Enforce RLS when user opted in to MFA. (#188)

* Allow Super Admin to view tables using RLS * Replace previous usages of the Admin client using the authed client using the new RLS * Enforce MFA for Super Admin users * Enforce RLS when user opted in to MFA. * Add Super Admin Access Policies and Update Database Types * Consolidate super admin logic into a single function that uses the RPC is_super_admin * Added Super Admin E2E tests * Fixes and improvements * Bump version to 2.5.0
2025-03-02 10:21:01 +07:00
parent 9cf7bf0aac
commit 131b1061e6
61 changed files with 2193 additions and 302 deletions
--- a/packages/features/admin/src/components/admin-reactivate-user-dialog.tsx
+++ b/packages/features/admin/src/components/admin-reactivate-user-dialog.tsx
@@ -1,8 +1,11 @@
 'use client';

+import { useState, useTransition } from 'react';
+
 import { zodResolver } from '@hookform/resolvers/zod';
 import { useForm } from 'react-hook-form';

+import { Alert, AlertDescription, AlertTitle } from '@kit/ui/alert';
 import {
  AlertDialog,
  AlertDialogCancel,
@@ -23,6 +26,7 @@ import {
  FormLabel,
  FormMessage,
 } from '@kit/ui/form';
+import { If } from '@kit/ui/if';
 import { Input } from '@kit/ui/input';

 import { reactivateUserAction } from '../lib/server/admin-server-actions';
@@ -33,6 +37,9 @@ export function AdminReactivateUserDialog(
    userId: string;
  }>,
 ) {
+  const [pending, startTransition] = useTransition();
+  const [error, setError] = useState<boolean>(false);
+
  const form = useForm({
    resolver: zodResolver(ReactivateUserSchema),
    defaultValues: {
@@ -56,11 +63,30 @@ export function AdminReactivateUserDialog(

        <Form {...form}>
          <form
+            data-test={'admin-reactivate-user-form'}
            className={'flex flex-col space-y-8'}
            onSubmit={form.handleSubmit((data) => {
-              return reactivateUserAction(data);
+              startTransition(async () => {
+                try {
+                  await reactivateUserAction(data);
+                  setError(false);
+                } catch {
+                  setError(true);
+                }
+              });
            })}
          >
+            <If condition={error}>
+              <Alert variant={'destructive'}>
+                <AlertTitle>Error</AlertTitle>
+
+                <AlertDescription>
+                  There was an error reactivating the user. Please check the
+                  server logs to see what went wrong.
+                </AlertDescription>
+              </Alert>
+            </If>
+
            <FormField
              name={'confirmation'}
              render={({ field }) => (
@@ -90,7 +116,9 @@ export function AdminReactivateUserDialog(
            <AlertDialogFooter>
              <AlertDialogCancel>Cancel</AlertDialogCancel>

-              <Button type={'submit'}>Reactivate User</Button>
+              <Button disabled={pending} type={'submit'}>
+                {pending ? 'Reactivating...' : 'Reactivate User'}
+              </Button>
            </AlertDialogFooter>
          </form>
        </Form>