TwoTalesDev/4WDCSA.co.za
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: improve CSRF token handling and add debugging to membership linking JavaScript

Browse Source 
- Fixed CSRF token selector to be form-specific instead of page-global
- Added console.log statements for debugging AJAX requests
- Improved error handling with better error messages showing HTTP status
- Better error message when linking fails (shows actual error from server)
This commit is contained in:
twotalesanimation
2025-12-05 11:23:55 +02:00
parent 619ad0b320
commit 924e5cdbc9
1 changed files with 12 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
src/pages/memberships/membership_details.php
View File

@@ -543,9 +543,12 @@ if (empty($application['id_number'])) {
// Link User Form // Link User Form
$('#linkUserForm').on('submit', function(e) { $('#linkUserForm').on('submit', function(e) {
e.preventDefault(); e.preventDefault();
const $form = $(this);
const email = $('#secondary_email').val(); const email = $('#secondary_email').val();
const relationship = $('#relationship').val(); const relationship = $('#relationship').val();
const csrfToken = $('input[name="csrf_token"]').val(); const csrfToken = $form.find('input[name="csrf_token"]').val();
console.log('Submitting link form:', { email, relationship, csrfToken });
$.ajax({ $.ajax({
url: 'link_membership_user', url: 'link_membership_user',
@@ -557,6 +560,7 @@ if (empty($application['id_number'])) {
csrf_token: csrfToken csrf_token: csrfToken
}, },
success: function(response) { success: function(response) {
console.log('Link response:', response);
if (response.success) { if (response.success) {
$('#linkMessage').html('<div class="alert alert-success" style="padding: 12px; border-radius: 4px; background: #d4edda; color: #155724; border: 1px solid #c3e6cb;">' + response.message + '</div>'); $('#linkMessage').html('<div class="alert alert-success" style="padding: 12px; border-radius: 4px; background: #d4edda; color: #155724; border: 1px solid #c3e6cb;">' + response.message + '</div>');
$('#linkUserForm')[0].reset(); $('#linkUserForm')[0].reset();
@@ -569,11 +573,12 @@ if (empty($application['id_number'])) {
} }
}, },
error: function(xhr) { error: function(xhr) {
console.log('Link error:', xhr);
try { try {
const response = JSON.parse(xhr.responseText); const response = JSON.parse(xhr.responseText);
$('#linkMessage').html('<div class="alert alert-danger" style="padding: 12px; border-radius: 4px; background: #f8d7da; color: #721c24; border: 1px solid #f5c6cb;">' + response.message + '</div>'); $('#linkMessage').html('<div class="alert alert-danger" style="padding: 12px; border-radius: 4px; background: #f8d7da; color: #721c24; border: 1px solid #f5c6cb;">' + response.message + '</div>');
} catch (e) { } catch (e) {
$('#linkMessage').html('<div class="alert alert-danger" style="padding: 12px; border-radius: 4px; background: #f8d7da; color: #721c24; border: 1px solid #f5c6cb;">Error linking user. Please try again.</div>'); $('#linkMessage').html('<div class="alert alert-danger" style="padding: 12px; border-radius: 4px; background: #f8d7da; color: #721c24; border: 1px solid #f5c6cb;">Error linking user: ' + (xhr.statusText || 'Unknown error') + '</div>');
} }
} }
}); });
@@ -582,9 +587,10 @@ if (empty($application['id_number'])) {
// Unlink User // Unlink User
$(document).on('click', '.unlink-btn', function() { $(document).on('click', '.unlink-btn', function() {
const linkId = $(this).data('link-id'); const linkId = $(this).data('link-id');
const csrfToken = $('input[name="csrf_token"]').val(); const csrfToken = $('input[name="csrf_token"]').closest('form').find('input[name="csrf_token"]').val();
if (confirm('Are you sure you want to remove this linked account?')) { if (confirm('Are you sure you want to remove this linked account?')) {
console.log('Unlinking:', { linkId, csrfToken });
$.ajax({ $.ajax({
url: 'unlink_membership_user', url: 'unlink_membership_user',
type: 'POST', type: 'POST',
@@ -594,6 +600,7 @@ if (empty($application['id_number'])) {
csrf_token: csrfToken csrf_token: csrfToken
}, },
success: function(response) { success: function(response) {
console.log('Unlink response:', response);
if (response.success) { if (response.success) {
// Reload page to show updated list // Reload page to show updated list
location.reload(); location.reload();
@@ -601,7 +608,8 @@ if (empty($application['id_number'])) {
alert('Error: ' + response.message); alert('Error: ' + response.message);
} }
}, },
error: function() { error: function(xhr) {
console.log('Unlink error:', xhr);
alert('Error removing linked account. Please try again.'); alert('Error removing linked account. Please try again.');
} }
}); });