/* ============================================================ Users & Roles Management ============================================================ CRUD for system users: - Display name, username, password, role, email - Audit fields: created by, last edited by + timestamps - Role-based color coding (Admin / Supervisor / Staff) - Filter by role, search by name/username/email ============================================================ */ /* System roles per MTG4 §2.2 — 4-level hierarchy */ const ROLE_META = { Admin: { tone: "danger", desc: "Full system access — manage users, entities, templates, and publish projects." }, Supervisor: { tone: "warn", desc: "Create Project Drafts under designated entities; review work papers; can be Project Creator." }, Staff: { tone: "", desc: "Work on assigned WPIDs — upload, edit, mark for review; cannot create projects." }, Guest: { tone: "ok", desc: "Read-only access to assigned projects — for external auditors, regulators, or observers." }, }; const ROLE_OPTIONS = ["Admin", "Supervisor", "Staff", "Guest"]; /* ====== Add / Edit User Modal ====== */ const UserFormModal = ({ initial, existingEmails, onClose, onSave }) => { const isEdit = !!initial; const [name, setName] = React.useState(initial?.name || ""); const [password, setPassword] = React.useState(""); const [showPwd, setShowPwd] = React.useState(false); const [role, setRole] = React.useState(initial?.role || "Staff"); const [email, setEmail] = React.useState(initial?.email || ""); const [active, setActive] = React.useState(initial?.active !== false); /* Validation — email IS the login identifier (replaced username, 2026-06-12) */ const emailClean = email.trim().toLowerCase(); const emailValid = /^[^\s@]+@[^\s@]+\.[^\s@]+$/.test(emailClean); const emailTaken = emailValid && existingEmails.includes(emailClean) && emailClean !== (initial?.email || "").toLowerCase(); const passwordValid = isEdit ? (password === "" || password.length >= 8) : password.length >= 8; const canSave = name.trim().length >= 2 && emailValid && !emailTaken && passwordValid; const handleSave = () => { onSave({ name: name.trim(), email: emailClean, /* keep the internal username for legacy seed references — derived from the email */ username: initial?.username || emailClean.split("@")[0], ...(password ? { password: "••••••••" } : {}), role, active, }); }; return (

e.stopPropagation()} style={{maxWidth:540, width:"94vw"}}>

{isEdit ? `Edit user — ${initial.name}` : "New user"}

{!isEdit && (

Audit trail recorded Created by you ({CURRENT_ADMIN.name}) at the current time. Future edits are logged automatically.

)}

Display name * setName(e.target.value)} placeholder="e.g. Sarah Mitchell" autoFocus/>

Shown in avatars, sign-offs, and activity logs.

Email * setEmail(e.target.value)} placeholder="sarah@tumweb.co.th" style={!email || (emailValid && !emailTaken) ? undefined : {borderColor:"var(--danger)"}}/> {emailTaken &&

Email already in use

} {email && !emailValid &&

Invalid email format

} {!email &&

Used to sign in.

}

{isEdit ? "New password" : "Password"} {!isEdit && *} {isEdit && (leave blank to keep current)}

setPassword(e.target.value)} placeholder={isEdit ? "Leave blank to keep current password" : "Min. 8 characters"} style={{flex:1, fontFamily:showPwd ? "var(--mono)" : "inherit"}} />

{password && password.length < 8 &&

Must be at least 8 characters

} {!password && !isEdit &&

Min. 8 characters. User will be prompted to change on first login.

}

Role *

{ROLE_META[role]?.desc}

{isEdit && (

Account status

setActive(true)}/> Active setActive(false)}/> Inactive Inactive users keep their history but can't sign in.

)}

); }; /* ====== Set Inactive confirmation — MTG4 §2.2 forbids deleting users ====== */ const SetInactiveUserModal = ({ user, onClose, onConfirm }) => { return (

e.stopPropagation()}>

Set user as Inactive?

{user.name} ({user.email || "@"+user.username}) will be marked Inactive and lose sign-in access. Their historical sign-offs, uploads, and edits remain fully in the audit log.

Linked users cannot be deleted To preserve audit-trail integrity, accounts with project history are never removed. Re-activate any time with the Status switch.

); }; /* ====== Users Screen ====== */ const UsersScreen = ({ state, nav }) => { const [users, setUsers] = React.useState(USERS); const [q, setQ] = React.useState(""); const [roleFilter, setRoleFilter] = React.useState("all"); const [modal, setModal] = React.useState(null); // {type:'add'} | {type:'edit',user} | {type:'delete',user} const counts = { all: users.length, Admin: users.filter(u => u.role === "Admin").length, Supervisor: users.filter(u => u.role === "Supervisor").length, Staff: users.filter(u => u.role === "Staff").length, Guest: users.filter(u => u.role === "Guest").length, inactive: users.filter(u => u.active === false).length, }; /* Sorting — click a column header to toggle asc/desc */ const [sort, setSort] = React.useState({ k: null, dir: "asc" }); const SORT_GETTERS = { name: u => u.name, role: u => u.role, created: u => u.createdAt || "", lastEdit: u => u.lastEditAt || "", status: u => u.active === false ? 1 : 0, }; const filtered = sortRows(users.filter(u => { if (roleFilter !== "all" && u.role !== roleFilter) return false; if (q && !`${u.name} ${u.username} ${u.email}`.toLowerCase().includes(q.toLowerCase())) return false; return true; }), sort, SORT_GETTERS); const handleAdd = (payload) => { const id = "U-NEW" + String(users.filter(u => u.id.startsWith("U-NEW")).length + 1).padStart(2, "0"); const now = "2026-06-08T10:00:00"; const newUser = { id, ...payload, password: payload.password || "••••••••", active: true, createdBy: CURRENT_ADMIN.id, createdAt: now, lastEditBy: CURRENT_ADMIN.id, lastEditAt: now, }; setUsers(prev => [newUser, ...prev]); USERS.unshift(newUser); // also update global so other screens see it nav.toast(`User ${payload.name} created`, "ok"); nav.log && nav.log({ action:"edit", obj:`User ${payload.name}`, detail:`Created user · ${payload.role} · @${payload.username}`, severity:"critical" }); setModal(null); }; const handleEdit = (id, payload) => { const now = "2026-06-08T10:00:00"; const updates = { ...payload, lastEditBy: CURRENT_ADMIN.id, lastEditAt: now }; setUsers(prev => prev.map(u => u.id === id ? { ...u, ...updates } : u)); /* keep global USERS in sync */ const idx = USERS.findIndex(u => u.id === id); if (idx >= 0) USERS[idx] = { ...USERS[idx], ...updates }; nav.toast(`User ${payload.name} updated`, "ok"); nav.log && nav.log({ action:"edit", obj:`User ${payload.name}`, detail:`Updated user · ${Object.keys(payload).join(", ")}`, severity:"critical" }); setModal(null); }; /* Per MTG4 §2.2 — set Inactive instead of delete */ const handleSetInactive = (id) => { const target = users.find(u => u.id === id); setUsers(prev => prev.map(u => u.id === id ? {...u, active: false, lastEditBy: CURRENT_ADMIN.id, lastEditAt: "2026-06-08T10:00:00"} : u)); const idx = USERS.findIndex(u => u.id === id); if (idx >= 0) USERS[idx] = {...USERS[idx], active: false}; nav.toast(`User ${target?.name} set as Inactive`, "warn"); nav.log && nav.log({ action:"edit", obj:`User ${target?.name}`, detail:`Set user as Inactive · was ${target?.role} · audit trail preserved`, severity:"critical" }); setModal(null); }; /* Flip an Inactive account straight back to Active (no confirm needed) */ const handleReactivate = (id) => { const target = users.find(u => u.id === id); setUsers(prev => prev.map(u => u.id === id ? {...u, active: true, lastEditBy: CURRENT_ADMIN.id, lastEditAt: "2026-06-08T10:00:00"} : u)); const idx = USERS.findIndex(u => u.id === id); if (idx >= 0) USERS[idx] = {...USERS[idx], active: true}; nav.toast(`User ${target?.name} reactivated`, "ok"); nav.log && nav.log({ action:"edit", obj:`User ${target?.name}`, detail:`Reactivated user · ${target?.role}`, severity:"critical" }); }; /* Plain text (no colored badge) — the role names alone carry enough meaning */ const roleBadge = (role) => { const m = ROLE_META[role] || {}; return {role}; }; return ( <>

Users & Roles

{users.length} total

Manage system users — display name, login email, password, role, and full audit trail. Users with project history cannot be deleted; set Inactive to revoke access while keeping historical actions intact.

{counts.Admin}Admins

{counts.Supervisor}Supervisors

{counts.Staff}Staff

{counts.Guest > 0 &&

{counts.Guest}Guests

} {counts.inactive > 0 &&

{counts.inactive}Inactive

}

{/* Filter bar */}

setQ(e.target.value)}/>

{ROLE_OPTIONS.map(r => ( ))}

{/* Users table */} {filtered.length === 0 ? (

setModal({type:"add"})}> New user} />

) : (

{filtered.map(u => { const createdBy = userById(u.createdBy); const editedBy = userById(u.lastEditBy); const isMe = u.id === CURRENT_ADMIN.id; /* Hard delete is allowed ONLY while the account has no footprint — not a member/creator of any project, not an entity Project Creator. Covers "created by mistake, delete immediately"; once linked, Inactive is the only way out (audit trail). */ const unlinked = !(state.projects || []).some(p => (p.members || []).includes(u.id) || p.createdBy === u.id) && !(state.entities || []).some(e => (e.creators || []).includes(u.id)); return ( ); })}


{u.name} {isMe && You} {u.email && {u.email} }	{roleBadge(u.role)}	{createdBy && } {createdBy?.name \|\| "—"} {fmtTsShort(u.createdAt)}	{editedBy && } {editedBy?.name \|\| "—"} {fmtTsShort(u.lastEditAt)}	{/* Active/Inactive lives here as a switch — turning OFF asks for confirm (audit-relevant), turning ON reactivates instantly */}	{/* Trash is always visible; it is only ENABLED while the account has no footprint (delete-if-created-by-mistake). Linked accounts keep the icon disabled with a tooltip explaining why — set Inactive instead. */}

)}

{modal?.type === "add" && ( (u.email||"").toLowerCase())} onClose={()=>setModal(null)} onSave={handleAdd} /> )} {modal?.type === "edit" && ( (u.email||"").toLowerCase())} onClose={()=>setModal(null)} onSave={(payload)=>handleEdit(modal.user.id, payload)} /> )} {modal?.type === "delete" && ( setModal(null)} onConfirm={()=>handleSetInactive(modal.user.id)}/> )} ); }; Object.assign(window, { UsersScreen, UserFormModal, SetInactiveUserModal, ROLE_META, ROLE_OPTIONS });