/* Login страница админки. */ function AdminLogin({ onLogin }) { const [email, setEmail] = useState(""); const [password, setPassword] = useState(""); const [busy, setBusy] = useState(false); const [err, setErr] = useState(null); const [mfaCode, setMfaCode] = useState(""); const [mfaChallenge, setMfaChallenge] = useState(null); // {factorId, challengeId} const handleSubmit = async (e) => { e.preventDefault(); setErr(null); setBusy(true); try { const { data, error } = await SB.auth.signInWithPassword({ email, password }); if (error) throw error; // Если для пользователя включён MFA — нужен второй шаг const { data: factorsData } = await SB.auth.mfa.listFactors(); const totp = factorsData?.totp?.find((f) => f.status === "verified"); if (totp) { const { data: chal, error: chalErr } = await SB.auth.mfa.challenge({ factorId: totp.id }); if (chalErr) throw chalErr; setMfaChallenge({ factorId: totp.id, challengeId: chal.id }); setBusy(false); return; } onLogin(); } catch (e) { setErr(e.message || "Ошибка входа"); setBusy(false); } }; const handleMfa = async (e) => { e.preventDefault(); setErr(null); setBusy(true); try { const { error } = await SB.auth.mfa.verify({ factorId: mfaChallenge.factorId, challengeId: mfaChallenge.challengeId, code: mfaCode, }); if (error) throw error; onLogin(); } catch (e) { setErr(e.message || "Неверный код"); setBusy(false); } }; return (
MTC
Admin panel
{!mfaChallenge ? (
setEmail(e.target.value)} required autoFocus autoComplete="username" />
setPassword(e.target.value)} required autoComplete="current-password" />
{err &&
{err}
}
) : (
Введите 6-значный код из приложения-аутентификатора:
setMfaCode(e.target.value.replace(/\D/g, ""))} required autoFocus className="font-mono text-center !text-lg tracking-[0.4em]" />
{err &&
{err}
}
)}
Защищено Supabase Auth · MFA · Rate Limiting
); } window.AdminLogin = AdminLogin;