/* global React, ReactDOM */ const { useState, useEffect, useCallback } = React; const CFG = window.SHIFA_CONFIG || {}; const API_BASE = CFG.apiBase || ""; const REGION = CFG.region || "ap-south-1"; const COGNITO = CFG.cognito || {}; const COGNITO_URL = `https://cognito-idp.${REGION}.amazonaws.com/`; const TOKEN_KEY = "shifa_staff_token"; // ---------- Cognito (no SDK — direct JSON API over fetch) ---------- async function cognitoCall(target, body) { const res = await fetch(COGNITO_URL, { method: "POST", headers: { "Content-Type": "application/x-amz-json-1.1", "X-Amz-Target": `AWSCognitoIdentityProviderService.${target}`, }, body: JSON.stringify(body), }); const data = await res.json().catch(() => ({})); if (!res.ok) { throw new Error(data.message || data.__type || "Authentication failed"); } return data; } async function signIn(email, password) { return cognitoCall("InitiateAuth", { AuthFlow: "USER_PASSWORD_AUTH", ClientId: COGNITO.clientId, AuthParameters: { USERNAME: email, PASSWORD: password }, }); } async function respondNewPassword(email, newPassword, session) { return cognitoCall("RespondToAuthChallenge", { ChallengeName: "NEW_PASSWORD_REQUIRED", ClientId: COGNITO.clientId, Session: session, ChallengeResponses: { USERNAME: email, NEW_PASSWORD: newPassword }, }); } // ---------- API ---------- async function api(path, { method = "GET", token } = {}) { const res = await fetch(`${API_BASE}${path}`, { method, headers: token ? { Authorization: `Bearer ${token}` } : {}, }); if (res.status === 401 || res.status === 403) { const e = new Error("Session expired. Please sign in again."); e.code = "AUTH"; throw e; } const data = await res.json().catch(() => ({})); if (!res.ok) throw new Error(data.error || "Request failed"); return data; } // ---------- Login screen ---------- function Login({ onToken }) { const [email, setEmail] = useState(""); const [password, setPassword] = useState(""); const [newPassword, setNewPassword] = useState(""); const [session, setSession] = useState(null); // set when NEW_PASSWORD_REQUIRED const [busy, setBusy] = useState(false); const [err, setErr] = useState(""); const configured = COGNITO.clientId && API_BASE; const submit = async (e) => { e.preventDefault(); setErr(""); setBusy(true); try { let result; if (session) { result = await respondNewPassword(email, newPassword, session); } else { result = await signIn(email, password); } if (result.ChallengeName === "NEW_PASSWORD_REQUIRED") { setSession(result.Session); setBusy(false); return; } const token = result.AuthenticationResult && result.AuthenticationResult.IdToken; if (!token) throw new Error("No token returned"); localStorage.setItem(TOKEN_KEY, token); onToken(token); } catch (e2) { setErr(e2.message); } finally { setBusy(false); } }; return (

Staff sign in

Shifa Dental appointment dashboard

{!configured &&
Backend not configured yet. Fill in config.js with your API + Cognito values.
}
setEmail(e.target.value)} required autoFocus placeholder="staff@shifadental.in" /> {!session ? ( <> setPassword(e.target.value)} required /> ) : ( <> setNewPassword(e.target.value)} required placeholder="First-time login — choose a password" /> )} {err &&
{err}
}
); } // ---------- Appointment card ---------- function AppointmentCard({ appt, token, onChanged }) { const [busy, setBusy] = useState(""); const act = async (action) => { setBusy(action); try { await api(`/appointments/${appt.appointmentId}/${action}`, { method: "POST", token }); onChanged(); } catch (e) { if (e.code === "AUTH") onChanged(e); else alert(e.message); } finally { setBusy(""); } }; const del = async () => { if (!window.confirm(`Permanently delete ${appt.name}'s appointment on ${appt.date} (${appt.time})? This cannot be undone.`)) return; setBusy("delete"); try { await api(`/appointments/${appt.appointmentId}`, { method: "DELETE", token }); onChanged(); } catch (e) { if (e.code === "AUTH") onChanged(e); else alert(e.message); } finally { setBusy(""); } }; return (
{appt.name}{" "} {appt.status}
{appt.service}
📅 {appt.date} · {appt.time}
📞 {appt.phone}{appt.email ? " · ✉️ " + appt.email : ""} {appt.notes ? <>
📝 {appt.notes} : null}
{appt.status === "PENDING" && ( <> )}
); } // ---------- Dashboard ---------- const TABS = ["PENDING", "CONFIRMED", "CANCELLED", "ALL"]; function Dashboard({ token, onSignOut }) { const [appointments, setAppointments] = useState([]); const [tab, setTab] = useState("PENDING"); const [loading, setLoading] = useState(true); const [updatedAt, setUpdatedAt] = useState(null); const [error, setError] = useState(""); const load = useCallback(async () => { try { const data = await api("/appointments", { token }); setAppointments(data.appointments || []); setUpdatedAt(new Date()); setError(""); } catch (e) { if (e.code === "AUTH") { onSignOut(); return; } setError(e.message); } finally { setLoading(false); } }, [token, onSignOut]); // Initial load + poll every 30 seconds. useEffect(() => { load(); const timer = setInterval(load, 30000); return () => clearInterval(timer); }, [load]); const counts = TABS.reduce((acc, t) => { acc[t] = t === "ALL" ? appointments.length : appointments.filter((a) => a.status === t).length; return acc; }, {}); const visible = tab === "ALL" ? appointments : appointments.filter((a) => a.status === tab); return (

Appointments

Live · refreshes every 30s {updatedAt ? " · updated " + updatedAt.toLocaleTimeString() : ""}
{TABS.map((t) => ( ))}
{error &&
{error}
} {loading ? (
Loading…
) : visible.length === 0 ? (
No {tab.toLowerCase()} appointments.
) : ( visible.map((a) => ( (e && e.code === "AUTH" ? onSignOut() : load())} /> )) )}
); } // ---------- App shell ---------- function App() { const [token, setToken] = useState(() => localStorage.getItem(TOKEN_KEY) || null); const signOut = () => { localStorage.removeItem(TOKEN_KEY); setToken(null); }; return ( <>
S Shifa Dental · Staff
← Back to site
{token ? : } ); } ReactDOM.createRoot(document.getElementById("root")).render();