npm - @intranefr/superbackend - Versions diffs - 1.4.3 - Mend

@intranefr/superbackend 1.4.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (188) hide show

package/.commiat +4 -0
package/.env.example +47 -0
package/README.md +110 -0
package/index.js +94 -0
package/package.json +67 -0
package/public/css/styles.css +139 -0
package/public/js/animations.js +41 -0
package/sdk/error-tracking/browser/package.json +16 -0
package/sdk/error-tracking/browser/src/core.js +270 -0
package/sdk/error-tracking/browser/src/embed.js +18 -0
package/sdk/error-tracking/browser/src/index.js +1 -0
package/server.js +5 -0
package/src/admin/endpointRegistry.js +300 -0
package/src/controllers/admin.controller.js +321 -0
package/src/controllers/adminAssets.controller.js +530 -0
package/src/controllers/adminAssetsStorage.controller.js +260 -0
package/src/controllers/adminEjsVirtual.controller.js +354 -0
package/src/controllers/adminFeatureFlags.controller.js +155 -0
package/src/controllers/adminHeadless.controller.js +1071 -0
package/src/controllers/adminI18n.controller.js +604 -0
package/src/controllers/adminJsonConfigs.controller.js +97 -0
package/src/controllers/adminLlm.controller.js +273 -0
package/src/controllers/adminMigration.controller.js +257 -0
package/src/controllers/adminSeoConfig.controller.js +515 -0
package/src/controllers/adminStats.controller.js +121 -0
package/src/controllers/adminUploadNamespaces.controller.js +208 -0
package/src/controllers/assets.controller.js +248 -0
package/src/controllers/auth.controller.js +93 -0
package/src/controllers/billing.controller.js +223 -0
package/src/controllers/featureFlags.controller.js +35 -0
package/src/controllers/forms.controller.js +217 -0
package/src/controllers/globalSettings.controller.js +252 -0
package/src/controllers/headlessCrud.controller.js +126 -0
package/src/controllers/i18n.controller.js +12 -0
package/src/controllers/invite.controller.js +249 -0
package/src/controllers/jsonConfigs.controller.js +19 -0
package/src/controllers/metrics.controller.js +149 -0
package/src/controllers/notificationAdmin.controller.js +264 -0
package/src/controllers/notifications.controller.js +131 -0
package/src/controllers/org.controller.js +357 -0
package/src/controllers/orgAdmin.controller.js +491 -0
package/src/controllers/stripeAdmin.controller.js +410 -0
package/src/controllers/user.controller.js +361 -0
package/src/controllers/userAdmin.controller.js +277 -0
package/src/controllers/waitingList.controller.js +167 -0
package/src/controllers/webhook.controller.js +200 -0
package/src/middleware/auth.js +66 -0
package/src/middleware/errorCapture.js +170 -0
package/src/middleware/headlessApiTokenAuth.js +57 -0
package/src/middleware/org.js +108 -0
package/src/middleware.js +901 -0
package/src/models/ActionEvent.js +31 -0
package/src/models/ActivityLog.js +41 -0
package/src/models/Asset.js +84 -0
package/src/models/AuditEvent.js +93 -0
package/src/models/EmailLog.js +28 -0
package/src/models/ErrorAggregate.js +72 -0
package/src/models/FormSubmission.js +41 -0
package/src/models/GlobalSetting.js +38 -0
package/src/models/HeadlessApiToken.js +24 -0
package/src/models/HeadlessModelDefinition.js +41 -0
package/src/models/I18nEntry.js +77 -0
package/src/models/I18nLocale.js +33 -0
package/src/models/Invite.js +70 -0
package/src/models/JsonConfig.js +46 -0
package/src/models/Notification.js +60 -0
package/src/models/Organization.js +57 -0
package/src/models/OrganizationMember.js +43 -0
package/src/models/StripeCatalogItem.js +77 -0
package/src/models/StripeWebhookEvent.js +57 -0
package/src/models/User.js +89 -0
package/src/models/VirtualEjsFile.js +60 -0
package/src/models/VirtualEjsFileVersion.js +43 -0
package/src/models/VirtualEjsGroupChange.js +32 -0
package/src/models/WaitingList.js +41 -0
package/src/models/Webhook.js +63 -0
package/src/models/Workflow.js +29 -0
package/src/models/WorkflowExecution.js +12 -0
package/src/routes/admin.routes.js +26 -0
package/src/routes/adminAssets.routes.js +28 -0
package/src/routes/adminAssetsStorage.routes.js +13 -0
package/src/routes/adminAudit.routes.js +196 -0
package/src/routes/adminEjsVirtual.routes.js +17 -0
package/src/routes/adminErrors.routes.js +164 -0
package/src/routes/adminFeatureFlags.routes.js +12 -0
package/src/routes/adminHeadless.routes.js +38 -0
package/src/routes/adminI18n.routes.js +22 -0
package/src/routes/adminJsonConfigs.routes.js +15 -0
package/src/routes/adminLlm.routes.js +12 -0
package/src/routes/adminMigration.routes.js +81 -0
package/src/routes/adminSeoConfig.routes.js +20 -0
package/src/routes/adminUploadNamespaces.routes.js +13 -0
package/src/routes/assets.routes.js +21 -0
package/src/routes/auth.routes.js +12 -0
package/src/routes/billing.routes.js +11 -0
package/src/routes/errorTracking.routes.js +31 -0
package/src/routes/featureFlags.routes.js +9 -0
package/src/routes/forms.routes.js +9 -0
package/src/routes/formsAdmin.routes.js +13 -0
package/src/routes/globalSettings.routes.js +18 -0
package/src/routes/headless.routes.js +15 -0
package/src/routes/i18n.routes.js +8 -0
package/src/routes/invite.routes.js +9 -0
package/src/routes/jsonConfigs.routes.js +8 -0
package/src/routes/log.routes.js +111 -0
package/src/routes/metrics.routes.js +9 -0
package/src/routes/notificationAdmin.routes.js +15 -0
package/src/routes/notifications.routes.js +12 -0
package/src/routes/org.routes.js +31 -0
package/src/routes/orgAdmin.routes.js +20 -0
package/src/routes/publicAssets.routes.js +7 -0
package/src/routes/stripeAdmin.routes.js +20 -0
package/src/routes/user.routes.js +22 -0
package/src/routes/userAdmin.routes.js +15 -0
package/src/routes/waitingList.routes.js +13 -0
package/src/routes/waitingListAdmin.routes.js +9 -0
package/src/routes/webhook.routes.js +32 -0
package/src/routes/workflowWebhook.routes.js +54 -0
package/src/routes/workflows.routes.js +110 -0
package/src/services/assets.service.js +110 -0
package/src/services/audit.service.js +62 -0
package/src/services/auditLogger.js +165 -0
package/src/services/ejsVirtual.service.js +614 -0
package/src/services/email.service.js +351 -0
package/src/services/errorLogger.js +221 -0
package/src/services/featureFlags.service.js +202 -0
package/src/services/forms.service.js +214 -0
package/src/services/globalSettings.service.js +49 -0
package/src/services/headlessApiTokens.service.js +158 -0
package/src/services/headlessCrypto.service.js +31 -0
package/src/services/headlessModels.service.js +356 -0
package/src/services/i18n.service.js +314 -0
package/src/services/i18nInferredKeys.service.js +337 -0
package/src/services/jsonConfigs.service.js +392 -0
package/src/services/llm.service.js +749 -0
package/src/services/migration.service.js +581 -0
package/src/services/migrationAssets/fsLocal.js +58 -0
package/src/services/migrationAssets/index.js +134 -0
package/src/services/migrationAssets/s3.js +75 -0
package/src/services/migrationAssets/sftp.js +92 -0
package/src/services/notification.service.js +212 -0
package/src/services/objectStorage.service.js +514 -0
package/src/services/seoConfig.service.js +402 -0
package/src/services/storage.js +150 -0
package/src/services/stripe.service.js +185 -0
package/src/services/stripeHelper.service.js +264 -0
package/src/services/uploadNamespaces.service.js +326 -0
package/src/services/webhook.service.js +157 -0
package/src/services/workflow.service.js +271 -0
package/src/utils/asyncHandler.js +5 -0
package/src/utils/encryption.js +80 -0
package/src/utils/jwt.js +40 -0
package/src/utils/orgRoles.js +156 -0
package/src/utils/validation.js +26 -0
package/src/utils/webhookRetry.js +93 -0
package/views/admin-assets.ejs +444 -0
package/views/admin-audit.ejs +283 -0
package/views/admin-coolify-deploy.ejs +207 -0
package/views/admin-dashboard-home.ejs +291 -0
package/views/admin-dashboard.ejs +397 -0
package/views/admin-ejs-virtual.ejs +280 -0
package/views/admin-errors.ejs +368 -0
package/views/admin-feature-flags.ejs +390 -0
package/views/admin-forms.ejs +526 -0
package/views/admin-global-settings.ejs +436 -0
package/views/admin-headless.ejs +2020 -0
package/views/admin-i18n-locales.ejs +221 -0
package/views/admin-i18n.ejs +728 -0
package/views/admin-json-configs.ejs +410 -0
package/views/admin-llm.ejs +884 -0
package/views/admin-metrics.ejs +274 -0
package/views/admin-migration.ejs +814 -0
package/views/admin-notifications.ejs +430 -0
package/views/admin-organizations.ejs +984 -0
package/views/admin-seo-config.ejs +673 -0
package/views/admin-stripe-pricing.ejs +558 -0
package/views/admin-test.ejs +342 -0
package/views/admin-users.ejs +452 -0
package/views/admin-waiting-list.ejs +547 -0
package/views/admin-webhooks.ejs +329 -0
package/views/admin-workflows.ejs +310 -0
package/views/partials/admin-assets-script.ejs +2022 -0
package/views/partials/admin-test-sidebar.ejs +14 -0
package/views/partials/dashboard/nav-items.ejs +66 -0
package/views/partials/dashboard/palette.ejs +63 -0
package/views/partials/dashboard/sidebar.ejs +21 -0
package/views/partials/dashboard/tab-bar.ejs +26 -0
package/views/partials/footer.ejs +3 -0

package/src/controllers/admin.controller.js ADDED Viewed

@@ -0,0 +1,321 @@
+const User = require('../models/User');
+const StripeWebhookEvent = require('../models/StripeWebhookEvent');
+const asyncHandler = require('../utils/asyncHandler');
+const fs = require('fs');
+const path = require('path');
+const stripe = require('stripe')(process.env.STRIPE_SECRET_KEY);
+const { generateAccessToken, generateRefreshToken } = require('../utils/jwt');
+const { retryFailedWebhooks, processWebhookEvent } = require('../utils/webhookRetry');
+// Get all users
+const getUsers = asyncHandler(async (req, res) => {
+  const users = await User.find()
+    .select('-passwordHash')
+    .sort({ createdAt: -1 })
+    .limit(100);
+  res.json(users.map(u => u.toJSON()));
+});
+// Get single user
+const getUser = asyncHandler(async (req, res) => {
+  const user = await User.findById(req.params.id);
+  if (!user) {
+    return res.status(404).json({ error: 'User not found' });
+  }
+  res.json({ user: user.toJSON() });
+});
+// Update user subscription
+const updateUserSubscription = asyncHandler(async (req, res) => {
+  const { subscriptionStatus } = req.body;
+  const user = await User.findById(req.params.id);
+  if (!user) {
+    return res.status(404).json({ error: 'User not found' });
+  }
+  if (subscriptionStatus) {
+    user.subscriptionStatus = subscriptionStatus;
+  }
+  await user.save();
+  res.json({ user: user.toJSON() });
+});
+// Update user password
+const updateUserPassword = asyncHandler(async (req, res) => {
+  const { passwordHash } = req.body;
+  const bcrypt = require('bcryptjs');
+  const user = await User.findById(req.params.id);
+  if (!user) {
+    return res.status(404).json({ error: 'User not found' });
+  }
+  if (!passwordHash) {
+    return res.status(400).json({ error: 'Password is required' });
+  }
+  // Detect if the provided password is already a bcrypt hash
+  const isBcryptHash = /^\$2[aby]\$\d{2}\$/.test(passwordHash);
+  if (isBcryptHash) {
+    return res.status(400).json({
+      error: 'Invalid password format',
+      message: 'The password appears to be already hashed. Please provide a plaintext password instead.',
+      hint: 'Bcrypt hashes start with $2a$, $2b$, or $2y$ followed by a cost parameter (e.g., $2a$10$...)'
+    });
+  }
+  try {
+    // Set plaintext password and let pre-save hook hash it
+    user.passwordHash = passwordHash;
+    await user.save();
+  } catch (error) {
+    console.error('Save error:', error);
+    throw error;
+  }
+  res.json({ user: user.toJSON() });
+});
+// Reconcile user subscription
+const reconcileUser = asyncHandler(async (req, res) => {
+  const user = await User.findById(req.params.id);
+  if (!user) {
+    return res.status(404).json({ error: 'User not found' });
+  }
+  if (!user.stripeCustomerId) {
+    return res.json({ status: 'success', message: 'No Stripe customer found' });
+  }
+  const subscriptions = await stripe.subscriptions.list({
+    customer: user.stripeCustomerId,
+    limit: 1
+  });
+  if (subscriptions.data.length > 0) {
+    const subscription = subscriptions.data[0];
+    user.stripeSubscriptionId = subscription.id;
+    user.subscriptionStatus = subscription.status === 'active' ? 'active' : subscription.status;
+    await user.save();
+  } else {
+    // No active subscription found. Check for successful one-off (payment) checkouts
+    const sessions = await stripe.checkout.sessions.list({
+      customer: user.stripeCustomerId,
+      limit: 10
+    });
+    const lifetimeSession = sessions.data.find((session) => {
+      const mode = session.metadata?.billingMode || session.mode;
+      return (
+        mode === 'payment' &&
+        session.payment_status === 'paid'
+      );
+    });
+    if (lifetimeSession) {
+      user.subscriptionStatus = 'active';
+    } else {
+      user.subscriptionStatus = 'none';
+    }
+    await user.save();
+  }
+  res.json({ status: 'success', user: user.toJSON() });
+});
+// Generate JWT for testing
+const generateToken = asyncHandler(async (req, res) => {
+  const { userId } = req.body;
+  if (!userId) {
+    return res.status(400).json({ error: 'userId is required' });
+  }
+  const user = await User.findById(userId);
+  if (!user) {
+    return res.status(404).json({ error: 'User not found' });
+  }
+  const token = generateAccessToken(user._id);
+  const refreshToken = generateRefreshToken(user._id);
+  res.json({ token, refreshToken, userId: user._id });
+});
+// Get all webhook events
+const getWebhookEvents = asyncHandler(async (req, res) => {
+  const { limit = 50, offset = 0, eventType, status } = req.query;
+  const filter = {};
+  if (eventType) filter.eventType = eventType;
+  if (status) filter.status = status;
+  const events = await StripeWebhookEvent.find(filter)
+    .sort({ receivedAt: -1 })
+    .skip(parseInt(offset))
+    .limit(parseInt(limit));
+  const total = await StripeWebhookEvent.countDocuments(filter);
+  res.json({
+    events,
+    pagination: {
+      total,
+      limit: parseInt(limit),
+      offset: parseInt(offset)
+    }
+  });
+});
+// Get single webhook event
+const getWebhookEvent = asyncHandler(async (req, res) => {
+  const event = await StripeWebhookEvent.findOne({ stripeEventId: req.params.id });
+  if (!event) {
+    return res.status(404).json({ error: 'Webhook event not found' });
+  }
+  res.json({ event });
+});
+// Retry failed webhook events
+const retryFailedWebhookEvents = asyncHandler(async (req, res) => {
+  const { limit = 10, maxRetries = 3 } = req.body;
+  const results = await retryFailedWebhooks({ limit, maxRetries });
+  res.json({
+    status: 'success',
+    results
+  });
+});
+// Retry single webhook event
+const retrySingleWebhookEvent = asyncHandler(async (req, res) => {
+  const event = await StripeWebhookEvent.findOne({ stripeEventId: req.params.id });
+  if (!event) {
+    return res.status(404).json({ error: 'Webhook event not found' });
+  }
+  if (event.status === 'processed') {
+    return res.status(400).json({ error: 'Event already processed' });
+  }
+  try {
+    await processWebhookEvent(event);
+    event.status = 'processed';
+    event.processedAt = new Date();
+    await event.save();
+    res.json({
+      status: 'success',
+      message: 'Event processed successfully',
+      event
+    });
+  } catch (err) {
+    event.retryCount++;
+    event.processingErrors.push({
+      message: err.message,
+      timestamp: new Date()
+    });
+    await event.save();
+    res.status(500).json({
+      status: 'error',
+      message: err.message,
+      event
+    });
+  }
+});
+// Get webhook statistics
+const getWebhookStats = asyncHandler(async (req, res) => {
+  const stats = await StripeWebhookEvent.aggregate([
+    {
+      $group: {
+        _id: '$status',
+        count: { $sum: 1 }
+      }
+    }
+  ]);
+  const eventTypeStats = await StripeWebhookEvent.aggregate([
+    {
+      $group: {
+        _id: '$eventType',
+        count: { $sum: 1 },
+        failedCount: {
+          $sum: { $cond: [{ $eq: ['$status', 'failed'] }, 1, 0] }
+        }
+      }
+    },
+    { $sort: { count: -1 } }
+  ]);
+  const recentFailures = await StripeWebhookEvent.find({ status: 'failed' })
+    .sort({ receivedAt: -1 })
+    .limit(10)
+    .select('stripeEventId eventType receivedAt retryCount processingErrors');
+  res.json({
+    statusStats: stats,
+    eventTypeStats,
+    recentFailures
+  });
+});
+// Coolify Headless Deploy provisioning
+const provisionCoolifyDeploy = asyncHandler(async (req, res) => {
+  try {
+    const { overwrite } = req.body;
+    const managePath = path.join(process.cwd(), "manage.sh");
+    const exists = fs.existsSync(managePath);
+    if (exists && !overwrite) {
+      return res.json({
+        success: false,
+        requiresConfirmation: true,
+        message: "Script already exists. Do you want to overwrite it?",
+      });
+    }
+    // In ref-saasbackend, manage.sh already exists in the root of the repository
+    // If it didn't, we would write it here. For this case, we'll just success.
+    res.json({
+      success: true,
+      message: exists
+        ? "Coolify Headless Deploy script (manage.sh) was already there."
+        : "Coolify Headless Deploy script (manage.sh) is ready in the root directory.",
+      path: managePath,
+    });
+  } catch (error) {
+    console.error("❌ Error provisioning script:", error);
+    res.status(500).json({ error: error.message });
+  }
+});
+module.exports = {
+  getUsers,
+  getUser,
+  updateUserSubscription,
+  updateUserPassword,
+  reconcileUser,
+  generateToken,
+  getWebhookEvents,
+  getWebhookEvent,
+  retryFailedWebhookEvents,
+  retrySingleWebhookEvent,
+  getWebhookStats,
+  provisionCoolifyDeploy
+};