feat: Implement complete API optimization plan

2025-12-21 15:51:13 -05:00 · 2025-10-31 12:28:24 +00:00
parent 631ce9c89e
commit ca9aa757ae
9 changed files with 363 additions and 333 deletions
--- a/src/components/settings/PasswordUpdateDialog.tsx
+++ b/src/components/settings/PasswordUpdateDialog.tsx
@@ -1,7 +1,7 @@
 import { useState, useEffect } from 'react';
-import { invokeWithTracking } from '@/lib/edgeFunctionTracking';
 import { useForm } from 'react-hook-form';
 import { zodResolver } from '@hookform/resolvers/zod';
+import { usePasswordUpdateMutation } from '@/hooks/security/usePasswordUpdateMutation';
 import {
  Dialog,
  DialogContent,
@@ -45,6 +45,7 @@ function isErrorWithCode(error: unknown): error is Error & ErrorWithCode {

 export function PasswordUpdateDialog({ open, onOpenChange, onSuccess }: PasswordUpdateDialogProps) {
  const { theme } = useTheme();
+  const { updatePassword, isUpdating } = usePasswordUpdateMutation();
  const [step, setStep] = useState<Step>('password');
  const [loading, setLoading] = useState(false);
  const [nonce, setNonce] = useState<string>('');
@@ -288,62 +289,26 @@ export function PasswordUpdateDialog({ open, onOpenChange, onSuccess }: Password

  const updatePasswordWithNonce = async (password: string, nonceValue: string) => {
    try {
-      // Step 2: Update password
-      const { error: updateError } = await supabase.auth.updateUser({
-        password
-      });
-
-      if (updateError) throw updateError;
-
-      // Step 3: Log audit trail
-      const { data: { user } } = await supabase.auth.getUser();
-      if (user) {
-        await supabase.from('admin_audit_log').insert({
-          admin_user_id: user.id,
-          target_user_id: user.id,
-          action: 'password_changed',
-          details: {
-            timestamp: new Date().toISOString(),
-            method: hasMFA ? 'password_with_mfa' : 'password_only',
-            user_agent: navigator.userAgent
+      updatePassword.mutate(
+        { password, hasMFA, userId },
+        {
+          onSuccess: () => {
+            setStep('success');
+            form.reset();
+            
+            // Auto-close after 2 seconds
+            setTimeout(() => {
+              onOpenChange(false);
+              onSuccess();
+              setStep('password');
+              setTotpCode('');
+            }, 2000);
+          },
+          onError: (error) => {
+            throw error;
          }
-        });
-
-        // Step 4: Send security notification
-        try {
-          await invokeWithTracking(
-            'trigger-notification',
-            {
-              workflowId: 'security-alert',
-              subscriberId: user.id,
-              payload: {
-                alert_type: 'password_changed',
-                timestamp: new Date().toISOString(),
-                device: navigator.userAgent.split(' ')[0]
-              }
-            },
-            user.id
-          );
-        } catch (notifError) {
-          logger.error('Failed to send password change notification', {
-            userId: user!.id,
-            action: 'password_change_notification',
-            error: getErrorMessage(notifError)
-          });
-          // Don't fail the password update if notification fails
        }
-      }
-
-      setStep('success');
-      form.reset();
-      
-      // Auto-close after 2 seconds
-      setTimeout(() => {
-        onOpenChange(false);
-        onSuccess();
-        setStep('password');
-        setTotpCode('');
-      }, 2000);
+      );
    } catch (error: unknown) {
      throw error;
    }