Platform review round 2: audit logging migration, nav unification, DB indexes, and UI polish

- Migrate ~41 inline audit log calls to shared logAudit() utility across all routers - Add transaction-aware prisma parameter to logAudit() for atomic operations - Unify jury/mentor/observer navigation into shared RoleNav component - Add composite DB indexes (Evaluation, GracePeriod, AuditLog) for query performance - Fix profile page: consolidate dual save buttons, proper useEffect initialization - Enhance auth error page with MOPC branding and navigation - Improve observer dashboard with prominent read-only badge - Fix DI-3: fetch projects before bulk status update for accurate notifications - Remove unused aiBoost field from smart-assignment scoring - Add shared image-upload utility and structured logger module Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-05 21:09:06 +01:00
parent 8d0979e649
commit 002a9dbfc3
34 changed files with 1688 additions and 1782 deletions
--- a/src/server/routers/application.ts
+++ b/src/server/routers/application.ts
@@ -8,6 +8,7 @@ import {
  NotificationTypes,
 } from '../services/in-app-notification'
 import { checkRateLimit } from '@/lib/rate-limit'
+import { logAudit } from '@/server/utils/audit'

 // Zod schemas for the application form
 const teamMemberSchema = z.object({
@@ -299,20 +300,19 @@ export const applicationRouter = router({
      }

      // Create audit log
-      await ctx.prisma.auditLog.create({
-        data: {
-          userId: user.id,
-          action: 'CREATE',
-          entityType: 'Project',
-          entityId: project.id,
-          detailsJson: {
-            source: 'public_application_form',
-            title: data.projectName,
-            category: data.competitionCategory,
-          },
-          ipAddress: ctx.ip,
-          userAgent: ctx.userAgent,
+      await logAudit({
+        prisma: ctx.prisma,
+        userId: user.id,
+        action: 'CREATE',
+        entityType: 'Project',
+        entityId: project.id,
+        detailsJson: {
+          source: 'public_application_form',
+          title: data.projectName,
+          category: data.competitionCategory,
        },
+        ipAddress: ctx.ip,
+        userAgent: ctx.userAgent,
      })

      // Notify applicant of successful submission