdateDialog({ open, onOpenChange, onSuccess }: Password

  const updatePasswordWithNonce = async (password: string, nonceValue: string) => {
    try {
-      updatePassword.mutate(
-        { password, hasMFA, userId },
-        {
-          onSuccess: () => {
-            setStep('success');
-            form.reset();
-            
-            // Auto-close after 2 seconds
-            setTimeout(() => {
-              onOpenChange(false);
-              onSuccess();
-              setStep('password');
-              setTotpCode('');
-            }, 2000);
-          },
-          onError: (error) => {
-            throw error;
+      // Step 2: Update password
+      const { error: updateError } = await supabase.auth.updateUser({
+        password
+      });
+
+      if (updateError) throw updateError;
+
+      // Step 3: Log audit trail
+      const { data: { user } } = await supabase.auth.getUser();
+      if (user) {
+        await supabase.from('admin_audit_log').insert({
+          admin_user_id: user.id,
+          target_user_id: user.id,
+          action: 'password_changed',
+          details: {
+            timestamp: new Date().toISOString(),
+            method: hasMFA ? 'password_with_mfa' : 'password_only',
+            user_agent: navigator.userAgent
          }
+        });
+
+        // Step 4: Send security notification
+        try {
+          await invokeWithTracking(
+            'trigger-notification',
+            {
+              workflowId: 'security-alert',
+              subscriberId: user.id,
+              payload: {
+                alert_type: 'password_changed',
+                timestamp: new Date().toISOString(),
+                device: navigator.userAgent.split(' ')[0]
+              }
+            },
+            user.id
+          );
+        } catch (notifError) {
+          logger.error('Failed to send password change notification', {
+            userId: user!.id,
+            action: 'password_change_notification',
+            error: getErrorMessage(notifError)
+          });
+          // Don't fail the password update if notification fails
        }
-      );
+      }
+
+      setStep('success');
+      form.reset();
+      
+      // Auto-close after 2 seconds
+      setTimeout(() => {
+        onOpenChange(false);
+        onSuccess();
+        setStep('password');
+        setTotpCode('');
+      }, 2000);
    } catch (error: unknown) {
      throw error;
    }