feat: initialize project with Next.js, Prisma, and Tailwind CSS

- Add package.json with dependencies and scripts for Next.js and Prisma - Implement API routes for session management, user authentication, and company configuration - Create database schema for Company, User, and Session models in Prisma - Set up authentication with NextAuth and JWT - Add password reset functionality and user registration endpoint - Configure Tailwind CSS and PostCSS for styling - Implement metrics and dashboard settings API endpoints
2026-01-16 09:32:08 +01:00 · 2025-05-21 20:44:56 +02:00
commit cdaa3ea19d
36 changed files with 7662 additions and 0 deletions
--- a/pages/api/dashboard/users.ts
+++ b/pages/api/dashboard/users.ts
@ -0,0 +1,56 @@
+import { NextApiRequest, NextApiResponse } from "next";
+import { getServerSession } from "next-auth";
+import { prisma } from "../../../lib/prisma";
+import bcrypt from "bcryptjs";
+import { authOptions } from "../auth/[...nextauth]";
+// User type from prisma is used instead of the one in lib/types
+
+interface UserBasicInfo {
+    id: string;
+    email: string;
+    role: string;
+}
+
+export default async function handler(req: NextApiRequest, res: NextApiResponse) {
+    const session = await getServerSession(req, res, authOptions);
+    if (!session?.user || session.user.role !== "admin")
+        return res.status(403).json({ error: "Forbidden" });
+
+    const user = await prisma.user.findUnique({
+        where: { email: session.user.email as string }
+    });
+
+    if (!user) return res.status(401).json({ error: "No user" });
+
+    if (req.method === "GET") {
+        const users = await prisma.user.findMany({
+            where: { companyId: user.companyId }
+        });
+
+        const mappedUsers: UserBasicInfo[] = users.map(u => ({
+            id: u.id,
+            email: u.email,
+            role: u.role
+        }));
+
+        res.json({ users: mappedUsers });
+    }
+    else if (req.method === "POST") {
+        const { email, role } = req.body;
+        if (!email || !role) return res.status(400).json({ error: "Missing fields" });
+        const exists = await prisma.user.findUnique({ where: { email } });
+        if (exists) return res.status(409).json({ error: "Email exists" });
+        const tempPassword = Math.random().toString(36).slice(-8); // random initial password
+        await prisma.user.create({
+            data: {
+                email,
+                password: await bcrypt.hash(tempPassword, 10),
+                companyId: user.companyId,
+                role,
+            }
+        });
+        // TODO: Email user their temp password (stub, for demo)
+        res.json({ ok: true, tempPassword });
+    }
+    else res.status(405).end();
+}