Approval withdrawal: warning + edit-event-instead path #83

New Issue

mAi · 2026-05-25T11:23:38Z

mAi commented

2026-05-25 11:23:38 +00:00

m's report (2026-05-25 13:08)

Where withdrawing the approval request deletes the event, we should give a warning and allow editing the event instead which would change the approval request?!

Scope

Currently: withdrawing an approval request silently deletes the underlying event. m wants:

A warning dialog before deletion explaining what will happen.
An alternative path "Edit event instead" — modifying the event updates / re-targets the approval request rather than deleting it.

What to do

Find the approval-withdrawal flow:
- Likely frontend/src/client/approvals.ts or similar
- Backend handler in internal/handlers/approvals.go
Replace the immediate-delete behavior with a confirmation modal:
- Title: "Genehmigungsanfrage zurückziehen?" / "Withdraw approval request?"
- Body: Explain that withdrawing deletes the underlying event by default. Offer two clear next steps:
  - Primary action: "Termin bearbeiten" / "Edit event" — closes the modal and opens the event-edit form. Saving the edit updates the approval request (its target/proposed change re-targets to the edited event).
  - Secondary action: "Endgültig zurückziehen und löschen" / "Withdraw permanently and delete" — destructive button, requires explicit click. Performs the current delete behavior.
  - Cancel — does nothing.
Backend: when an approval request is updated through the event-edit path, the request stays alive with the new event state; only when the user picks the explicit destructive action does the existing delete cascade fire.
Make sure the audit log captures both paths distinctly: approval-withdrawn-via-edit vs approval-withdrawn-and-deleted.

Files most likely touched

frontend/src/client/approvals.ts
frontend/src/client/i18n.ts — confirm dialog copy
internal/handlers/approvals.go — split the destructive path from the edit-instead path; audit-log distinction
internal/services/approval_service.go (if exists)

Hard rules

Default modal action highlights the non-destructive choice ("Edit event") — destructive only on explicit click.
Audit-log entry on every state transition.
go build ./... && go test ./internal/... && cd frontend && bun run build clean.
Branch: mai/<worker>/approval-withdraw-warning.

Out of scope

Reopening already-deleted approval requests (out of scope; the destructive path stays final).
Approval-request analytics / metrics.
Notifying the original approval-requester via channel (separate concern).

Reporting

mai report completed with branch + SHAs + the UX path: trigger withdraw → see modal → pick "Edit event" → event editor opens → save → confirm approval request is alive with new state; alternative: pick destructive → confirm event + request deleted; cancel: nothing changes.

## m's report (2026-05-25 13:08) > Where withdrawing the approval request deletes the event, we should give a warning and allow editing the event instead which would change the approval request?! ## Scope Currently: withdrawing an approval request silently deletes the underlying event. m wants: 1. A **warning dialog** before deletion explaining what will happen. 2. An alternative path **"Edit event instead"** — modifying the event updates / re-targets the approval request rather than deleting it. ## What to do 1. Find the approval-withdrawal flow: - Likely `frontend/src/client/approvals.ts` or similar - Backend handler in `internal/handlers/approvals.go` 2. Replace the immediate-delete behavior with a confirmation modal: - **Title**: "Genehmigungsanfrage zurückziehen?" / "Withdraw approval request?" - **Body**: Explain that withdrawing deletes the underlying event by default. Offer two clear next steps: - **Primary action**: "Termin bearbeiten" / "Edit event" — closes the modal and opens the event-edit form. Saving the edit updates the approval request (its target/proposed change re-targets to the edited event). - **Secondary action**: "Endgültig zurückziehen und löschen" / "Withdraw permanently and delete" — destructive button, requires explicit click. Performs the current delete behavior. - **Cancel** — does nothing. 3. Backend: when an approval request is updated through the event-edit path, the request stays alive with the new event state; only when the user picks the explicit destructive action does the existing delete cascade fire. 4. Make sure the audit log captures both paths distinctly: `approval-withdrawn-via-edit` vs `approval-withdrawn-and-deleted`. ## Files most likely touched - `frontend/src/client/approvals.ts` - `frontend/src/client/i18n.ts` — confirm dialog copy - `internal/handlers/approvals.go` — split the destructive path from the edit-instead path; audit-log distinction - `internal/services/approval_service.go` (if exists) ## Hard rules - Default modal action highlights the non-destructive choice ("Edit event") — destructive only on explicit click. - Audit-log entry on every state transition. - `go build ./... && go test ./internal/... && cd frontend && bun run build` clean. - Branch: `mai/<worker>/approval-withdraw-warning`. ## Out of scope - Reopening already-deleted approval requests (out of scope; the destructive path stays final). - Approval-request analytics / metrics. - Notifying the original approval-requester via channel (separate concern). ## Reporting `mai report completed` with branch + SHAs + the UX path: trigger withdraw → see modal → pick "Edit event" → event editor opens → save → confirm approval request is alive with new state; alternative: pick destructive → confirm event + request deleted; cancel: nothing changes.

mAi self-assigned this 2026-05-25 11:23:38 +00:00

m referenced this issue from a commit

2026-05-25 12:25:05 +00:00

mAi: #83 - approval withdraw warning modal + edit-instead path

mAi commented

2026-05-25 12:25:45 +00:00

Done — branch `mai/artemis/gitster-approval-withdraw`

Commit: 72b6414

New shared modal, new backend endpoint, both deadline + appointment detail pages wired. No schema migration needed — re-uses the existing counter-allowlist (buildCounterSetClauses) from SuggestChanges (t-paliad-216).

UX paths

Trigger. Click "Genehmigungsanfrage zurückziehen" on a pending deadline / appointment you authored.

Modal copy (adapts to lifecycle):

CREATE: "Wenn Sie die Anfrage zurückziehen, wird die Frist/der Termin gelöscht."
UPDATE/COMPLETE: "Ihre vorgeschlagenen Änderungen werden verworfen — der Eintrag kehrt in den Zustand vor Ihrer Bearbeitung zurück."
DELETE: "Wenn Sie die Löschanfrage zurückziehen, bleibt der Eintrag bestehen."

Three paths:

Cancel (footer, also Esc / backdrop / close-×) — nothing happens.
Termin bearbeiten (footer, primary CTA — non-destructive) — modal closes, the entity's edit form unfreezes (pending-edit mode). Save sends POST /api/approval-requests/{id}/edit-entity with the new field payload. The approval request stays pending; the entity row + approval_request.payload are synced to the new values. Audit row: <entity>_approval_edited_by_requester (new event type, distinct from the original *_requested row).
Endgültig zurückziehen und löschen (inside body, red, separated by a dashed border so it never competes with the primary CTA) — the existing /revoke endpoint runs unchanged. For CREATE that hard-deletes the entity (the surprise m flagged); for UPDATE/COMPLETE it reverts to pre_image; for DELETE it cancels the delete request. Audit row: <entity>_approval_revoked.

Audit distinction (per spec)

Two paths emit different project_events.event_type rows so the Verlauf reads correctly:

Path	Event type	Behaviour
Edit-instead	`<entity>_approval_edited_by_requester` (new)	request stays pending, entity + payload synced, requester revises before approver acts
Destructive withdraw	`<entity>_approval_revoked` (existing)	request → revoked, entity reverted via `applyRevert` (= DELETE for CREATE)

Backend

ApprovalService.EditPendingEntity(ctx, requestID, callerID, fields) — new service method.
- Auth: caller MUST be requested_by AND status MUST be pending. Returns ErrNotApprover / ErrRequestNotPending otherwise.
- Allowlist: reuses buildCounterSetClauses (the wider counter-allowlist from SuggestChanges) — every editable field on the entity, not just the date-bearing approval triggers. Unknown keys silently dropped. Empty-fields / title-cleared → ErrSuggestionRequiresChange.
- Side effects in one tx:
  1. Entity columns updated via applyEntityUpdate (incl. event_type_ids junction rewrite for deadlines).
  2. approval_requests.payload merged with new fields (jsonb deep-merge using maps.Copy).
  3. project_events row inserted with new *_approval_edited_by_requester event type + metadata {edited_fields: [...]}.
POST /api/approval-requests/{id}/edit-entity — new handler in internal/handlers/approvals.go.
- Body: {"fields": {<entity-shape>}}
- Errors map through the existing mapApprovalError: 400 suggestion_requires_change, 403 not_authorized, 404, 409 request_not_pending.

Frontend

frontend/src/client/components/withdraw-warning-modal.ts — new shared modal built on openModal() primitive (t-paliad-217 Slice A). Adapts copy by lifecycle, exposes 3 paths via destructive-button-in-body + primary CTA in footer.
frontend/src/client/deadlines-detail.ts — initWithdraw rewrite; Save handler branches on pendingEditMode to the new endpoint.
frontend/src/client/appointments-detail.ts — same pattern; appointment edit form already lives inline (always visible, frozen during pending) so pendingEditMode unfreezes it.
i18n: +14 keys DE+EN under approvals.withdraw.*.
CSS: .withdraw-warning-body + .withdraw-warning-{intro,sub,destructive-row,destructive-btn}.

Build hygiene

go build ./... clean
go vet ./... clean
go test ./internal/... clean (no new tests — the new path uses the SQL infrastructure that already has live-DB coverage via SuggestChanges)
bun run build clean (2807 keys, +14 new, scan clean)

Out of scope (intentionally, per spec)

Reopening already-deleted approval requests — destructive path stays final.
Approval-request analytics / metrics.
Notifying the original approval-requester via channel.

Ready for maria's review + merge. Awaiting head merge gate.

## Done — branch `mai/artemis/gitster-approval-withdraw` Commit: [`72b6414`](https://mgit.msbls.de/m/paliad/commit/72b64140e922f18ccb115bce452a108c0dc98009) New shared modal, new backend endpoint, both deadline + appointment detail pages wired. No schema migration needed — re-uses the existing counter-allowlist (`buildCounterSetClauses`) from `SuggestChanges` (t-paliad-216). ### UX paths **Trigger.** Click "Genehmigungsanfrage zurückziehen" on a pending deadline / appointment you authored. **Modal copy (adapts to lifecycle):** - **CREATE**: `"Wenn Sie die Anfrage zurückziehen, wird die Frist/der Termin gelöscht."` - **UPDATE/COMPLETE**: `"Ihre vorgeschlagenen Änderungen werden verworfen — der Eintrag kehrt in den Zustand vor Ihrer Bearbeitung zurück."` - **DELETE**: `"Wenn Sie die Löschanfrage zurückziehen, bleibt der Eintrag bestehen."` **Three paths:** 1. **Cancel** (footer, also Esc / backdrop / close-×) — nothing happens. 2. **Termin bearbeiten** (footer, primary CTA — non-destructive) — modal closes, the entity's edit form unfreezes (pending-edit mode). Save sends `POST /api/approval-requests/{id}/edit-entity` with the new field payload. The approval request **stays pending**; the entity row + `approval_request.payload` are synced to the new values. Audit row: `<entity>_approval_edited_by_requester` (new event type, distinct from the original `*_requested` row). 3. **Endgültig zurückziehen und löschen** (inside body, red, separated by a dashed border so it never competes with the primary CTA) — the existing `/revoke` endpoint runs unchanged. For CREATE that hard-deletes the entity (the surprise m flagged); for UPDATE/COMPLETE it reverts to `pre_image`; for DELETE it cancels the delete request. Audit row: `<entity>_approval_revoked`. ### Audit distinction (per spec) Two paths emit different `project_events.event_type` rows so the Verlauf reads correctly: | Path | Event type | Behaviour | |---|---|---| | Edit-instead | `<entity>_approval_edited_by_requester` (new) | request stays pending, entity + payload synced, requester revises before approver acts | | Destructive withdraw | `<entity>_approval_revoked` (existing) | request → revoked, entity reverted via `applyRevert` (= DELETE for CREATE) | ### Backend - `ApprovalService.EditPendingEntity(ctx, requestID, callerID, fields)` — new service method. - Auth: caller MUST be `requested_by` AND status MUST be `pending`. Returns `ErrNotApprover` / `ErrRequestNotPending` otherwise. - Allowlist: reuses `buildCounterSetClauses` (the wider counter-allowlist from `SuggestChanges`) — every editable field on the entity, not just the date-bearing approval triggers. Unknown keys silently dropped. Empty-fields / title-cleared → `ErrSuggestionRequiresChange`. - Side effects in one tx: 1. Entity columns updated via `applyEntityUpdate` (incl. `event_type_ids` junction rewrite for deadlines). 2. `approval_requests.payload` merged with new fields (jsonb deep-merge using `maps.Copy`). 3. `project_events` row inserted with new `*_approval_edited_by_requester` event type + metadata `{edited_fields: [...]}`. - `POST /api/approval-requests/{id}/edit-entity` — new handler in `internal/handlers/approvals.go`. - Body: `{"fields": {<entity-shape>}}` - Errors map through the existing `mapApprovalError`: 400 `suggestion_requires_change`, 403 `not_authorized`, 404, 409 `request_not_pending`. ### Frontend - `frontend/src/client/components/withdraw-warning-modal.ts` — new shared modal built on `openModal()` primitive (t-paliad-217 Slice A). Adapts copy by lifecycle, exposes 3 paths via destructive-button-in-body + primary CTA in footer. - `frontend/src/client/deadlines-detail.ts` — `initWithdraw` rewrite; Save handler branches on `pendingEditMode` to the new endpoint. - `frontend/src/client/appointments-detail.ts` — same pattern; appointment edit form already lives inline (always visible, frozen during pending) so `pendingEditMode` unfreezes it. - i18n: +14 keys DE+EN under `approvals.withdraw.*`. - CSS: `.withdraw-warning-body` + `.withdraw-warning-{intro,sub,destructive-row,destructive-btn}`. ### Build hygiene - `go build ./...` clean - `go vet ./...` clean - `go test ./internal/...` clean (no new tests — the new path uses the SQL infrastructure that already has live-DB coverage via `SuggestChanges`) - `bun run build` clean (2807 keys, +14 new, scan clean) ### Out of scope (intentionally, per spec) - Reopening already-deleted approval requests — destructive path stays final. - Approval-request analytics / metrics. - Notifying the original approval-requester via channel. Ready for maria's review + merge. Awaiting head merge gate.

m referenced this issue from a commit

2026-05-25 12:26:26 +00:00

Merge: t-paliad-252 — Approval withdraw warning modal + edit-instead path (m/paliad#83)

mAi referenced this issue

2026-05-25 12:38:24 +00:00

Submission generator preview still shows raw HL Patents Style .dotm — diagnose + author at least one universal placeholder template #90

Sign in to join this conversation.

Branches Tags

main

mai/planck/coder-b5-b6-train-share

mai/archimedes/fixer-port-engine

mai/maxwell/coder-b4-akte-mode

mai/lorenz/coder-b3-event-triggered

mai/euler/fixer-builder-add

mai/brunel/fixer-prod-500s-after-b1

mai/galileo/coder-b1-b2-mvp-train

mai/pasteur/fixer-pkg-litigationplann

mai/newton/coder-b0-scenario-db

mai/edison/inventor-prd-columnar

mai/knuth/coder-workflow-tracker

mai/atlas/inventor-extend-tools

mai/cronus/inventor-unified

mai/atlas/inventor-deadline-system

mai/atlas/inventor-followup-rules

mai/athena/consultant-deadline

mai/brunel/fixer-dark-mode-support

mai/knuth/coder-cronus-fristenrechn

mai/ritchie/coder-mig-153-proceeding

mai/atlas/inventor-proceeding

mai/cronus/inventor-fristenrechner

mai/curie/coder-mig152-clone-dedupe

mai/darwin/researcher-lexy-draft

mai/knuth/coder-dedupe-null

mai/cronus/coder-composer-slice-f

mai/cronus/coder-composer-slice-e

mai/cronus/coder-composer-slice-d

mai/curie/coder-slice-b6-url-rename

mai/curie/coder-slice-b5-go-rename

mai/cronus/coder-composer-slice-c

mai/curie/coder-slice-b4-destructive-drop

mai/cronus/coder-composer-slice-b

mai/cronus/coder-composer-slice-a

mai/cronus/inventor-prd-for

mai/knuth/coder-verfahrensablauf

mai/ritchie/coder-make-backup

mai/diesel/fixer-dark-mode-css

mai/curie/coder-slice-b3-read-cutover

mai/diesel/fixer-verfahrensablauf

mai/curie/coder-slice-b2-dual-write

mai/cronus/coder-slice-d-scenarios

mai/knuth/coder-backfill-applies

mai/hermes/gitster-verfahrensablauf

mai/cronus/coder-berufung-labels-refactor

mai/diesel/hotfix-2-mig-134-missing

mai/curie/coder-slice-b1-procedural-events

mai/cronus/coder-slice-c-upc-snapshot

mai/brunel/hotfix-rename-upc-apl

mai/cronus/coder-slice-b3-primary-party

mai/cronus/coder-slice-b2-catalog-query

mai/cronus/inventor-litigation-slice-b

mai/curie/researcher-slice-b-zero

mai/cronus/inventor-litigation

mai/artemis/gitster-remove-admin

mai/ritchie/coder-sort-post-trigger

mai/knuth/coder-conditional-label

mai/hermes/coder-verfahrensablauf

mai/brunel/rebase-121-conditional

mai/knuth/coder-conditional-rule

mai/hermes/gitster-dark-mode-fix

mai/ritchie/coder-submission-form

mai/artemis/gitster-re-surface

mai/brunel/fixer-views-any-filters

mai/cronus/coder-cicd-slice-a

mai/knuth/coder-wave-1-tier-1-rule

mai/ritchie/coder-upc-damages-add

mai/cronus/inventor-ci-cd-pre

mai/brunel/rebase-108-language

mai/hermes/gitster-admin-rules-list

mai/artemis/gitster-submission

mai/icarus/gitster-verfahrensablauf

mai/orpheus/gitster-search-input

mai/atlas/coder-event-card-choices-slice-ab

mai/hermes/gitster-date-range

mai/demeter/gitster-submission

mai/knuth/coder-hl-patents-style

mai/hermes/gitster-draft-editor

mai/atlas/inventor-per-event-card

mai/knuth/coder-deadline-rule-tier

mai/cronus/coder-procedural-events-slice-a

mai/hermes/gitster-deadline-form

mai/artemis/gitster-add-missing-i18n

mai/demeter/gitster-paliadin-chat

mai/brunel/wave0-tier0-deadline-fixes

mai/artemis/coder-docker-compose-yml

mai/icarus/coder-inbox-overhaul-slice-a

mai/atlas/coder-date-range-picker-slice-a

mai/brunel/fixer-de-inf-lg-cfi

mai/cronus/inventor-procedural

mai/hermes/gitster-event-type-modal

mai/cronus/coder-backup-mode

mai/curie/researcher-bulletproof

mai/hermes/gitster-draft-editor-focus-jump

mai/cronus/inventor-backup-mode

mai/hermes/gitster-submissions

mai/artemis/gitster-deadline-form

mai/brunel/fixer-submission-preview

mai/brunel/fixer-test-data-reset

mai/artemis/gitster-approval-withdraw

mai/demeter/gitster-events

mai/hermes/gitster-sidebar-loses

mai/hermes/gitster-browse-a

mai/brunel/fixer-submissions-demo

mai/icarus/inventor-inbox-overhaul

mai/atlas/inventor-symmetric-date

mai/artemis/gitster-demote-daten

mai/hermes/gitster-team-view-mailto

mai/knuth/coder-global-schriftsatze

mai/knuth/coder-schriftsatze

mai/ritchie/coder-author-demo-docx

mai/knuth/coder-add-schriftsatze

mai/knuth/coder-add-checklist

mai/knuth/coder-anchor-lookup-must

mai/tesla/dashboard-resize-clamp

mai/knuth/coder-demote-projekt

mai/knuth/coder-paliadin-chat

mai/knuth/coder-print-views

mai/knuth/coder-add-proceeding

mai/knuth/coder-submission

mai/ritchie/coder-extend-team-email

mai/knuth/coder-changelog-catch-up

mai/tesla/dashboard-overlap

mai/pasteur/fixercoder-dashboard

mai/newton/inventor-configurable

mai/dirac/inventorcoder-user

mai/gauss/inventorcoder-team-admin

mai/kepler/inventorcoder-project

mai/darwin/roadmap-ccr-en

mai/euler/coder-small-ux-polish

mai/darwin/fristenrechner-cleanup

mai/darwin/fixercoder-priority-bug

mai/leibniz/inventor-caldav-multi

mai/hertz/inventor-unified-modal

mai/archimedes/inventor-excel-data

mai/boltzmann/inventor-gap-tolerant

mai/copernicus/submission-slice-1

mai/fermi/interactive-session

mai/hertz/inventor-suggest-changes

mai/copernicus/inventor-submission

mai/mendel/test-strategy-slice-1

mai/mendel/inventor-test-strategy

mai/ampere/custom-views-improvements

mai/joule/mig-097-apply-huygens-s

mai/ohm/workstream-b-rename

mai/huygens/workstream-a-backfill

mai/kelvin/t-204-phase-2-proceeding

mai/bohr/ingest-t-paliad-203-rule

mai/curie/fristenrechner-gap

mai/maxwell/inbox-grey-out

mai/rutherford/slice-9-follow-up-b-re

mai/dirac/slice-9-follow-up-a

mai/bose/determinator-cascade-slice-3

mai/bose/determinator-cascade-slice-2

mai/bose/determinator-row-cascade

mai/lorenz/fristen-phase-3-slice-9

mai/curie/fristen-phase-3-slice-12

mai/planck/aichat-phase-b-paliad

mai/young/fristen-phase-3-slice-11b

mai/lorenz/fristen-phase-3-slice-11a

mai/lorenz/fristen-phase-3-slice-10

mai/lorenz/fristen-phase-3-slice-8

mai/lorenz/fristen-phase-3-slice-7

mai/lorenz/fristen-phase-3-slice-6

mai/lorenz/fristen-phase-3-slice-5

mai/lorenz/fristen-phase-3-slice-4

mai/lorenz/fristen-phase-3-slice-3

mai/lorenz/fristen-phase-3-slice-2

mai/lorenz/fristen-phase-3-slice-1

mai/pauli/fristen-phase2-design

mai/tesla/project-timeline-chart

mai/pauli/fristen-logic-audit

mai/pauli/determinator-b1-row-by

mai/noether/tools-cleanup-slice-1

mai/kelvin/inventor-tools-surface

mai/planck/paliadin-per-user-rls

mai/maxwell/bug-bundle-filterbar

mai/faraday/project-timeline-chart

mai/schroedinger/smarttimeline-slice-4

mai/bohr/smarttimeline-slice-3

mai/gauss/smarttimeline-slice-2

mai/riemann/filterbar-phase-2-slice

mai/lagrange/smarttimeline-design-the

mai/curie/researcher-determinator

mai/noether/collapse-regel-typ-on

mai/riemann/inventor-universal

mai/minkowski/project-level-our-side

mai/dirac/inventor-inline-paliadin

mai/feynman/fristenrechner

mai/minkowski/navbar-dashboard-reorg

mai/shannon/approval-rework

mai/einstein/consultant-deadline-data

mai/curie/researcher-upc-rop-audit

mai/noether/paliadin-real-claude

mai/noether/inventor-paliadin

mai/hilbert/inventor-approval-policy

mai/shannon/bug-frist-due-date

mai/fritz/bug-fristen-termine

mai/godel/inventor-projects-page

mai/fritz/bug-paliadin-chat

mai/kepler/inventor-profession-vs

mai/noether/inventor-paliadin-in-app

mai/fritz/bulk-team-email-send-to

mai/noether/inventor-local-chat-for

mai/noether/inventor-data-display

mai/fritz/bug-derived-team-members

mai/fritz/bug-sidebar-visibly

mai/noether/inventor-project

mai/shannon/bug-project-team-add

mai/cronus/inventor-dual-control

mai/fritz/bug-edit-mode-on

mai/cronus/inventor-holidays-per

mai/ritchie/phase-h-ai-deadline

1 Participants

Notifications

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: m/paliad#83

Approval withdrawal: warning + edit-event-instead path #83