"use client"; import React, { useCallback, useEffect, useState } from "react"; import MainTitle from "@/components/layout/dashboard/main-title"; import { Button } from "@/components/ui/button"; import { Dialog, DialogContent, DialogFooter, DialogHeader, DialogTitle, } from "@/components/ui/dialog"; import { Input } from "@/components/ui/input"; import { Label } from "@/components/ui/label"; import { Select, SelectContent, SelectItem, SelectTrigger, SelectValue, } from "@/components/ui/select"; import { Table, TableBody, TableCell, TableHead, TableHeader, TableRow, } from "@/components/ui/table"; import DataService from "@/config/axios"; import { useRequireSuperAdmin } from "@/hooks/use-require-super-admin"; import { getApiErrorMessage } from "@/lib/api-error"; import { toast } from "sonner"; import { Pencil, Trash2 } from "lucide-react"; type PermRef = { _id: string; name: string; label?: string; group?: string }; type RoleRow = { _id: string; name: string; visibleFor?: { _id: string; name: string } | null; permissions?: PermRef[]; }; export default function AdminRolesBlock() { const ready = useRequireSuperAdmin(); const [roles, setRoles] = useState([]); const [permissionCatalog, setPermissionCatalog] = useState([]); const [loading, setLoading] = useState(true); const [open, setOpen] = useState(false); const [editing, setEditing] = useState(null); const [form, setForm] = useState({ name: "", visibleForId: "", permissionIds: [] as string[] }); const load = useCallback(async () => { try { const [rolesRes, permRes] = await Promise.all([ DataService.get("/admin/roles"), DataService.get("/admin/permissions"), ]); setRoles(rolesRes.data?.data || []); setPermissionCatalog(permRes.data?.data || []); } catch (e) { toast.error(getApiErrorMessage(e, "Failed to load roles")); } finally { setLoading(false); } }, []); useEffect(() => { if (ready) load(); }, [ready, load]); const openCreate = () => { setEditing(null); setForm({ name: "", visibleForId: "", permissionIds: [] }); setOpen(true); }; const openEdit = (r: RoleRow) => { setEditing(r); setForm({ name: r.name, visibleForId: r.visibleFor?._id || "", permissionIds: (r.permissions || []).map((p) => p._id), }); setOpen(true); }; const togglePermission = (id: string) => { setForm((f) => ({ ...f, permissionIds: f.permissionIds.includes(id) ? f.permissionIds.filter((x) => x !== id) : [...f.permissionIds, id], })); }; const permissionsByGroup = permissionCatalog.reduce>((acc, p) => { const g = p.group || "General"; if (!acc[g]) acc[g] = []; acc[g].push(p); return acc; }, {}); const save = async () => { try { const visiblePayload = form.visibleForId && form.visibleForId !== "__none__" ? form.visibleForId : null; if (editing && visiblePayload === editing._id) { toast.error("A role cannot be visible only to itself"); return; } if (editing) { await DataService.patch(`/admin/roles/${editing._id}`, { name: form.name.trim(), visibleFor: visiblePayload, permissions: form.permissionIds, }); toast.success("Role updated"); } else { await DataService.post("/admin/roles", { name: form.name.trim(), visibleFor: visiblePayload, permissions: form.permissionIds, }); toast.success("Role created"); } setOpen(false); load(); } catch (e: unknown) { toast.error(getApiErrorMessage(e, "Could not save role")); } }; const remove = async (r: RoleRow) => { if (!confirm(`Delete role "${r.name}"?`)) return; try { await DataService.delete(`/admin/roles/${r._id}`); toast.success("Role deleted"); load(); } catch (e: unknown) { toast.error(getApiErrorMessage(e, "Could not delete role")); } }; const parentOptions = (currentId?: string) => roles.filter((x) => x._id !== currentId); if (!ready || loading) { return (

Loading…

); } return (

Visible to controls who may assign this role when adding users: pick the manager role (e.g. "User" or "Admin"). Users with that role then see only those roles in the user form (e.g. three roles for a User manager). Leave{" "} Visible to empty for roles only a super admin may assign (system-wide roles).

Role name Visible to (role) Permissions {roles.length === 0 ? ( No roles — create one to assign to users. ) : ( roles.map((r) => ( {r.name} {r.visibleFor?.name || "—"} {(r.permissions?.length || 0) === 0 ? "—" : `${r.permissions!.length} selected`} )) )}

); }