Implement admin back-pass flow and guarded admin actions

2026-02-08 14:20:38 +01:00
parent 4ee327fb4e
commit 5595bfd3b1
25 changed files with 572 additions and 109 deletions
--- a/wwwroot/js/app-auth-handlers.js
+++ b/wwwroot/js/app-auth-handlers.js
@@ -1,6 +1,11 @@
 import { api } from "./api.js";
 import { t } from "./i18n.js";
-import { state, clearUserState, setSavedUsername } from "./state.js";
+import {
+    state,
+    clearUserState,
+    clearSavedUsername,
+    setSavedUsername,
+} from "./state.js";
 import { $, toast } from "./dom.js";
 import {
    handleAuthError,
@@ -139,24 +144,38 @@ function setupLogoutHandler() {
    const logoutBtn = $("logout");
    if (!logoutBtn) return;

+    const clearAuthFormFields = () => {
+        [
+            "login-username",
+            "login-password",
+            "register-username",
+            "register-password",
+            "register-displayName",
+            "register-adminkey",
+        ].forEach((id) => {
+            const input = $(id);
+            if (input) input.value = "";
+        });
+
+        ["login-consent", "register-consent"].forEach((id) => {
+            const box = $(id);
+            if (box) box.checked = false;
+        });
+    };
+
    logoutBtn.addEventListener("click", async (e) => {
        e.preventDefault();
-        const lastUser = state.me?.username;
        try {
            await api.logout();
        } catch (err) {
            toast(err.message, true);
        }
        clearUserState();
+        clearSavedUsername();
        state.isAuthenticated = false;
+        setAuthMode("login");
        setAuthUI(false);
-        if (lastUser) {
-            setSavedUsername(lastUser);
-            const loginUser = $("login-username");
-            if (loginUser) loginUser.value = lastUser;
-            const loginPass = $("login-password");
-            if (loginPass) loginPass.value = "";
-        }
+        clearAuthFormFields();
    });
 }