soroushdes/meezi
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix(admin): don't prefill a fake phone on the admin login in production
CI/CD / CI · API (dotnet build + test) (push) Successful in 50s
Details
CI/CD / CI · Admin API (dotnet build) (push) Successful in 30s
Details
CI/CD / CI · Dashboard (tsc) (push) Successful in 1m12s
Details
CI/CD / CI · Admin Web (tsc) (push) Successful in 40s
Details
CI/CD / CI · Website (tsc) (push) Successful in 46s
Details
CI/CD / CI · Koja (tsc) (push) Successful in 1m1s
Details
CI/CD / Deploy · all services (push) Successful in 2m0s
Details

Browse Source 
The admin login OTP tab hard-coded phone "09120000001" as the initial value.
In production that placeholder belongs to no SystemAdmin, so hitting "send code"
returns NOT_FOUND → 404 (which WCDN then repaints as an HTML error page) — it
looked like the login endpoint was broken. Keep the convenience prefill in
development only; ship an empty field in production so the admin types their
real number (e.g. the registered admin phone).

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
This commit is contained in:
soroush.asadi
2026-06-17 00:44:57 +03:30
parent a967e5d211
commit 24fbbcb01c
1 changed files with 5 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
web/admin/src/app/[locale]/admin/login/page.tsx
+5 -2
View File
@@ -23,8 +23,11 @@ export default function AdminLoginPage() {
const [tab, setTab] = useState<LoginTab>("otp");
// OTP state
const [phone, setPhone] = useState("09120000001");
// OTP state — never prefill a real-looking phone in production; a placeholder
// number sends the OTP to a non-existent admin and returns a confusing 404.
const [phone, setPhone] = useState(
process.env.NODE_ENV === "development" ? "09120000001" : ""
);
const [code, setCode] = useState("");
const [otpStep, setOtpStep] = useState<"phone" | "otp">("phone");