Scott.Idem/OSIT-AE-App-Svelte
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: add element_access_denied.svelte; use in badge review page

Browse Source 
- New reusable element_access_denied.svelte with title, message, action props
- Badge review page: swap inline 'Access Denied' card with the component
- Project doc: all 6 steps complete, status → Complete
This commit is contained in:
Scott Idem
2026-03-11 17:06:11 -04:00
parent 0c11cfb3e2
commit c73b5a09e4
3 changed files with 44 additions and 17 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
documentation/PROJECT__AE_Access_Control_UX.md
View File

@@ -1,6 +1,6 @@
# PROJECT: Access Control UX — Session Expired & Access Denied
**Status:** In Progress
**Status:** Complete
**Priority:** Medium-High
**Created:** 2026-02
**Updated:** 2026-03-11
@@ -231,7 +231,7 @@ Add the dismissible banner to the template (after/near the existing `is_offline`
---
### Step 4: Create `element_access_denied.svelte` ⬅ NEXT
### Step 4: Create `element_access_denied.svelte` ✅ DONE (2026-03-11)
**File:** `src/lib/elements/element_access_denied.svelte`
@@ -239,7 +239,7 @@ Reusable card for inline access denial. Props per design decision 4c.
---
### Step 5: Fix Event Settings `alert()` ⬅ NEXT
### Step 5: Fix Event Settings `alert()` ✅ DONE (2026-03-11)
**File:** `src/routes/events/[event_id]/settings/+page.svelte`
@@ -250,7 +250,7 @@ Replace the module-level `if (!$ae_loc.administrator_access)` + `alert()` block
---
### Step 6 (Optional / Low Priority): Swap badge review inline card
### Step 6 (Optional / Low Priority): Swap badge review inline card ✅ DONE (2026-03-11)
**File:** `src/routes/events/[event_id]/(badges)/badges/[badge_id]/review/+page.svelte`

34
src/lib/elements/element_access_denied.svelte Normal file
View File

@@ -0,0 +1,34 @@
<script lang="ts">
import { ShieldX } from '@lucide/svelte';
interface Props {
title?: string;
message?: string;
action_label?: string;
on_action?: () => void;
}
let {
title = 'Access Denied',
message = 'You do not have permission to view this content.',
action_label = '',
on_action = undefined
}: Props = $props();
</script>
<div class="card p-6 space-y-4 max-w-sm">
<div class="flex items-center gap-2 text-error-500">
<ShieldX size="1.2em" />
<h3 class="text-lg font-semibold">{title}</h3>
</div>
<p class="text-sm text-gray-700">{message}</p>
{#if action_label && on_action}
<button
type="button"
class="btn preset-tonal-surface w-full"
onclick={on_action}
>
{action_label}
</button>
{/if}
</div>

19
src/routes/events/[event_id]/(badges)/badges/[badge_id]/review/+page.svelte
View File

@@ -30,6 +30,7 @@
import { ArrowLeft, Check, Link, LoaderCircle, Mail, Printer } from 'lucide-svelte';
import Comp_badge_review_form from '../ae_comp__badge_review_form.svelte';
import Element_access_denied from '$lib/elements/element_access_denied.svelte';
let event_badge_id = $derived(page.params.badge_id);
let event_id = $derived(page.params.event_id);
@@ -315,19 +316,11 @@
{:else if passcode_checked && !passcode_valid}
<!-- Invalid passcode -->
<div class="card p-6 space-y-4 max-w-sm">
<div class="flex items-center gap-2 text-error-500">
<h3 class="text-lg font-semibold">Access Denied</h3>
</div>
<p class="text-sm text-gray-700">{passcode_error}</p>
<button
type="button"
class="btn preset-tonal-surface w-full"
onclick={() => { passcode_checked = false; passcode_error = ''; entered_passcode = ''; }}
>
Try Again
</button>
</div>
<Element_access_denied
message={passcode_error}
action_label="Try Again"
on_action={() => { passcode_checked = false; passcode_error = ''; entered_passcode = ''; }}
/>
{/if}
{:else if is_loading_idb || !event_badge_id}