import { useState, useEffect, useRef } from 'react'; import { useToast } from '../contexts/ToastContext.jsx'; import { api } from '../utils/api.js'; import Avatar from './Avatar.jsx'; function isValidEmail(email) { return /^[^\s@]+@[^\s@]+\.[^\s@]+$/.test(email); } function parseCSV(text) { const lines = text.split(/\r?\n/).map(l => l.trim()).filter(Boolean); const rows = [], invalid = []; for (let i = 0; i < lines.length; i++) { const line = lines[i]; if (i === 0 && /^name\s*,/i.test(line)) continue; const parts = line.split(',').map(p => p.trim()); if (parts.length < 2 || parts.length > 4) { invalid.push({ line, reason: 'Must have 2–4 comma-separated fields' }); continue; } const [name, email, password, role] = parts; if (!name || !/\S+\s+\S+/.test(name)) { invalid.push({ line, reason: 'Name must be two words (First Last)' }); continue; } if (!email || !isValidEmail(email)) { invalid.push({ line, reason: `Invalid email: "${email}"` }); continue; } rows.push({ name: name.trim(), email: email.trim().toLowerCase(), password: (password || '').trim(), role: (role || 'member').trim().toLowerCase() }); } return { rows, invalid }; } function UserRow({ u, onUpdated }) { const toast = useToast(); const [open, setOpen] = useState(false); const [resetPw, setResetPw] = useState(''); const [showReset, setShowReset] = useState(false); const [editName, setEditName] = useState(false); const [nameVal, setNameVal] = useState(u.name); const [roleWarning, setRoleWarning] = useState(false); const handleRole = async (role) => { if (!role) { setRoleWarning(true); return; } setRoleWarning(false); try { await api.updateRole(u.id, role); toast('Role updated', 'success'); onUpdated(); } catch (e) { toast(e.message, 'error'); } }; const handleResetPw = async () => { if (!resetPw || resetPw.length < 6) return toast('Min 6 characters', 'error'); try { await api.resetPassword(u.id, resetPw); toast('Password reset', 'success'); setShowReset(false); setResetPw(''); onUpdated(); } catch (e) { toast(e.message, 'error'); } }; const handleSaveName = async () => { if (!nameVal.trim()) return toast('Name cannot be empty', 'error'); try { const { name } = await api.updateName(u.id, nameVal.trim()); toast(name !== nameVal.trim() ? `Saved as "${name}"` : 'Name updated', 'success'); setEditName(false); onUpdated(); } catch (e) { toast(e.message, 'error'); } }; const handleSuspend = async () => { if (!confirm(`Suspend ${u.name}?`)) return; try { await api.suspendUser(u.id); toast('User suspended', 'success'); onUpdated(); } catch (e) { toast(e.message, 'error'); } }; const handleActivate = async () => { try { await api.activateUser(u.id); toast('User activated', 'success'); onUpdated(); } catch (e) { toast(e.message, 'error'); } }; const handleDelete = async () => { if (u.role === 'admin') return toast('Demote to member before deleting an admin', 'error'); if (!confirm(`Delete ${u.name}? Their messages will remain but they cannot log in.`)) return; try { await api.deleteUser(u.id); toast('User deleted', 'success'); onUpdated(); } catch (e) { toast(e.message, 'error'); } }; return (
{/* Row header — always visible */} {/* Accordion panel */} {open && !u.is_default_admin && (
{/* Edit name */} {editName ? (
setNameVal(e.target.value)} autoComplete="new-password" onKeyDown={e => { if (e.key === 'Enter') handleSaveName(); if (e.key === 'Escape') { setEditName(false); setNameVal(u.name); } }} />
) : ( )} {/* Role selector */}
{roleWarning && Role Required}
{/* Reset password */} {showReset ? (
setResetPw(e.target.value)} autoComplete="new-password" onKeyDown={e => { if (e.key === 'Enter') handleResetPw(); if (e.key === 'Escape') { setShowReset(false); setResetPw(''); } }} />
) : ( )} {/* Suspend / Activate / Delete */}
{u.status === 'active' ? ( ) : u.status === 'suspended' ? ( ) : null}
)}
); } export default function UserManagerModal({ onClose }) { const isMobile = window.innerWidth < 768; const toast = useToast(); const [users, setUsers] = useState([]); const [loading, setLoading] = useState(true); const [search, setSearch] = useState(''); const [tab, setTab] = useState('users'); // Reset bulk tab if somehow active on mobile useEffect(() => { if(isMobile && tab === 'bulk') setTab('users'); }, [isMobile]); const [creating, setCreating] = useState(false); const [form, setForm] = useState({ name: '', email: '', password: '', role: 'member' }); const [csvFile, setCsvFile] = useState(null); const [csvRows, setCsvRows] = useState([]); const [csvInvalid, setCsvInvalid] = useState([]); const [bulkResult, setBulkResult] = useState(null); const [bulkLoading, setBulkLoading] = useState(false); const fileRef = useRef(null); const [userPass, setUserPass] = useState('user@1234'); const [loadError, setLoadError] = useState(''); const load = async () => { setLoadError(''); setLoading(true); try { const { users } = await api.getUsers(); setUsers(users || []); } catch (e) { setLoadError(e.message || 'Failed to load users'); } finally { setLoading(false); } }; useEffect(() => { load(); api.getSettings().then(({ settings }) => { if (settings.user_pass) setUserPass(settings.user_pass); }).catch(() => {}); }, []); const filtered = users.filter(u => !search || u.name?.toLowerCase().includes(search.toLowerCase()) || u.email?.toLowerCase().includes(search.toLowerCase()) ); const handleCreate = async () => { if (!form.name.trim() || !form.email.trim()) return toast('Name and email are required', 'error'); if (!isValidEmail(form.email)) return toast('Invalid email address', 'error'); if (!/\S+\s+\S+/.test(form.name.trim())) return toast('Name must be two words (First Last)', 'error'); setCreating(true); try { await api.createUser(form); toast('User created', 'success'); setForm({ name: '', email: '', password: '', role: 'member' }); setTab('users'); load(); } catch (e) { toast(e.message, 'error'); } finally { setCreating(false); } }; const handleFileSelect = (e) => { const file = e.target.files?.[0]; if (!file) return; setCsvFile(file); setBulkResult(null); const reader = new FileReader(); reader.onload = (ev) => { const { rows, invalid } = parseCSV(ev.target.result); setCsvRows(rows); setCsvInvalid(invalid); }; reader.readAsText(file); }; const handleBulkImport = async () => { if (!csvRows.length) return; setBulkLoading(true); try { const result = await api.bulkUsers(csvRows); setBulkResult(result); setCsvRows([]); setCsvFile(null); setCsvInvalid([]); if (fileRef.current) fileRef.current.value = ''; load(); } catch (e) { toast(e.message, 'error'); } finally { setBulkLoading(false); } }; return (
e.target === e.currentTarget && onClose()}>
{/* form wrapper suppresses Chrome Android's autofill chip bar; autoComplete="off" on individual inputs is ignored by Chrome but respected on the form element */}
e.preventDefault()}>

User Manager

{!isMobile && }
{/* Users list — accordion */} {tab === 'users' && ( <> setSearch(e.target.value)} /> {loading ? (
) : loadError ? (
⚠ {loadError}
) : (
{filtered.map(u => ( ))}
)} )} {/* Create user */} {tab === 'create' && (
setForm(p => ({ ...p, name: e.target.value }))} />
setForm(p => ({ ...p, email: e.target.value }))} />
setForm(p => ({ ...p, password: e.target.value }))} />

User must change password on first login. Duplicate names get a number suffix automatically.

)} {/* Bulk import */} {tab === 'bulk' && (

CSV Format

name,email,password,role{'\n'}Jane Smith,jane@company.local,,member{'\n'}Bob Jones,bob@company.com,TempPass1,admin

Name and email are required. If left blank, Temp Password defaults to {userPass}, Role defaults to member. Lines with duplicate emails are skipped. Duplicate names get a number suffix.

{csvFile && ( {csvFile.name} {csvRows.length > 0 && ({csvRows.length} valid)} )} {csvRows.length > 0 && ( )}
{csvInvalid.length > 0 && (

{csvInvalid.length} line{csvInvalid.length !== 1 ? 's' : ''} skipped — invalid format

{csvInvalid.map((e, i) => (
{e.line} — {e.reason}
))}
)} {bulkResult && (

✓ {bulkResult.created.length} user{bulkResult.created.length !== 1 ? 's' : ''} created successfully

{bulkResult.skipped.length > 0 && ( <>

{bulkResult.skipped.length} account{bulkResult.skipped.length !== 1 ? 's' : ''} skipped:

{bulkResult.skipped.map((s, i) => (
{s.email} {s.reason}
))}
)}
)}
)}
); }