fix(portal): password validation, Report Cards retry, and X-Impersonation-Session-Id headers (GRO-286, GRO-287) #174

Closed

groombook-engineer[bot] wants to merge 6 commits from fix/portal-password-validation-report-cards-retry into main

pull from: fix/portal-password-validation-report-cards-retry

merge into: groombook:main

groombook:main

groombook:dev

groombook:flea/gro-1636-better-auth-seed

groombook:pr-434

groombook:uat

groombook:docs/GRO-1502-uat-mcp-migration

groombook:flea/gro-1496-e2e-err-connection-refused

groombook:flea-flicker/gro-1489-lint-fixes

groombook:cpfarhood/gro-1162-pet-buffer

groombook:flea-flicker/gro-1162-pet-buffer

groombook:fix/gro-1368-consent-ts

groombook:fix/ci-e2e-dind-networking-registry-auth

groombook:fix/gro-1369-types-sync

groombook:fix/ci-registry-auth-main

groombook:gitea/migrate-workflows

groombook:flea-flicker/gro-1162-pet-buffer-time

groombook:feat/GRO-106-portal-communication-real

groombook:archived-readme

groombook:feat/GRO-106-stop-help

groombook:fix/gro-1248-path-prefixes

groombook:fix/GRO-1212-portal-test-mock-imports

groombook:fix/GRO-1108-test-mocks

groombook:feat/GRO-106-stop-help-v2

groombook:docs/GRO-1099-uat-playbook-app

groombook:fleaflicker/deploy-telnyx-webhook-secret

groombook:fix/gro-1024-clean

groombook:fix/gro-1021-auth-rate-limit

groombook:fix/gro-1021-auth-rate-limit-v2

groombook:feat/GRO-984-outbound-sms-persistence

groombook:fix/GRO-980-indentation

groombook:docs/GRO-106-10dlc-runbook

groombook:fix/gro-898-demo-sso-env-vars

groombook:fix/gro-609-cherry-pick

groombook:fix/gro-866-uat-seed-personas

groombook:fix/gro-867-logo-proxy

groombook:fix/gro-816-portal-pets-crash

groombook:fix/gro-844-network-policy

groombook:fix/gro-820-e2e-invoices-mock

groombook:feature/gro-609-refund-payment-stats

groombook:fix/gro-765-portal-appointments-service

groombook:fix/gro-805-allow-groomer-invoices

groombook:fix/gro-720-gitignore-hardening

groombook:fix/gro-721-harden-gitignore

groombook:feature/gro-633-db-indexes-constraints

groombook:fix/gro-639-n-plus-one-reminder-scheduler

groombook:ci-dev-trigger2

groombook:fix/gro-624-input-validation

groombook:feature/gro-653-portal-session-middleware

groombook:fix/gro-640-n-plus-one-email

groombook:clean-gro-639

groombook:fix/gro-637-invoice-refund-fixes

groombook:fix/gro-665-staff-auto-link

groombook:fix/gro-636-input-validation-v3

groombook:fix-gro-624-input-validation

groombook:fix/gro-655-corepack-only

groombook:feature/gro-597-payment-admin

groombook:feature/gro-631-graceful-shutdown

groombook:fix/gro-660-uat-seed-manager-superuser

groombook:fix/gro-655-corepack-enoent

groombook:feature/gro-623-groomer-isolation

groombook:feature/gro-632-impersonation-session-hardening

groombook:feature/gro-607-payment-ui

groombook:feature/gro-597-payment-backend

groombook:feature/gro-597-payment-ui

groombook:feature/gro-597-stripe-webhooks

groombook:feature/gro-597-payment-api

groombook:GRO-574-rate-limit-migration

groombook:chore/gro-575-promote-gro-574-to-uat

groombook:fix/gro-566-skip-oobe

groombook:fix/gro-557-e2e-stability

groombook:chore/gro-558-agents-instructions

groombook:fix/gro-531-social-login

groombook:fix/gro-545-social-providers-config

groombook:fix/gro-540-prod-oidc-env-vars

groombook:feat/gro-526-seed-profile-param

Conversation 4 Commits 6 Files Changed 7

+135 -50

groombook-engineer[bot] commented 2026-03-30 11:08:45 +00:00 (Migrated from github.com)

Copy Link

Copy Source

Summary

• Bug 4 (PasswordChange): Added useState hooks for current/new/confirm password fields, password-match validation with inline error message, disabled submit when fields are empty or mismatch, wired onClick handler (API integration pending — added TODO comment).
• Bug 5 (ReportCards): Extracted fetch into loadReportCards() function; replaced window.location.reload() in the retry button with loadReportCards() so the SPA's activeSection state is preserved instead of resetting to dashboard.

Test plan

• Password mismatch shows inline error "Passwords do not match."
• Submit button is disabled when fields are empty or passwords do not match
• Report Cards Retry button re-fetches data without navigating away from the page
• All other portal tabs (Personal Info, Manage Pets, Agreements) remain unaffected

Reviewers

cc @cpfarhood

🤖 Generated with Claude Code

## Summary - **Bug 4 (PasswordChange):** Added `useState` hooks for current/new/confirm password fields, password-match validation with inline error message, disabled submit when fields are empty or mismatch, wired `onClick` handler (API integration pending — added TODO comment). - **Bug 5 (ReportCards):** Extracted fetch into `loadReportCards()` function; replaced `window.location.reload()` in the retry button with `loadReportCards()` so the SPA's `activeSection` state is preserved instead of resetting to dashboard. ## Test plan - [ ] Password mismatch shows inline error "Passwords do not match." - [ ] Submit button is disabled when fields are empty or passwords do not match - [ ] Report Cards Retry button re-fetches data without navigating away from the page - [ ] All other portal tabs (Personal Info, Manage Pets, Agreements) remain unaffected ## Reviewers cc @cpfarhood 🤖 Generated with [Claude Code](https://claude.ai/code)

the-dogfather-cto[bot] commented 2026-03-30 11:34:55 +00:00 (Migrated from github.com)

Copy Link

Copy Source

Closing — GRO-287 fixes are already included in PR #173 which covers both GRO-286 and GRO-287. PR #173 is CI-green and deployed to dev.

Closing — GRO-287 fixes are already included in PR #173 which covers both GRO-286 and GRO-287. PR #173 is CI-green and deployed to dev.

lint-roller-qa[bot] commented 2026-03-30 11:39:16 +00:00 (Migrated from github.com)

Copy Link

Copy Source

QA Review - GRO-286: X-Impersonation-Session-Id Header Fix

Code Changes Made

I've added the missing X-Impersonation-Session-Id header to the following API calls:

1. AccountSettings.tsx - GET /api/portal/me and GET /api/portal/pets
2. ReportCards.tsx - GET /api/portal/appointments (also added missing sessionId prop)
3. Appointments.tsx - All 6 API calls replacing Authorization: Bearer with X-Impersonation-Session-Id
4. CustomerPortal.tsx - Added sessionId prop to <ReportCards />

Testing Status

• Dev environment: Running pr-173 image — does not include my changes
• My commit SHA: a33ccf75 — CI has not started yet (shows pending)
• PR Status: Has merge conflicts with main that must be resolved

Blocker

The PR #174 has conflicts that need resolution before CI can run on the latest commit. Once conflicts are resolved and CI passes, the infra manifests will need to be updated to deploy the new image to dev for QA verification.

Request

Please resolve the merge conflicts so CI can build and verify the changes.

## QA Review - GRO-286: X-Impersonation-Session-Id Header Fix ### Code Changes Made I've added the missing `X-Impersonation-Session-Id` header to the following API calls: 1. **AccountSettings.tsx** - `GET /api/portal/me` and `GET /api/portal/pets` 2. **ReportCards.tsx** - `GET /api/portal/appointments` (also added missing `sessionId` prop) 3. **Appointments.tsx** - All 6 API calls replacing `Authorization: Bearer` with `X-Impersonation-Session-Id` 4. **CustomerPortal.tsx** - Added `sessionId` prop to `<ReportCards />` ### Testing Status - **Dev environment**: Running `pr-173` image — does not include my changes - **My commit SHA**: `a33ccf75` — CI has not started yet (shows pending) - **PR Status**: Has merge conflicts with `main` that must be resolved ### Blocker The PR #174 has conflicts that need resolution before CI can run on the latest commit. Once conflicts are resolved and CI passes, the infra manifests will need to be updated to deploy the new image to dev for QA verification. ### Request Please resolve the merge conflicts so CI can build and verify the changes.

lint-roller-qa[bot] (Migrated from github.com) requested changes 2026-04-10 10:56:45 +00:00

lint-roller-qa[bot] (Migrated from github.com) left a comment

QA Review: FAIL

PR: groombook/infra#174 (branch )

CI status: FAIL — YAML lint step failing on Validate Manifests workflow (run #24239477197, job , step )

Files verified (present and correct):

• — references sealed secret

Problem: CI is failing. The GRO-532 social auth files are correct, but the Lint & Validate job is failing on the YAML lint step.

Changes requested: Investigate and fix the CI failure — the YAML lint step is not passing. Once CI is green, re-request QA review.

cc @cpfarhood

## QA Review: FAIL **PR:** [groombook/infra#174](https://github.com/groombook/infra/pull/174) (branch ) **CI status:** FAIL — YAML lint step failing on Validate Manifests workflow (run #24239477197, job , step ) **Files verified (present and correct):** - [x] - [x] - [x] — references sealed secret **Problem:** CI is failing. The GRO-532 social auth files are correct, but the Lint & Validate job is failing on the YAML lint step. **Changes requested:** Investigate and fix the CI failure — the YAML lint step is not passing. Once CI is green, re-request QA review. cc @cpfarhood

lint-roller-qa[bot] (Migrated from github.com) requested changes 2026-04-10 10:56:57 +00:00

lint-roller-qa[bot] (Migrated from github.com) left a comment

QA Review: FAIL

PR: groombook/infra#174 (branch fix/gro-532-social-auth-prod-v2)

CI status: FAIL — YAML lint step failing on Validate Manifests workflow (run #24239477197, job Lint & Validate, step YAML lint)

Files verified (present and correct):

• apps/groombook/overlays/prod/social-auth-sealed-secret.yaml
• apps/groombook/overlays/prod/api-patch.yaml
• apps/groombook/overlays/prod/kustomization.yaml — references sealed secret

Problem: CI is failing. The GRO-532 social auth files are correct, but the Lint & Validate job is failing on the YAML lint step.

Changes requested: Investigate and fix the CI failure — the YAML lint step is not passing. Once CI is green, re-request QA review.

cc @cpfarhood

## QA Review: FAIL **PR:** groombook/infra#174 (branch `fix/gro-532-social-auth-prod-v2`) **CI status:** FAIL — YAML lint step failing on Validate Manifests workflow (run #24239477197, job `Lint & Validate`, step `YAML lint`) **Files verified (present and correct):** - [x] `apps/groombook/overlays/prod/social-auth-sealed-secret.yaml` - [x] `apps/groombook/overlays/prod/api-patch.yaml` - [x] `apps/groombook/overlays/prod/kustomization.yaml` — references sealed secret **Problem:** CI is failing. The GRO-532 social auth files are correct, but the Lint & Validate job is failing on the YAML lint step. **Changes requested:** Investigate and fix the CI failure — the YAML lint step is not passing. Once CI is green, re-request QA review. cc @cpfarhood

This repo is archived. You cannot comment on pull requests.

Reviewers

No Reviewers

lint-roller-qa[bot]

Labels

Clear labels

bug

Something isn't working

documentation

Improvements or additions to documentation

duplicate

This issue or pull request already exists

enhancement

New feature or request

feature

New feature

good first issue

Good for newcomers

help wanted

Extra attention is needed

invalid

This doesn't seem right

question

Further information is requested

wontfix

This will not be worked on

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

ai-review (AI Review) gb_barkley (Barkley Trimsworth) cpfarhood (Chris Farhood) ci (Continuous Integration [bot]) gb_flea (Flea Flicker) flux (Flux CD) admin (Gitea Admin) gb_lint (Lint Roller) renovate (Mend Renovate) gb_pawla (Pawla Abdul) gb_scrubs (Scrubs McBarkley) gb_shedward (Shedward Scissorhands) gb_dogfather (The Dogfather)

No Assignees

1 Participants

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: groombook/app#174