kjanat/livedash-node
1
0
Fork 0
mirror of https://github.com/kjanat/livedash-node.git synced 2026-01-16 09:32:08 +01:00
Code Issues Packages Projects Releases Wiki Activity

feat: implement platform management system with authentication and dashboard

Browse Source 
- Add PlatformUser model with roles (SUPER_ADMIN, ADMIN, SUPPORT)
- Implement platform authentication with NextAuth
- Create platform dashboard showing companies, users, and sessions
- Add platform API endpoints for company management
- Update landing page with SaaS design
- Include test improvements and accessibility updates
This commit is contained in:
Kaj Kowalski
2025-06-28 12:41:50 +02:00
parent aa0e9d5ebc
commit 60d1b72aba
18 changed files with 1190 additions and 53 deletions
Download Patch File Download Diff File Expand all files Collapse all files

108
app/api/platform/auth/[...nextauth]/route.ts Normal file
View File

@ -0,0 +1,108 @@
import NextAuth, { NextAuthOptions } from "next-auth";
import CredentialsProvider from "next-auth/providers/credentials";
import { prisma } from "../../../../../lib/prisma";
import bcrypt from "bcryptjs";
// Define the shape of the JWT token for platform users
declare module "next-auth/jwt" {
interface JWT {
isPlatformUser: boolean;
platformRole: string;
}
}
// Define the shape of the session object for platform users
declare module "next-auth" {
interface Session {
user: {
id?: string;
name?: string;
email?: string;
image?: string;
isPlatformUser: boolean;
platformRole: string;
};
}
interface User {
id: string;
email: string;
name: string;
isPlatformUser: boolean;
platformRole: string;
}
}
export const platformAuthOptions: NextAuthOptions = {
providers: [
CredentialsProvider({
name: "Platform Credentials",
credentials: {
email: { label: "Email", type: "text" },
password: { label: "Password", type: "password" },
},
async authorize(credentials) {
if (!credentials?.email || !credentials?.password) {
return null;
}
const platformUser = await prisma.platformUser.findUnique({
where: { email: credentials.email },
});
if (!platformUser) return null;
const valid = await bcrypt.compare(credentials.password, platformUser.password);
if (!valid) return null;
return {
id: platformUser.id,
email: platformUser.email,
name: platformUser.name,
isPlatformUser: true,
platformRole: platformUser.role,
};
},
}),
],
session: {
strategy: "jwt",
maxAge: 8 * 60 * 60, // 8 hours for platform users (more secure)
},
cookies: {
sessionToken: {
name: `platform-auth.session-token`,
options: {
httpOnly: true,
sameSite: "lax",
path: "/platform",
secure: process.env.NODE_ENV === "production",
},
},
},
callbacks: {
async jwt({ token, user }) {
if (user) {
token.isPlatformUser = user.isPlatformUser;
token.platformRole = user.platformRole;
}
return token;
},
async session({ session, token }) {
if (token && session.user) {
session.user.isPlatformUser = token.isPlatformUser;
session.user.platformRole = token.platformRole;
}
return session;
},
},
pages: {
signIn: "/platform/login",
},
secret: process.env.NEXTAUTH_SECRET,
debug: process.env.NODE_ENV === "development",
};
const handler = NextAuth(platformAuthOptions);
export { handler as GET, handler as POST };

125
app/api/platform/companies/[id]/route.ts Normal file
View File

@ -0,0 +1,125 @@
import { NextRequest, NextResponse } from "next/server";
import { getServerSession } from "next-auth";
import { platformAuthOptions } from "../../auth/[...nextauth]/route";
import { prisma } from "../../../../../lib/prisma";
import { CompanyStatus } from "@prisma/client";
// GET /api/platform/companies/[id] - Get company details
export async function GET(
request: NextRequest,
{ params }: { params: Promise<{ id: string }> }
) {
try {
const session = await getServerSession(platformAuthOptions);
if (!session?.user?.isPlatformUser) {
return NextResponse.json({ error: "Platform access required" }, { status: 401 });
}
const { id } = await params;
const company = await prisma.company.findUnique({
where: { id },
include: {
users: {
select: {
id: true,
email: true,
role: true,
createdAt: true,
updatedAt: true,
},
},
sessions: {
select: {
id: true,
startTime: true,
endTime: true,
sentiment: true,
category: true,
},
take: 10,
orderBy: { createdAt: "desc" },
},
_count: {
select: {
sessions: true,
imports: true,
users: true,
},
},
},
});
if (!company) {
return NextResponse.json({ error: "Company not found" }, { status: 404 });
}
return NextResponse.json({ company });
} catch (error) {
console.error("Platform company details error:", error);
return NextResponse.json({ error: "Internal server error" }, { status: 500 });
}
}
// PATCH /api/platform/companies/[id] - Update company
export async function PATCH(
request: NextRequest,
{ params }: { params: Promise<{ id: string }> }
) {
try {
const session = await getServerSession(platformAuthOptions);
if (!session?.user?.isPlatformUser || session.user.platformRole === "SUPPORT") {
return NextResponse.json({ error: "Admin access required" }, { status: 403 });
}
const { id } = await params;
const body = await request.json();
const { name, csvUrl, csvUsername, csvPassword, status } = body;
const updateData: any = {};
if (name !== undefined) updateData.name = name;
if (csvUrl !== undefined) updateData.csvUrl = csvUrl;
if (csvUsername !== undefined) updateData.csvUsername = csvUsername;
if (csvPassword !== undefined) updateData.csvPassword = csvPassword;
if (status !== undefined) updateData.status = status;
const company = await prisma.company.update({
where: { id },
data: updateData,
});
return NextResponse.json({ company });
} catch (error) {
console.error("Platform company update error:", error);
return NextResponse.json({ error: "Internal server error" }, { status: 500 });
}
}
// DELETE /api/platform/companies/[id] - Delete company (archives instead)
export async function DELETE(
request: NextRequest,
{ params }: { params: Promise<{ id: string }> }
) {
try {
const session = await getServerSession(platformAuthOptions);
if (!session?.user?.isPlatformUser || session.user.platformRole !== "SUPER_ADMIN") {
return NextResponse.json({ error: "Super admin access required" }, { status: 403 });
}
const { id } = await params;
// Archive instead of delete to preserve data integrity
const company = await prisma.company.update({
where: { id },
data: { status: CompanyStatus.ARCHIVED },
});
return NextResponse.json({ company });
} catch (error) {
console.error("Platform company archive error:", error);
return NextResponse.json({ error: "Internal server error" }, { status: 500 });
}
}

99
app/api/platform/companies/route.ts Normal file
View File

@ -0,0 +1,99 @@
import { NextRequest, NextResponse } from "next/server";
import { getServerSession } from "next-auth";
import { platformAuthOptions } from "../auth/[...nextauth]/route";
import { prisma } from "../../../../lib/prisma";
import { CompanyStatus } from "@prisma/client";
// GET /api/platform/companies - List all companies
export async function GET(request: NextRequest) {
try {
const session = await getServerSession(platformAuthOptions);
if (!session?.user?.isPlatformUser) {
return NextResponse.json({ error: "Platform access required" }, { status: 401 });
}
const { searchParams } = new URL(request.url);
const status = searchParams.get("status") as CompanyStatus | null;
const search = searchParams.get("search");
const page = parseInt(searchParams.get("page") || "1");
const limit = parseInt(searchParams.get("limit") || "20");
const offset = (page - 1) * limit;
const where: any = {};
if (status) where.status = status;
if (search) {
where.name = {
contains: search,
mode: "insensitive",
};
}
const [companies, total] = await Promise.all([
prisma.company.findMany({
where,
include: {
users: {
select: { id: true, email: true, role: true, createdAt: true },
},
_count: {
select: {
sessions: true,
imports: true,
},
},
},
orderBy: { createdAt: "desc" },
skip: offset,
take: limit,
}),
prisma.company.count({ where }),
]);
return NextResponse.json({
companies,
pagination: {
page,
limit,
total,
pages: Math.ceil(total / limit),
},
});
} catch (error) {
console.error("Platform companies list error:", error);
return NextResponse.json({ error: "Internal server error" }, { status: 500 });
}
}
// POST /api/platform/companies - Create new company
export async function POST(request: NextRequest) {
try {
const session = await getServerSession(platformAuthOptions);
if (!session?.user?.isPlatformUser || session.user.platformRole === "SUPPORT") {
return NextResponse.json({ error: "Admin access required" }, { status: 403 });
}
const body = await request.json();
const { name, csvUrl, csvUsername, csvPassword, status = "TRIAL" } = body;
if (!name || !csvUrl) {
return NextResponse.json({ error: "Name and CSV URL required" }, { status: 400 });
}
const company = await prisma.company.create({
data: {
name,
csvUrl,
csvUsername: csvUsername || null,
csvPassword: csvPassword || null,
status,
},
});
return NextResponse.json({ company }, { status: 201 });
} catch (error) {
console.error("Platform company creation error:", error);
return NextResponse.json({ error: "Internal server error" }, { status: 500 });
}
}