@kyro-cms/admin 0.1.2

package/dist/server/chunks/_id__BzI_o0qT.mjs

@@ -0,0 +1,50 @@
+import { c as createComponent } from './astro-component_Dbx3T2Nh.mjs';
+import 'piccolore';
+import { Q as renderTemplate, F as Fragment, a3 as addAttribute, B as maybeRenderHead } from './sequence_9cl7AJy-.mjs';
+import { r as renderComponent } from './server_peBx9VXG.mjs';
+import { $ as $$AdminLayout } from './AdminLayout_D-_JeUqC.mjs';
+
+var __freeze = Object.freeze;
+var __defProp = Object.defineProperty;
+var __template = (cooked, raw) => __freeze(__defProp(cooked, "raw", { value: __freeze(raw || cooked.slice()) }));
+var _a;
+const $$id = createComponent(async ($$result, $$props, $$slots) => {
+  const Astro2 = $$result.createAstro($$props, $$slots);
+  Astro2.self = $$id;
+  const { id } = Astro2.params;
+  let user = null;
+  let error = null;
+  if (id) {
+    try {
+      const response = await fetch(`${Astro2.url.origin}/api/users/${id}`);
+      if (response.ok) {
+        const data = await response.json();
+        user = data.data;
+      } else {
+        error = "User not found";
+      }
+    } catch (e) {
+      error = "Failed to fetch user";
+    }
+  }
+  const roleOptions = ["super_admin", "admin", "editor", "author", "customer", "guest"];
+  return renderTemplate`${renderComponent($$result, "AdminLayout", $$AdminLayout, { "title": user ? user.email : "User" }, { "default": async ($$result2) => renderTemplate(_a || (_a = __template([" ", '<div class="flex-1 overflow-y-auto p-8 pr-12 space-y-8"> ', " </div> <script>\n    document.addEventListener('DOMContentLoaded', () => {\n      const userId = window.location.pathname.split('/').pop();\n      const saveBtn = document.getElementById('btn-save');\n      const lockBtn = document.getElementById('btn-toggle-lock');\n      const deleteBtn = document.getElementById('btn-delete-user');\n      const roleSelect = document.getElementById('field-role');\n\n      if (saveBtn && roleSelect) {\n        saveBtn.addEventListener('click', async () => {\n          const role = roleSelect.value;\n          const res = await fetch(`/api/users/${userId}`, {\n            method: 'PATCH',\n            headers: { 'Content-Type': 'application/json' },\n            body: JSON.stringify({ role }),\n          });\n          if (res.ok) {\n            saveBtn.textContent = 'Saved!';\n            setTimeout(() => { saveBtn.textContent = 'Save Changes'; }, 2000);\n          }\n        });\n      }\n\n      if (lockBtn) {\n        lockBtn.addEventListener('click', async () => {\n          const isLocked = lockBtn.textContent?.includes('Unlock');\n          const res = await fetch(`/api/users/${userId}`, {\n            method: 'PATCH',\n            headers: { 'Content-Type': 'application/json' },\n            body: JSON.stringify({ locked: isLocked }),\n          });\n          if (res.ok) location.reload();\n        });\n      }\n\n      if (deleteBtn) {\n        deleteBtn.addEventListener('click', async () => {\n          if (confirm('Delete this user? This cannot be undone.')) {\n            const res = await fetch(`/api/users/${userId}`, { method: 'DELETE' });\n            if (res.ok) window.location.href = '/users';\n          }\n        });\n      }\n    });\n  <\/script> "], [" ", '<div class="flex-1 overflow-y-auto p-8 pr-12 space-y-8"> ', " </div> <script>\n    document.addEventListener('DOMContentLoaded', () => {\n      const userId = window.location.pathname.split('/').pop();\n      const saveBtn = document.getElementById('btn-save');\n      const lockBtn = document.getElementById('btn-toggle-lock');\n      const deleteBtn = document.getElementById('btn-delete-user');\n      const roleSelect = document.getElementById('field-role');\n\n      if (saveBtn && roleSelect) {\n        saveBtn.addEventListener('click', async () => {\n          const role = roleSelect.value;\n          const res = await fetch(\\`/api/users/\\${userId}\\`, {\n            method: 'PATCH',\n            headers: { 'Content-Type': 'application/json' },\n            body: JSON.stringify({ role }),\n          });\n          if (res.ok) {\n            saveBtn.textContent = 'Saved!';\n            setTimeout(() => { saveBtn.textContent = 'Save Changes'; }, 2000);\n          }\n        });\n      }\n\n      if (lockBtn) {\n        lockBtn.addEventListener('click', async () => {\n          const isLocked = lockBtn.textContent?.includes('Unlock');\n          const res = await fetch(\\`/api/users/\\${userId}\\`, {\n            method: 'PATCH',\n            headers: { 'Content-Type': 'application/json' },\n            body: JSON.stringify({ locked: isLocked }),\n          });\n          if (res.ok) location.reload();\n        });\n      }\n\n      if (deleteBtn) {\n        deleteBtn.addEventListener('click', async () => {\n          if (confirm('Delete this user? This cannot be undone.')) {\n            const res = await fetch(\\`/api/users/\\${userId}\\`, { method: 'DELETE' });\n            if (res.ok) window.location.href = '/users';\n          }\n        });\n      }\n    });\n  <\/script> "])), maybeRenderHead(), error ? renderTemplate`<div class="surface-tile p-8"> <div class="text-center"> <p class="text-lg font-bold text-red-600">${error}</p> <a href="/users" class="mt-4 inline-block text-[#0b1222] font-bold underline">← Back to users</a> </div> </div>` : user ? renderTemplate`${renderComponent($$result2, "Fragment", Fragment, {}, { "default": async ($$result3) => renderTemplate`  <div class="surface-tile p-6 flex items-center justify-between"> <div class="flex items-center gap-4"> <div class="w-14 h-14 rounded-full bg-[#0b1222] text-white flex items-center justify-center font-bold text-xl"> ${user.email.charAt(0).toUpperCase()} </div> <div> <h1 class="text-2xl font-black tracking-tighter text-[#0b1222]">${user.email}</h1> <p class="text-sm text-[#64748b] font-medium">User ID: ${user.id}</p> </div> </div> <div class="flex gap-2"> <button id="btn-toggle-lock" class="px-4 py-2 border border-gray-200 rounded-xl text-sm font-bold text-[#64748b] hover:bg-gray-50 transition-colors"> ${user.locked ? "Unlock User" : "Lock User"} </button> <button id="btn-delete-user" class="px-4 py-2 border border-red-200 rounded-xl text-sm font-bold text-red-600 hover:bg-red-50 transition-colors">
+Delete
+</button> </div> </div>  <div class="surface-tile p-6"> <h2 class="text-lg font-black text-[#0b1222] tracking-tighter mb-6">Details</h2> <div class="grid grid-cols-2 gap-6"> <div> <label class="text-xs font-bold text-[#64748b] uppercase tracking-wider">Email</label> <p class="mt-1 font-bold text-[#0b1222]" id="field-email">${user.email}</p> </div> <div> <label class="text-xs font-bold text-[#64748b] uppercase tracking-wider">Role</label> <select id="field-role" class="mt-1 w-full px-3 py-2 border border-gray-200 rounded-lg text-sm font-bold text-[#0b1222]"> ${roleOptions.map((role) => renderTemplate`<option${addAttribute(role, "value")}${addAttribute(user.role === role, "selected")}>${role}</option>`)} </select> </div> <div> <label class="text-xs font-bold text-[#64748b] uppercase tracking-wider">Email Verified</label> <p class="mt-1"> <span${addAttribute(`inline-flex items-center px-3 py-1 rounded-lg text-xs font-bold ${user.emailVerified ? "bg-green-50 text-green-600" : "bg-yellow-50 text-yellow-600"}`, "class")}> ${user.emailVerified ? "Verified" : "Not verified"} </span> </p> </div> <div> <label class="text-xs font-bold text-[#64748b] uppercase tracking-wider">Status</label> <p class="mt-1"> <span${addAttribute(`inline-flex items-center px-3 py-1 rounded-lg text-xs font-bold ${user.locked ? "bg-red-50 text-red-600" : "bg-green-50 text-green-600"}`, "class")}> ${user.locked ? "Locked" : "Active"} </span> </p> </div> <div> <label class="text-xs font-bold text-[#64748b] uppercase tracking-wider">Last Login</label> <p class="mt-1 text-sm text-[#64748b]" id="field-last-login"> ${user.lastLogin ? new Date(user.lastLogin).toLocaleString() : "Never"} </p> </div> <div> <label class="text-xs font-bold text-[#64748b] uppercase tracking-wider">Failed Attempts</label> <p class="mt-1 text-sm font-bold text-[#0b1222]" id="field-failed-attempts"> ${user.failedLoginAttempts || 0} </p> </div> <div> <label class="text-xs font-bold text-[#64748b] uppercase tracking-wider">Created</label> <p class="mt-1 text-sm text-[#64748b]"> ${user.createdAt ? new Date(user.createdAt).toLocaleString() : "—"} </p> </div> <div> <label class="text-xs font-bold text-[#64748b] uppercase tracking-wider">Updated</label> <p class="mt-1 text-sm text-[#64748b]"> ${user.updatedAt ? new Date(user.updatedAt).toLocaleString() : "—"} </p> </div> </div> <div class="mt-6 flex justify-end"> <button id="btn-save" class="px-6 py-2 bg-[#0b1222] text-white rounded-xl text-sm font-bold hover:bg-[#1a2332] transition-colors">
+Save Changes
+</button> </div> </div> ` })}` : renderTemplate`<div class="surface-tile p-8 text-center"> <p class="text-lg font-bold text-[#64748b]">Loading...</p> </div>`) })}`;
+}, "/Users/macbook/Dev/Web/Astro/kyro-cms/admin/src/pages/users/[id].astro", void 0);
+
+const $$file = "/Users/macbook/Dev/Web/Astro/kyro-cms/admin/src/pages/users/[id].astro";
+const $$url = "/users/[id]";
+
+const _page = /*#__PURE__*/Object.freeze(/*#__PURE__*/Object.defineProperty({
+  __proto__: null,
+  default: $$id,
+  file: $$file,
+  url: $$url
+}, Symbol.toStringTag, { value: 'Module' }));
+
+const page = () => _page;
+
+export { page };

package/dist/server/chunks/_id__Cd-jOuY3.mjs

@@ -0,0 +1,238 @@
+import { d as dataStore } from './dataStore_Dl7cA2Qp.mjs';
+import { c as collections } from './config_CPXslElD.mjs';
+
+dataStore.initialize(collections);
+const AUTH_COLLECTIONS = ["users", "roles", "audit_logs"];
+async function getAuthApi() {
+  const { RedisAuthAdapter } = await import('./index_CVqOkerS.mjs');
+  return new RedisAuthAdapter({
+    url: process.env.REDIS_URL || "redis://localhost:6379",
+    tls: process.env.REDIS_TLS === "true"
+  });
+}
+const GET = async ({ params }) => {
+  const collection = params.collection;
+  const id = params.id;
+  if (AUTH_COLLECTIONS.includes(collection)) {
+    try {
+      const adapter = await getAuthApi();
+      await adapter.connect();
+      if (collection === "users") {
+        const user = await adapter.findUserById(id);
+        await adapter.disconnect();
+        if (!user) {
+          return new Response(JSON.stringify({ error: "User not found" }), {
+            status: 404,
+            headers: { "Content-Type": "application/json" }
+          });
+        }
+        const { passwordHash, ...safeUser } = user;
+        return new Response(JSON.stringify({ data: safeUser }), {
+          status: 200,
+          headers: { "Content-Type": "application/json" }
+        });
+      }
+      if (collection === "audit_logs") {
+        const logData = await adapter.redis.hgetall(
+          `kyro:auth:audit:${id}`
+        );
+        await adapter.disconnect();
+        if (!logData || !logData.id) {
+          return new Response(JSON.stringify({ error: "Log not found" }), {
+            status: 404,
+            headers: { "Content-Type": "application/json" }
+          });
+        }
+        return new Response(
+          JSON.stringify({
+            data: {
+              id: logData.id,
+              action: logData.action,
+              userId: logData.userId,
+              userEmail: logData.userEmail,
+              role: logData.role,
+              resource: logData.resource,
+              ipAddress: logData.ipAddress,
+              success: logData.success === "true",
+              error: logData.error,
+              timestamp: logData.timestamp
+            }
+          }),
+          { status: 200, headers: { "Content-Type": "application/json" } }
+        );
+      }
+      await adapter.disconnect();
+    } catch (error) {
+      console.error(`Error fetching ${collection}:`, error);
+      return new Response(
+        JSON.stringify({ error: `Failed to fetch ${collection}` }),
+        { status: 500, headers: { "Content-Type": "application/json" } }
+      );
+    }
+  }
+  try {
+    const doc = dataStore.findById(collection, id);
+    if (!doc) {
+      return new Response(JSON.stringify({ error: "Document not found" }), {
+        status: 404,
+        headers: { "Content-Type": "application/json" }
+      });
+    }
+    return new Response(JSON.stringify({ data: doc }), {
+      status: 200,
+      headers: { "Content-Type": "application/json" }
+    });
+  } catch (error) {
+    return new Response(JSON.stringify({ error: "Failed to fetch document" }), {
+      status: 500,
+      headers: { "Content-Type": "application/json" }
+    });
+  }
+};
+const PATCH = async ({ params, request }) => {
+  const collection = params.collection;
+  const id = params.id;
+  if (AUTH_COLLECTIONS.includes(collection)) {
+    try {
+      const adapter = await getAuthApi();
+      await adapter.connect();
+      const body = await request.json();
+      if (collection === "users") {
+        const existing = await adapter.findUserById(id);
+        if (!existing) {
+          await adapter.disconnect();
+          return new Response(JSON.stringify({ error: "User not found" }), {
+            status: 404,
+            headers: { "Content-Type": "application/json" }
+          });
+        }
+        const updateData = {};
+        if (body.email !== void 0) updateData.email = body.email;
+        if (body.role !== void 0) updateData.role = body.role;
+        if (body.tenantId !== void 0) updateData.tenantId = body.tenantId;
+        if (body.locked !== void 0) updateData.locked = body.locked;
+        if (body.emailVerified !== void 0)
+          updateData.emailVerified = body.emailVerified;
+        if (body.password) {
+          updateData.passwordHash = await adapter.hashPassword(body.password);
+        }
+        const user = await adapter.updateUser(id, updateData);
+        await adapter.disconnect();
+        if (!user) {
+          return new Response(
+            JSON.stringify({ error: "Failed to update user" }),
+            {
+              status: 500,
+              headers: { "Content-Type": "application/json" }
+            }
+          );
+        }
+        const { passwordHash, ...safeUser } = user;
+        return new Response(JSON.stringify({ data: safeUser }), {
+          status: 200,
+          headers: { "Content-Type": "application/json" }
+        });
+      }
+      await adapter.disconnect();
+      return new Response(
+        JSON.stringify({
+          error: `Collection ${collection} does not support PATCH`
+        }),
+        { status: 405, headers: { "Content-Type": "application/json" } }
+      );
+    } catch (error) {
+      console.error(`Error updating ${collection}:`, error);
+      return new Response(
+        JSON.stringify({ error: `Failed to update ${collection}` }),
+        { status: 500, headers: { "Content-Type": "application/json" } }
+      );
+    }
+  }
+  try {
+    const body = await request.json();
+    const doc = dataStore.update(collection, id, body);
+    if (!doc) {
+      return new Response(JSON.stringify({ error: "Document not found" }), {
+        status: 404,
+        headers: { "Content-Type": "application/json" }
+      });
+    }
+    return new Response(JSON.stringify({ data: doc }), {
+      status: 200,
+      headers: { "Content-Type": "application/json" }
+    });
+  } catch (error) {
+    return new Response(
+      JSON.stringify({ error: "Failed to update document" }),
+      { status: 500, headers: { "Content-Type": "application/json" } }
+    );
+  }
+};
+const DELETE = async ({ params }) => {
+  const collection = params.collection;
+  const id = params.id;
+  if (AUTH_COLLECTIONS.includes(collection)) {
+    try {
+      const adapter = await getAuthApi();
+      await adapter.connect();
+      if (collection === "users") {
+        const existing = await adapter.findUserById(id);
+        if (!existing) {
+          await adapter.disconnect();
+          return new Response(JSON.stringify({ error: "User not found" }), {
+            status: 404,
+            headers: { "Content-Type": "application/json" }
+          });
+        }
+        await adapter.deleteUser(id);
+        await adapter.disconnect();
+        return new Response(JSON.stringify({ success: true }), {
+          status: 200,
+          headers: { "Content-Type": "application/json" }
+        });
+      }
+      await adapter.disconnect();
+      return new Response(
+        JSON.stringify({
+          error: `Collection ${collection} does not support DELETE`
+        }),
+        { status: 405, headers: { "Content-Type": "application/json" } }
+      );
+    } catch (error) {
+      console.error(`Error deleting ${collection}:`, error);
+      return new Response(
+        JSON.stringify({ error: `Failed to delete ${collection}` }),
+        { status: 500, headers: { "Content-Type": "application/json" } }
+      );
+    }
+  }
+  try {
+    const success = dataStore.delete(collection, id);
+    if (!success) {
+      return new Response(JSON.stringify({ error: "Document not found" }), {
+        status: 404,
+        headers: { "Content-Type": "application/json" }
+      });
+    }
+    return new Response(JSON.stringify({ success: true }), {
+      status: 200,
+      headers: { "Content-Type": "application/json" }
+    });
+  } catch (error) {
+    return new Response(
+      JSON.stringify({ error: "Failed to delete document" }),
+      { status: 500, headers: { "Content-Type": "application/json" } }
+    );
+  }
+};
+
+const _page = /*#__PURE__*/Object.freeze(/*#__PURE__*/Object.defineProperty({
+  __proto__: null,
+  DELETE,
+  GET,
+  PATCH
+}, Symbol.toStringTag, { value: 'Module' }));
+
+const page = () => _page;
+
+export { page };