membership-fe

andika/membership-fe

Fork 1

Commit Graph

Author	SHA1	Message	Date
Andika	08c8dd3913	Frontend Upload Improvements Solution: Updated frontend/src/components/ComprehensiveImportWizard.js: - Increased timeout from 30s to 120s for large file uploads + R2 storage - Added console error logging for debugging Login Session Timeout Fix 1. frontend/src/utils/api.js - Added BASENAME constant from environment variable - Updated the 401 redirect to use ${BASENAME}/login?session=expired instead of just /login?session=expired 2. frontend/src/pages/Login.js - Added basename constant from environment variable - Updated URL cleanup to use ${basename}/login instead of just /login	2026-02-04 22:52:09 +07:00
Koncept Kit	40a0e3f342	feat(frontend): Comprehensive RBAC implementation across admin pages Option 3 Implementation (Latest): - InviteStaffDialog: Use /admin/roles/assignable endpoint - AdminStaff: Enable admin users to see 'Invite Staff' button Permission Checks Added (8 admin pages): - AdminNewsletters: newsletters.create/edit/delete - AdminFinancials: financials.create/edit/delete - AdminBylaws: bylaws.create/edit/delete - AdminValidations: users.approve, subscriptions.activate - AdminSubscriptions: subscriptions.export/edit/cancel - AdminDonations: donations.export - AdminGallery: gallery.upload/edit/delete - AdminPlans: subscriptions.plans Pattern Established: All admin action buttons now wrapped with hasPermission() checks. UI hides what users can't access, backend enforces rules. Files Modified: 10 files, 100+ permission checks added	2026-01-06 14:45:15 +07:00

Author

SHA1

Message

Date

Andika

08c8dd3913

Frontend Upload Improvements

Solution: Updated frontend/src/components/ComprehensiveImportWizard.js:
  - Increased timeout from 30s to 120s for large file uploads + R2 storage
  - Added console error logging for debugging

Login Session Timeout Fix

1. frontend/src/utils/api.js
  - Added BASENAME constant from environment variable
  - Updated the 401 redirect to use ${BASENAME}/login?session=expired instead of just /login?session=expired

  2. frontend/src/pages/Login.js
  - Added basename constant from environment variable
  - Updated URL cleanup to use ${basename}/login instead of just /login

2026-02-04 22:52:09 +07:00

Koncept Kit

40a0e3f342

feat(frontend): Comprehensive RBAC implementation across admin pages

**Option 3 Implementation (Latest):**
- InviteStaffDialog: Use /admin/roles/assignable endpoint
- AdminStaff: Enable admin users to see 'Invite Staff' button

**Permission Checks Added (8 admin pages):**
- AdminNewsletters: newsletters.create/edit/delete
- AdminFinancials: financials.create/edit/delete
- AdminBylaws: bylaws.create/edit/delete
- AdminValidations: users.approve, subscriptions.activate
- AdminSubscriptions: subscriptions.export/edit/cancel
- AdminDonations: donations.export
- AdminGallery: gallery.upload/edit/delete
- AdminPlans: subscriptions.plans

**Pattern Established:**
All admin action buttons now wrapped with hasPermission() checks.
UI hides what users can't access, backend enforces rules.

**Files Modified:** 10 files, 100+ permission checks added

2026-01-06 14:45:15 +07:00

2 Commits