Skip to content

[TASK-14494] fix: minor UI issues #1208

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Sep 17, 2025
Merged

[TASK-14494] fix: minor UI issues #1208

merged 1 commit into from
Sep 17, 2025

Conversation

Zishan-7
Copy link
Contributor

image Screenshot 2025-09-12 at 4 31 44 PM

@vercel Vercel
Copy link

vercel bot commented Sep 12, 2025
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Preview Comments Updated (UTC)
peanut-wallet Ready Ready Preview Comment Sep 12, 2025 11:06am

@notion-workspace Notion Workspace
Copy link

Minor ui/ux issues

@coderabbitai coderabbitai
Copy link
Contributor

coderabbitai bot commented Sep 12, 2025
edited
Loading

Walkthrough

Adjusts layout/styling in the IframeWrapper (height tweaks) and TransactionDetails drawer (padding changes). Adds an optional className prop to TransactionDetailsReceipt to support horizontal padding. No logic or behavior changes.

Changes

Cohort / File(s) Summary
IframeWrapper layout tweaks
src/components/Global/IframeWrapper/index.tsx		 Increased iframe height from 80% to 85%; container div height changed from 20% to 15%. Styling-only.
TransactionDetails drawer/receipt padding and prop
src/components/TransactionDetails/TransactionDetailsDrawer.tsx, src/components/TransactionDetails/TransactionDetailsReceipt.tsx		 DrawerContent padding updated from p-5 to py-5; TransactionDetailsReceipt now receives className="px-5"; adds optional className?: string to TransactionDetailsReceiptProps.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

Possibly related PRs

Suggested labels

enhancement

Suggested reviewers

  • jjramirezn
  • kushagrasarathe
  • Hugo0

Pre-merge checks (2 passed, 1 inconclusive)

❌ Failed checks (1 inconclusive)
Check name Status Explanation Resolution
Title Check ❓ Inconclusive The current title "[TASK-14494] fix: minor UI issues" correctly signals UI fixes and includes the task ID, but it is overly generic and does not highlight the primary changes (adjusted IframeWrapper/container heights, drawer/receipt padding, and the added optional className). This vagueness makes it unclear to a reviewer scanning history what the main change is. Please make the title concise and specific (for example: "fix: adjust iframe height and transaction drawer padding") so the primary UI edits are clear to reviewers; keeping the task ID is fine.
✅ Passed checks (2 passed)
Check name Status Explanation
Description Check ✅ Passed The PR description contains two screenshot attachments that demonstrably relate to the UI changes in the diff, so it is on-topic and meets this lenient check. However, it lacks any textual summary of the specific files or edits, which would help reviewers understand the intent without opening the images or diff.
Docstring Coverage ✅ Passed No functions found in the changes. Docstring coverage check skipped.
✨ Finishing touches
  • 📝 Generate Docstrings
🧪 Generate unit tests
  • Create PR with unit tests
  • Post copyable unit tests in a comment
  • Commit unit tests in branch fix/ui-ux-issues

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@coderabbitai coderabbitai bot added the enhancement New feature or request label Sep 12, 2025
coderabbitai[bot]
coderabbitai bot reviewed Sep 12, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 0

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)
src/components/Global/IframeWrapper/index.tsx (1)

91-106: Validate postMessage origin and source to avoid spoofed close events

The message handler trusts any window and any origin. A malicious page can postMessage to your app and force-close the modal. Check both event.origin against new URL(src).origin and event.source against the iframe’s contentWindow.

Apply this diff:

@@
-    useEffect(() => {
-        const handleMessage = (event: MessageEvent) => {
-            const data = event.data
-            if (data?.name === 'complete' && data?.metadata?.status === 'completed') {
-                onClose('completed')
-            }
-            // @dev note: kinda hacky, but tos modal takes too long to close using websocket, so we use the signedAgreementId to close it
-            // persona fires this event when the user clicks the "accept" button within the iframe
-            if (data?.signedAgreementId) {
-                onClose('tos_accepted')
-            }
-        }
-
-        window.addEventListener('message', handleMessage)
-        return () => window.removeEventListener('message', handleMessage)
-    }, [onClose])
+    useEffect(() => {
+        const allowedOrigin = (() => {
+            try {
+                return new URL(src, window.location.href).origin
+            } catch {
+                return null
+            }
+        })()
+
+        const handleMessage = (event: MessageEvent) => {
+            if (!allowedOrigin || event.origin !== allowedOrigin) return
+            if (event.source !== iframeRef.current?.contentWindow) return
+            const data = event.data
+            if (data?.name === 'complete' && data?.metadata?.status === 'completed') {
+                onClose('completed')
+            }
+            if (data?.signedAgreementId) {
+                onClose('tos_accepted')
+            }
+        }
+
+        window.addEventListener('message', handleMessage)
+        return () => window.removeEventListener('message', handleMessage)
+    }, [onClose, src])

And add the iframe ref:

@@
-    const [isVerificationStarted, setIsVerificationStarted] = useState(false)
+    const [isVerificationStarted, setIsVerificationStarted] = useState(false)
+    const iframeRef = useRef<HTMLIFrameElement>(null)
@@
-                        <iframe
+                        <iframe
+                            ref={iframeRef}
🧹 Nitpick comments (3)
src/components/Global/IframeWrapper/index.tsx (3)

141-146: Height re-balance looks fine; consider flex-based layout to avoid % height edge cases

85%/15% sums cleanly, but percent heights inside scrolling containers can produce nested scroll/overflow on iOS. A flex-based approach is more resilient; also prefer Tailwind over inline styles for consistency.

Minimal diff to switch to flex and Tailwind:

-                    <div className="h-full w-full flex-grow overflow-scroll">
-                        <iframe
+                    <div className="flex h-full w-full flex-col overflow-auto">
+                        <iframe
                             key={src}
                             src={src}
                             allow="camera;"
-                            style={{ width: '100%', height: '85%', border: 'none' }}
-                            className="rounded-md"
+                            className="rounded-md w-full flex-1 border-0"
                             sandbox="allow-same-origin allow-scripts allow-forms allow-popups allow-modals allow-top-navigation-by-user-activation"
                         />
-                        <div className="flex h-[15%] w-full flex-col items-center justify-center gap-4 px-5">
+                        <div className="flex w-full flex-col items-center justify-center gap-4 px-5 py-4 shrink-0">

24-29: Clipboard: add a small catch for rejected writes

navigator.clipboard.writeText can fail (permissions/HTTP). Add a catch to surface a helpful message or fallback.

-    navigator.clipboard.writeText(textToCopy).then(() => {
+    navigator.clipboard.writeText(textToCopy).then(() => {
         setCopied(true)
         setTimeout(() => setCopied(false), 2000)
-    })
+    }).catch(() => {
+        // Optional: toast/error UI
+        setCopied(false)
+    })

116-120: String contains check for TOS is brittle

src.includes('tos') can misfire. Prefer URL parsing and explicit pathname check.

-                if (src.includes('tos')) {
+                const pathname = (() => { try { return new URL(src, location.href).pathname } catch { return '' } })()
+                if (pathname.toLowerCase().includes('/tos')) {
                     onClose('manual')
                     return
                 }
📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between b37c3cc and 481f8c3.

📒 Files selected for processing (2)
  • src/components/Global/IframeWrapper/index.tsx (1 hunks)
  • src/components/TransactionDetails/TransactionDetailsDrawer.tsx (2 hunks)
🧰 Additional context used
🧬 Code graph analysis (1)
src/components/TransactionDetails/TransactionDetailsDrawer.tsx (1)
src/components/Global/Drawer/index.tsx (1)
  • DrawerContent (86-86)
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (1)
  • GitHub Check: Deploy-Preview
🔇 Additional comments (3)
src/components/Global/IframeWrapper/index.tsx (1)

143-144: Reconfirm sandbox permissions are the minimum required

allow-same-origin, allow-popups, and allow-top-navigation-by-user-activation broaden capabilities. If Persona flow doesn’t require all of them, tighten the list.

Quick checks to run in QA:

  • Does verification still work if you drop allow-popups?
  • Is allow-same-origin actually needed for the KYC vendor embed?
  • Is top navigation required, or does the flow use in-iframe redirects only?
src/components/TransactionDetails/TransactionDetailsDrawer.tsx (2)

46-46: LGTM on DrawerContent padding tweak

Switching to py-5 here and delegating horizontal padding to the child makes spacing ownership clearer.

56-56: TransactionDetailsReceipt already forwards className; nested px found — decide whether to remove inner padding

  • TransactionDetailsReceipt accepts className?: HTMLDivElement['className'] and forwards it to the outermost wrapper: src/components/TransactionDetails/TransactionDetailsReceipt.tsx:280 — <div ref={contentRef} className={twMerge('space-y-4', className)}>
  • Drawer passes the padding prop: src/components/TransactionDetails/TransactionDetailsDrawer.tsx:56 — className="px-5".
  • There is a nested Card with its own horizontal padding: src/components/TransactionDetails/TransactionDetailsReceipt.tsx:301 — className="px-4 py-0". Remove or align that inner px-4 if you want the Drawer’s px-5 to be the single source of horizontal padding.

Likely an incorrect or invalid review comment.

@Zishan-7 Zishan-7 merged commit 3aa019f into peanut-wallet-dev Sep 17, 2025
5 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] left review comments

@kushagrasarathe kushagrasarathe kushagrasarathe approved these changes

Assignees

No one assigned

Labels

enhancement New feature or request

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Zishan-7 @kushagrasarathe