@kyro-cms/admin 0.1.2

package/dist/server/chunks/login_DLyqMRO8.mjs

@@ -0,0 +1,93 @@
+import { RedisAuthAdapter } from './index_CVqOkerS.mjs';
+import jwt from 'jsonwebtoken';
+
+const JWT_SECRET = process.env.JWT_SECRET || "change-me-in-production";
+const JWT_EXPIRES_IN = process.env.JWT_EXPIRES_IN || "24h";
+async function getAuthApi() {
+  return new RedisAuthAdapter({
+    url: process.env.REDIS_URL || "redis://localhost:6379",
+    tls: process.env.REDIS_TLS === "true"
+  });
+}
+const POST = async ({ request }) => {
+  try {
+    const body = await request.json();
+    const { email, password } = body;
+    if (!email || !password) {
+      return new Response(
+        JSON.stringify({ error: "Email and password required" }),
+        { status: 400, headers: { "Content-Type": "application/json" } }
+      );
+    }
+    const adapter = await getAuthApi();
+    await adapter.connect();
+    const user = await adapter.findUserByEmail(email);
+    if (!user || !user.passwordHash) {
+      await adapter.disconnect();
+      return new Response(JSON.stringify({ error: "Invalid credentials" }), {
+        status: 401,
+        headers: { "Content-Type": "application/json" }
+      });
+    }
+    if (user.locked) {
+      await adapter.disconnect();
+      return new Response(JSON.stringify({ error: "Account is locked" }), {
+        status: 403,
+        headers: { "Content-Type": "application/json" }
+      });
+    }
+    const valid = await adapter.verifyPassword(password, user.passwordHash);
+    if (!valid) {
+      await adapter.recordFailedAttempt(user.id);
+      await adapter.disconnect();
+      return new Response(JSON.stringify({ error: "Invalid credentials" }), {
+        status: 401,
+        headers: { "Content-Type": "application/json" }
+      });
+    }
+    await adapter.resetAttempts(user.id);
+    const session = await adapter.createSession(user.id, {
+      ipAddress: request.headers.get("x-forwarded-for") || "unknown",
+      userAgent: request.headers.get("user-agent") || ""
+    });
+    const token = jwt.sign(
+      {
+        sub: user.id,
+        email: user.email,
+        role: user.role,
+        tenantId: user.tenantId
+      },
+      JWT_SECRET,
+      { expiresIn: JWT_EXPIRES_IN }
+    );
+    await adapter.disconnect();
+    const { passwordHash, ...safeUser } = user;
+    return new Response(
+      JSON.stringify({
+        success: true,
+        user: safeUser,
+        token,
+        refreshToken: session.refreshToken
+      }),
+      {
+        status: 200,
+        headers: { "Content-Type": "application/json" }
+      }
+    );
+  } catch (error) {
+    console.error("Login error:", error);
+    return new Response(JSON.stringify({ error: "Login failed" }), {
+      status: 500,
+      headers: { "Content-Type": "application/json" }
+    });
+  }
+};
+
+const _page = /*#__PURE__*/Object.freeze(/*#__PURE__*/Object.defineProperty({
+  __proto__: null,
+  POST
+}, Symbol.toStringTag, { value: 'Module' }));
+
+const page = () => _page;
+
+export { page };

package/dist/server/chunks/logout_CSbt5wea.mjs

@@ -0,0 +1,50 @@
+import { RedisAuthAdapter } from './index_CVqOkerS.mjs';
+
+async function getAuthApi() {
+  return new RedisAuthAdapter({
+    url: process.env.REDIS_URL || "redis://localhost:6379",
+    tls: process.env.REDIS_TLS === "true"
+  });
+}
+const POST = async ({ request }) => {
+  try {
+    const body = await request.json();
+    const { refreshToken } = body;
+    if (!refreshToken) {
+      return new Response(JSON.stringify({ error: "Refresh token required" }), {
+        status: 400,
+        headers: { "Content-Type": "application/json" }
+      });
+    }
+    const adapter = await getAuthApi();
+    await adapter.connect();
+    const session = await adapter.findSessionByToken(refreshToken);
+    if (!session) {
+      await adapter.disconnect();
+      return new Response(JSON.stringify({ error: "Invalid refresh token" }), {
+        status: 401,
+        headers: { "Content-Type": "application/json" }
+      });
+    }
+    await adapter.disconnect();
+    return new Response(JSON.stringify({ success: true, session }), {
+      status: 200,
+      headers: { "Content-Type": "application/json" }
+    });
+  } catch (error) {
+    console.error("Logout error:", error);
+    return new Response(JSON.stringify({ error: "Logout failed" }), {
+      status: 500,
+      headers: { "Content-Type": "application/json" }
+    });
+  }
+};
+
+const _page = /*#__PURE__*/Object.freeze(/*#__PURE__*/Object.defineProperty({
+  __proto__: null,
+  POST
+}, Symbol.toStringTag, { value: 'Module' }));
+
+const page = () => _page;
+
+export { page };

package/dist/server/chunks/me_C04jlYhH.mjs

@@ -0,0 +1,41 @@
+import jwt from 'jsonwebtoken';
+
+const JWT_SECRET = process.env.JWT_SECRET || "change-me-in-production";
+const GET = async ({ request }) => {
+  const authHeader = request.headers.get("authorization");
+  const token = authHeader?.startsWith("Bearer ") ? authHeader.slice(7) : null;
+  if (!token) {
+    return new Response(JSON.stringify({ error: "Not authenticated" }), {
+      status: 401,
+      headers: { "Content-Type": "application/json" }
+    });
+  }
+  try {
+    const payload = jwt.verify(token, JWT_SECRET);
+    return new Response(
+      JSON.stringify({
+        user: {
+          id: payload.sub,
+          email: payload.email,
+          role: payload.role,
+          tenantId: payload.tenantId
+        }
+      }),
+      { status: 200, headers: { "Content-Type": "application/json" } }
+    );
+  } catch {
+    return new Response(JSON.stringify({ error: "Invalid token" }), {
+      status: 401,
+      headers: { "Content-Type": "application/json" }
+    });
+  }
+};
+
+const _page = /*#__PURE__*/Object.freeze(/*#__PURE__*/Object.defineProperty({
+  __proto__: null,
+  GET
+}, Symbol.toStringTag, { value: 'Module' }));
+
+const page = () => _page;
+
+export { page };

package/dist/server/chunks/new_BbQ9b55M.mjs

@@ -0,0 +1,92 @@
+import { c as createComponent } from './astro-component_Dbx3T2Nh.mjs';
+import 'piccolore';
+import { Q as renderTemplate, a3 as addAttribute, B as maybeRenderHead } from './sequence_9cl7AJy-.mjs';
+import { r as renderComponent } from './server_peBx9VXG.mjs';
+import { $ as $$AdminLayout } from './AdminLayout_D-_JeUqC.mjs';
+
+var __freeze = Object.freeze;
+var __defProp = Object.defineProperty;
+var __template = (cooked, raw) => __freeze(__defProp(cooked, "raw", { value: __freeze(raw || cooked.slice()) }));
+var _a;
+const $$New = createComponent(async ($$result, $$props, $$slots) => {
+  const roleOptions = ["super_admin", "admin", "editor", "author", "customer", "guest"];
+  return renderTemplate`${renderComponent($$result, "AdminLayout", $$AdminLayout, { "title": "New User" }, { "default": async ($$result2) => renderTemplate(_a || (_a = __template([" ", '<div class="flex-1 overflow-y-auto p-8 pr-12 space-y-8"> <!-- Header --> <div class="surface-tile p-6 flex items-center justify-between"> <div> <h1 class="text-3xl font-black tracking-tighter text-[#0b1222]">Create User</h1> <p class="text-sm text-[#64748b] mt-1 font-medium">Add a new user to the system</p> </div> <a href="/users" class="text-sm font-bold text-[#64748b] hover:text-[#0b1222] transition-colors">\n← Back to users\n</a> </div> <!-- Form --> <div class="surface-tile p-6"> <form id="create-user-form" class="space-y-6 max-w-2xl"> <div> <label for="email" class="block text-sm font-bold text-[#0b1222] mb-2">Email Address</label> <input type="email" id="email" name="email" required class="w-full px-4 py-3 border border-gray-200 rounded-xl text-sm font-medium focus:outline-none focus:ring-2 focus:ring-[#0b1222]/20 focus:border-[#0b1222]" placeholder="user@example.com"> </div> <div> <label for="password" class="block text-sm font-bold text-[#0b1222] mb-2">Password</label> <input type="password" id="password" name="password" required minlength="12" class="w-full px-4 py-3 border border-gray-200 rounded-xl text-sm font-medium focus:outline-none focus:ring-2 focus:ring-[#0b1222]/20 focus:border-[#0b1222]" placeholder="Minimum 12 characters"> <p class="text-xs text-[#64748b] mt-1">Must contain uppercase, lowercase, numbers, and special characters</p> </div> <div> <label for="role" class="block text-sm font-bold text-[#0b1222] mb-2">Role</label> <select id="role" name="role" class="w-full px-4 py-3 border border-gray-200 rounded-xl text-sm font-medium focus:outline-none focus:ring-2 focus:ring-[#0b1222]/20 focus:border-[#0b1222]"> ', ` </select> </div> <div> <label for="tenantId" class="block text-sm font-bold text-[#0b1222] mb-2">Tenant ID (optional)</label> <input type="text" id="tenantId" name="tenantId" class="w-full px-4 py-3 border border-gray-200 rounded-xl text-sm font-medium focus:outline-none focus:ring-2 focus:ring-[#0b1222]/20 focus:border-[#0b1222]" placeholder="Leave empty for global user"> </div> <div class="flex items-center justify-end gap-3 pt-4 border-t border-gray-100"> <a href="/users" class="px-6 py-3 border border-gray-200 rounded-xl text-sm font-bold text-[#64748b] hover:bg-gray-50 transition-colors">
+Cancel
+</a> <button type="submit" class="px-6 py-3 bg-[#0b1222] text-white rounded-xl text-sm font-bold hover:bg-[#1a2332] transition-colors">
+Create User
+</button> </div> </form> <div id="form-message" class="hidden mt-4 p-4 rounded-xl text-sm font-bold"></div> </div> </div> <script>
+    document.addEventListener('DOMContentLoaded', () => {
+      const form = document.getElementById('create-user-form');
+      const message = document.getElementById('form-message');
+
+      form?.addEventListener('submit', async (e) => {
+        e.preventDefault();
+        const formData = new FormData(form);
+        const body = Object.fromEntries(formData.entries());
+
+        const res = await fetch('/api/users', {
+          method: 'POST',
+          headers: { 'Content-Type': 'application/json' },
+          body: JSON.stringify(body),
+        });
+
+        const data = await res.json();
+
+        if (res.ok) {
+          message.textContent = 'User created successfully!';
+          message.className = 'mt-4 p-4 rounded-xl text-sm font-bold bg-green-50 text-green-600';
+          setTimeout(() => { window.location.href = \`/users/\${data.data.id}\`; }, 1000);
+        } else {
+          message.textContent = data.error || 'Failed to create user';
+          message.className = 'mt-4 p-4 rounded-xl text-sm font-bold bg-red-50 text-red-600';
+        }
+      });
+    });
+  <\/script> `], [" ", '<div class="flex-1 overflow-y-auto p-8 pr-12 space-y-8"> <!-- Header --> <div class="surface-tile p-6 flex items-center justify-between"> <div> <h1 class="text-3xl font-black tracking-tighter text-[#0b1222]">Create User</h1> <p class="text-sm text-[#64748b] mt-1 font-medium">Add a new user to the system</p> </div> <a href="/users" class="text-sm font-bold text-[#64748b] hover:text-[#0b1222] transition-colors">\n← Back to users\n</a> </div> <!-- Form --> <div class="surface-tile p-6"> <form id="create-user-form" class="space-y-6 max-w-2xl"> <div> <label for="email" class="block text-sm font-bold text-[#0b1222] mb-2">Email Address</label> <input type="email" id="email" name="email" required class="w-full px-4 py-3 border border-gray-200 rounded-xl text-sm font-medium focus:outline-none focus:ring-2 focus:ring-[#0b1222]/20 focus:border-[#0b1222]" placeholder="user@example.com"> </div> <div> <label for="password" class="block text-sm font-bold text-[#0b1222] mb-2">Password</label> <input type="password" id="password" name="password" required minlength="12" class="w-full px-4 py-3 border border-gray-200 rounded-xl text-sm font-medium focus:outline-none focus:ring-2 focus:ring-[#0b1222]/20 focus:border-[#0b1222]" placeholder="Minimum 12 characters"> <p class="text-xs text-[#64748b] mt-1">Must contain uppercase, lowercase, numbers, and special characters</p> </div> <div> <label for="role" class="block text-sm font-bold text-[#0b1222] mb-2">Role</label> <select id="role" name="role" class="w-full px-4 py-3 border border-gray-200 rounded-xl text-sm font-medium focus:outline-none focus:ring-2 focus:ring-[#0b1222]/20 focus:border-[#0b1222]"> ', ` </select> </div> <div> <label for="tenantId" class="block text-sm font-bold text-[#0b1222] mb-2">Tenant ID (optional)</label> <input type="text" id="tenantId" name="tenantId" class="w-full px-4 py-3 border border-gray-200 rounded-xl text-sm font-medium focus:outline-none focus:ring-2 focus:ring-[#0b1222]/20 focus:border-[#0b1222]" placeholder="Leave empty for global user"> </div> <div class="flex items-center justify-end gap-3 pt-4 border-t border-gray-100"> <a href="/users" class="px-6 py-3 border border-gray-200 rounded-xl text-sm font-bold text-[#64748b] hover:bg-gray-50 transition-colors">
+Cancel
+</a> <button type="submit" class="px-6 py-3 bg-[#0b1222] text-white rounded-xl text-sm font-bold hover:bg-[#1a2332] transition-colors">
+Create User
+</button> </div> </form> <div id="form-message" class="hidden mt-4 p-4 rounded-xl text-sm font-bold"></div> </div> </div> <script>
+    document.addEventListener('DOMContentLoaded', () => {
+      const form = document.getElementById('create-user-form');
+      const message = document.getElementById('form-message');
+
+      form?.addEventListener('submit', async (e) => {
+        e.preventDefault();
+        const formData = new FormData(form);
+        const body = Object.fromEntries(formData.entries());
+
+        const res = await fetch('/api/users', {
+          method: 'POST',
+          headers: { 'Content-Type': 'application/json' },
+          body: JSON.stringify(body),
+        });
+
+        const data = await res.json();
+
+        if (res.ok) {
+          message.textContent = 'User created successfully!';
+          message.className = 'mt-4 p-4 rounded-xl text-sm font-bold bg-green-50 text-green-600';
+          setTimeout(() => { window.location.href = \\\`/users/\\\${data.data.id}\\\`; }, 1000);
+        } else {
+          message.textContent = data.error || 'Failed to create user';
+          message.className = 'mt-4 p-4 rounded-xl text-sm font-bold bg-red-50 text-red-600';
+        }
+      });
+    });
+  <\/script> `])), maybeRenderHead(), roleOptions.map((role) => renderTemplate`<option${addAttribute(role, "value")}>${role}</option>`)) })}`;
+}, "/Users/macbook/Dev/Web/Astro/kyro-cms/admin/src/pages/users/new.astro", void 0);
+
+const $$file = "/Users/macbook/Dev/Web/Astro/kyro-cms/admin/src/pages/users/new.astro";
+const $$url = "/users/new";
+
+const _page = /*#__PURE__*/Object.freeze(/*#__PURE__*/Object.defineProperty({
+  __proto__: null,
+  default: $$New,
+  file: $$file,
+  url: $$url
+}, Symbol.toStringTag, { value: 'Module' }));
+
+const page = () => _page;
+
+export { page };