@vezlo/assistant-server 2.12.0 → 2.13.0

package/dist/src/middleware/roleGuard.js

@@ -0,0 +1,26 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.requireAdmin = void 0;
+/**
+ * Middleware to require admin role
+ * Must be used after authenticateUser middleware
+ */
+const requireAdmin = (req, res, next) => {
+    if (!req.profile) {
+        res.status(401).json({
+            success: false,
+            error: 'Not authenticated'
+        });
+        return;
+    }
+    if (req.profile.role !== 'admin') {
+        res.status(403).json({
+            success: false,
+            error: 'Admin access required'
+        });
+        return;
+    }
+    next();
+};
+exports.requireAdmin = requireAdmin;
+//# sourceMappingURL=roleGuard.js.map

package/dist/src/middleware/roleGuard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"roleGuard.js","sourceRoot":"","sources":["../../../src/middleware/roleGuard.ts"],"names":[],"mappings":";;;AAIA;;;GAGG;AACI,MAAM,YAAY,GAAG,CAC1B,GAAyB,EACzB,GAAa,EACb,IAAkB,EACZ,EAAE;IACR,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,CAAC;QACjB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YACnB,OAAO,EAAE,KAAK;YACd,KAAK,EAAE,mBAAmB;SAC3B,CAAC,CAAC;QACH,OAAO;IACT,CAAC;IAED,IAAI,GAAG,CAAC,OAAO,CAAC,IAAI,KAAK,OAAO,EAAE,CAAC;QACjC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YACnB,OAAO,EAAE,KAAK;YACd,KAAK,EAAE,uBAAuB;SAC/B,CAAC,CAAC;QACH,OAAO;IACT,CAAC;IAED,IAAI,EAAE,CAAC;AACT,CAAC,CAAC;AAtBW,QAAA,YAAY,gBAsBvB"}

package/dist/src/server.js

@@ -49,6 +49,8 @@ const global_1 = require("./config/global");
 const logger_1 = __importDefault(require("./config/logger"));
 const errorHandler_1 = require("./middleware/errorHandler");
 const auth_1 = require("./middleware/auth");
+const roleGuard_1 = require("./middleware/roleGuard");
+const GenerateKeyController_1 = require("./controllers/GenerateKeyController");
 const supabase_js_1 = require("@supabase/supabase-js");
 const initializeServices_1 = require("./bootstrap/initializeServices");
 const RealtimePublisher_1 = require("./services/RealtimePublisher");
@@ -117,6 +119,9 @@ let companyController;
 let slackController;
 let databaseToolConfigController;
 let aiSettingsController;
+let teamController;
+let accountController;
+let generateKeyController;
 async function initializeServices() {
     try {
         logger_1.default.info('Initializing Vezlo services...');
@@ -134,6 +139,9 @@ async function initializeServices() {
         slackController = controllers.slackController;
         databaseToolConfigController = controllers.databaseToolConfigController;
         aiSettingsController = controllers.aiSettingsController;
+        teamController = controllers.teamController;
+        accountController = controllers.accountController;
+        generateKeyController = new GenerateKeyController_1.GenerateKeyController(supabase);
         logger_1.default.info('All services initialized successfully');
     }
     catch (error) {
@@ -292,7 +300,7 @@ function setupRoutes() {
      *       500:
      *         description: Internal server error
      */
-    app.post('/api/api-keys', (0, auth_1.authenticateUser)(supabase), (req, res) => apiKeyController.generateApiKey(req, res));
+    app.post('/api/api-keys', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => apiKeyController.generateApiKey(req, res));
     /**
      * @swagger
      * /api/api-keys/status:
@@ -321,7 +329,7 @@ function setupRoutes() {
      *       500:
      *         description: Internal server error
      */
-    app.get('/api/api-keys/status', (0, auth_1.authenticateUser)(supabase), (req, res) => apiKeyController.getApiKeyStatus(req, res));
+    app.get('/api/api-keys/status', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => apiKeyController.getApiKeyStatus(req, res));
     /**
      * @swagger
      * /api/company/analytics:
@@ -417,7 +425,7 @@ function setupRoutes() {
      *       401:
      *         description: Not authenticated
      */
-    app.post('/api/database-tools/config', (0, auth_1.authenticateUser)(supabase), (req, res) => databaseToolConfigController.createConfig(req, res));
+    app.post('/api/database-tools/config', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => databaseToolConfigController.createConfig(req, res));
     /**
      * @swagger
      * /api/database-tools/config:
@@ -433,7 +441,7 @@ function setupRoutes() {
      *       404:
      *         description: No configuration found
      */
-    app.get('/api/database-tools/config', (0, auth_1.authenticateUser)(supabase), (req, res) => databaseToolConfigController.getConfig(req, res));
+    app.get('/api/database-tools/config', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => databaseToolConfigController.getConfig(req, res));
     /**
      * @swagger
      * /api/database-tools/config/{configId}:
@@ -465,7 +473,7 @@ function setupRoutes() {
      *       200:
      *         description: Configuration updated successfully
      */
-    app.put('/api/database-tools/config/:configId', (0, auth_1.authenticateUser)(supabase), (req, res) => databaseToolConfigController.updateConfig(req, res));
+    app.put('/api/database-tools/config/:configId', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => databaseToolConfigController.updateConfig(req, res));
     /**
      * @swagger
      * /api/database-tools/config/{configId}:
@@ -485,7 +493,7 @@ function setupRoutes() {
      *       200:
      *         description: Configuration deleted successfully
      */
-    app.delete('/api/database-tools/config/:configId', (0, auth_1.authenticateUser)(supabase), (req, res) => databaseToolConfigController.deleteConfig(req, res));
+    app.delete('/api/database-tools/config/:configId', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => databaseToolConfigController.deleteConfig(req, res));
     /**
      * @swagger
      * /api/database-tools/validate:
@@ -513,7 +521,7 @@ function setupRoutes() {
      *       200:
      *         description: Validation result
      */
-    app.post('/api/database-tools/validate', (0, auth_1.authenticateUser)(supabase), (req, res) => databaseToolConfigController.validateConnection(req, res));
+    app.post('/api/database-tools/validate', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => databaseToolConfigController.validateConnection(req, res));
     /**
      * @swagger
      * /api/database-tools/tables:
@@ -541,7 +549,7 @@ function setupRoutes() {
      *       200:
      *         description: List of tables
      */
-    app.post('/api/database-tools/tables', (0, auth_1.authenticateUser)(supabase), (req, res) => databaseToolConfigController.getTables(req, res));
+    app.post('/api/database-tools/tables', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => databaseToolConfigController.getTables(req, res));
     /**
      * @swagger
      * /api/database-tools/tables/{tableName}/schema:
@@ -575,7 +583,7 @@ function setupRoutes() {
      *       200:
      *         description: Table schema with columns
      */
-    app.post('/api/database-tools/tables/:tableName/schema', (0, auth_1.authenticateUser)(supabase), (req, res) => databaseToolConfigController.getTableSchema(req, res));
+    app.post('/api/database-tools/tables/:tableName/schema', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => databaseToolConfigController.getTableSchema(req, res));
     /**
      * @swagger
      * /api/database-tools/config/{configId}/tables:
@@ -595,7 +603,7 @@ function setupRoutes() {
      *       200:
      *         description: List of tables
      */
-    app.get('/api/database-tools/config/:configId/tables', (0, auth_1.authenticateUser)(supabase), (req, res) => databaseToolConfigController.getTablesFromConfig(req, res));
+    app.get('/api/database-tools/config/:configId/tables', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => databaseToolConfigController.getTablesFromConfig(req, res));
     /**
      * @swagger
      * /api/database-tools/config/{configId}/tables/{tableName}/schema:
@@ -620,7 +628,7 @@ function setupRoutes() {
      *       200:
      *         description: Table schema with columns
      */
-    app.get('/api/database-tools/config/:configId/tables/:tableName/schema', (0, auth_1.authenticateUser)(supabase), (req, res) => databaseToolConfigController.getTableSchemaFromConfig(req, res));
+    app.get('/api/database-tools/config/:configId/tables/:tableName/schema', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => databaseToolConfigController.getTableSchemaFromConfig(req, res));
     /**
      * @swagger
      * /api/database-tools/tools:
@@ -684,7 +692,7 @@ function setupRoutes() {
      *       201:
      *         description: Tool created successfully
      */
-    app.post('/api/database-tools/tools', (0, auth_1.authenticateUser)(supabase), (req, res) => databaseToolConfigController.createTool(req, res));
+    app.post('/api/database-tools/tools', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => databaseToolConfigController.createTool(req, res));
     /**
      * @swagger
      * /api/database-tools/tools:
@@ -698,7 +706,7 @@ function setupRoutes() {
      *       200:
      *         description: List of tools
      */
-    app.get('/api/database-tools/tools', (0, auth_1.authenticateUser)(supabase), (req, res) => databaseToolConfigController.getTools(req, res));
+    app.get('/api/database-tools/tools', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => databaseToolConfigController.getTools(req, res));
     /**
      * @swagger
      * /api/database-tools/tools/{toolId}:
@@ -759,7 +767,7 @@ function setupRoutes() {
      *       200:
      *         description: Tool updated successfully
      */
-    app.put('/api/database-tools/tools/:toolId', (0, auth_1.authenticateUser)(supabase), (req, res) => databaseToolConfigController.updateTool(req, res));
+    app.put('/api/database-tools/tools/:toolId', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => databaseToolConfigController.updateTool(req, res));
     /**
      * @swagger
      * /api/database-tools/tools/{toolId}:
@@ -779,7 +787,7 @@ function setupRoutes() {
      *       200:
      *         description: Tool deleted successfully
      */
-    app.delete('/api/database-tools/tools/:toolId', (0, auth_1.authenticateUser)(supabase), (req, res) => databaseToolConfigController.deleteTool(req, res));
+    app.delete('/api/database-tools/tools/:toolId', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => databaseToolConfigController.deleteTool(req, res));
     // AI Settings API Routes
     /**
      * @swagger
@@ -837,7 +845,7 @@ function setupRoutes() {
      *       401:
      *         description: Not authenticated
      */
-    app.get('/api/companies/:companyUuid/ai-settings', (0, auth_1.authenticateUser)(supabase), (req, res) => aiSettingsController.getSettings(req, res));
+    app.get('/api/companies/:companyUuid/ai-settings', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => aiSettingsController.getSettings(req, res));
     /**
      * @swagger
      * /api/companies/{companyUuid}/ai-settings:
@@ -907,7 +915,222 @@ function setupRoutes() {
      *       401:
      *         description: Not authenticated
      */
-    app.put('/api/companies/:companyUuid/ai-settings', (0, auth_1.authenticateUser)(supabase), (req, res) => aiSettingsController.updateSettings(req, res));
+    app.put('/api/companies/:companyUuid/ai-settings', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => aiSettingsController.updateSettings(req, res));
+    // Team Management API Routes
+    /**
+     * @swagger
+     * /api/companies/{companyUuid}/team:
+     *   post:
+     *     summary: Create a new team member
+     *     description: Create a new user and add them to the company (Admin only)
+     *     tags: [Team]
+     *     security:
+     *       - bearerAuth: []
+     *     parameters:
+     *       - in: path
+     *         name: companyUuid
+     *         required: true
+     *         schema:
+     *           type: string
+     *         description: Company UUID
+     *     requestBody:
+     *       required: true
+     *       content:
+     *         application/json:
+     *           schema:
+     *             type: object
+     *             required: [email, password, name, role]
+     *             properties:
+     *               email:
+     *                 type: string
+     *                 format: email
+     *               password:
+     *                 type: string
+     *                 minLength: 6
+     *               name:
+     *                 type: string
+     *               role:
+     *                 type: string
+     *                 enum: [admin, user]
+     *     responses:
+     *       201:
+     *         description: Team member created successfully
+     *       400:
+     *         description: Invalid request
+     *       403:
+     *         description: Admin access required
+     *       401:
+     *         description: Not authenticated
+     */
+    app.post('/api/companies/:companyUuid/team', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => teamController.createTeamMember(req, res));
+    /**
+     * @swagger
+     * /api/companies/{companyUuid}/team:
+     *   get:
+     *     summary: Get team members
+     *     description: Get team members for the company with pagination and search
+     *     tags: [Team]
+     *     security:
+     *       - bearerAuth: []
+     *     parameters:
+     *       - in: path
+     *         name: companyUuid
+     *         required: true
+     *         schema:
+     *           type: string
+     *         description: Company UUID
+     *       - in: query
+     *         name: search
+     *         schema:
+     *           type: string
+     *         description: Search by user name
+     *       - in: query
+     *         name: page
+     *         schema:
+     *           type: integer
+     *           default: 1
+     *         description: Page number
+     *       - in: query
+     *         name: limit
+     *         schema:
+     *           type: integer
+     *           default: 50
+     *           maximum: 100
+     *         description: Items per page
+     *     responses:
+     *       200:
+     *         description: Team members retrieved successfully
+     *       401:
+     *         description: Not authenticated
+     */
+    app.get('/api/companies/:companyUuid/team', (0, auth_1.authenticateUser)(supabase), (req, res) => teamController.getTeamMembers(req, res));
+    /**
+     * @swagger
+     * /api/companies/{companyUuid}/team/{userUuid}:
+     *   put:
+     *     summary: Update team member
+     *     description: Update team member details (Admin only)
+     *     tags: [Team]
+     *     security:
+     *       - bearerAuth: []
+     *     parameters:
+     *       - in: path
+     *         name: companyUuid
+     *         required: true
+     *         schema:
+     *           type: string
+     *       - in: path
+     *         name: userUuid
+     *         required: true
+     *         schema:
+     *           type: string
+     *         description: User profile UUID
+     *     requestBody:
+     *       content:
+     *         application/json:
+     *           schema:
+     *             type: object
+     *             properties:
+     *               name:
+     *                 type: string
+     *               role:
+     *                 type: string
+     *                 enum: [admin, user]
+     *               status:
+     *                 type: string
+     *                 enum: [active, inactive]
+     *               password:
+     *                 type: string
+     *                 minLength: 6
+     *     responses:
+     *       200:
+     *         description: Team member updated successfully
+     *       400:
+     *         description: Invalid request
+     *       403:
+     *         description: Admin access required
+     *       401:
+     *         description: Not authenticated
+     */
+    app.put('/api/companies/:companyUuid/team/:userUuid', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => teamController.updateTeamMember(req, res));
+    /**
+     * @swagger
+     * /api/companies/{companyUuid}/team/{userUuid}:
+     *   delete:
+     *     summary: Remove team member
+     *     description: Remove a team member from the company (Admin only)
+     *     tags: [Team]
+     *     security:
+     *       - bearerAuth: []
+     *     parameters:
+     *       - in: path
+     *         name: companyUuid
+     *         required: true
+     *         schema:
+     *           type: string
+     *       - in: path
+     *         name: userUuid
+     *         required: true
+     *         schema:
+     *           type: string
+     *         description: User profile UUID
+     *     responses:
+     *       200:
+     *         description: Team member removed successfully
+     *       400:
+     *         description: Cannot remove last admin
+     *       403:
+     *         description: Admin access required
+     *       401:
+     *         description: Not authenticated
+     */
+    app.delete('/api/companies/:companyUuid/team/:userUuid', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => teamController.deleteTeamMember(req, res));
+    // Account Management APIs (for all authenticated users)
+    /**
+     * @swagger
+     * /api/account/profile:
+     *   get:
+     *     summary: Get current user's profile
+     *     description: Get the authenticated user's account information
+     *     tags: [Account]
+     *     security:
+     *       - bearerAuth: []
+     *     responses:
+     *       200:
+     *         description: Profile retrieved successfully
+     *       401:
+     *         description: Not authenticated
+     */
+    app.get('/api/account/profile', (0, auth_1.authenticateUser)(supabase), (req, res) => accountController.getProfile(req, res));
+    /**
+     * @swagger
+     * /api/account/profile:
+     *   put:
+     *     summary: Update current user's profile
+     *     description: Update name and password for the authenticated user (self-update only)
+     *     tags: [Account]
+     *     security:
+     *       - bearerAuth: []
+     *     requestBody:
+     *       content:
+     *         application/json:
+     *           schema:
+     *             type: object
+     *             properties:
+     *               name:
+     *                 type: string
+     *               password:
+     *                 type: string
+     *                 minLength: 6
+     *     responses:
+     *       200:
+     *         description: Profile updated successfully
+     *       400:
+     *         description: Invalid request
+     *       401:
+     *         description: Not authenticated
+     */
+    app.put('/api/account/profile', (0, auth_1.authenticateUser)(supabase), (req, res) => accountController.updateProfile(req, res));
     // Chat API Routes
     /**
      * @swagger
@@ -1110,7 +1333,7 @@ function setupRoutes() {
      *       500:
      *         description: Internal server error
      */
-    app.post('/api/conversations/:uuid/join', (0, auth_1.authenticateUser)(supabase), (req, res) => chatController.joinConversation(req, res));
+    app.post('/api/conversations/:uuid/join', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => chatController.joinConversation(req, res));
     /**
      * @swagger
      * /api/conversations/{uuid}/messages/agent:
@@ -1150,7 +1373,7 @@ function setupRoutes() {
      *       500:
      *         description: Internal server error
      */
-    app.post('/api/conversations/:uuid/messages/agent', (0, auth_1.authenticateUser)(supabase), (req, res) => chatController.sendAgentMessage(req, res));
+    app.post('/api/conversations/:uuid/messages/agent', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => chatController.sendAgentMessage(req, res));
     /**
      * @swagger
      * /api/conversations/{uuid}/close:
@@ -1179,7 +1402,7 @@ function setupRoutes() {
      *       500:
      *         description: Internal server error
      */
-    app.post('/api/conversations/:uuid/close', (0, auth_1.authenticateUser)(supabase), (req, res) => chatController.closeConversation(req, res));
+    app.post('/api/conversations/:uuid/close', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => chatController.closeConversation(req, res));
     /**
      * @swagger
      * /api/conversations/{uuid}/archive:
@@ -1208,7 +1431,7 @@ function setupRoutes() {
      *       500:
      *         description: Internal server error
      */
-    app.post('/api/conversations/:uuid/archive', (0, auth_1.authenticateUser)(supabase), (req, res) => chatController.archiveConversation(req, res));
+    app.post('/api/conversations/:uuid/archive', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => chatController.archiveConversation(req, res));
     /**
      * @swagger
      * /api/knowledge/citations/{uuid}/context:
@@ -1278,7 +1501,7 @@ function setupRoutes() {
      *       500:
      *         description: Internal server error
      */
-    app.delete('/api/conversations/:uuid', (0, auth_1.authenticateUser)(supabase), (req, res) => chatController.deleteConversation(req, res));
+    app.delete('/api/conversations/:uuid', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => chatController.deleteConversation(req, res));
     /**
      * @swagger
      * /api/conversations/{uuid}/messages:
@@ -1592,7 +1815,7 @@ function setupRoutes() {
      *       500:
      *         description: Internal server error
      */
-    app.put('/api/knowledge/items/:uuid', (0, auth_1.authenticateUser)(supabase), (req, res) => knowledgeController.updateItem(req, res));
+    app.put('/api/knowledge/items/:uuid', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => knowledgeController.updateItem(req, res));
     /**
      * @swagger
      * /api/knowledge/items/{uuid}:
@@ -1619,7 +1842,7 @@ function setupRoutes() {
      *       500:
      *         description: Internal server error
      */
-    app.delete('/api/knowledge/items/:uuid', (0, auth_1.authenticateUser)(supabase), (req, res) => knowledgeController.deleteItem(req, res));
+    app.delete('/api/knowledge/items/:uuid', (0, auth_1.authenticateUser)(supabase), roleGuard_1.requireAdmin, (req, res) => knowledgeController.deleteItem(req, res));
     // ============================================================================
     // MIGRATION ENDPOINTS
     // ============================================================================
@@ -1901,16 +2124,20 @@ function setupRoutes() {
      * @swagger
      * /api/generate-key:
      *   post:
-     *     summary: Generate API key for the default admin
-     *     description: Generates an API key for the default admin user's company
+     *     summary: Generate API key
+     *     description: |
+     *       Generates an API key for a company. Supports two authentication methods:
+     *       - Bearer token: For authenticated admin users, generates key for their company
+     *       - Migration key: For Vercel deployments, generates key for default admin's company
      *     tags: [System]
      *     security:
+     *       - bearerAuth: []
      *       - migrationKey: []
      *     parameters:
      *       - in: query
      *         name: key
-     *         description: Migration secret key
-     *         required: true
+     *         description: Migration secret key (alternative to Bearer token)
+     *         required: false
      *         schema:
      *           type: string
      *     responses:
@@ -1929,7 +2156,11 @@ function setupRoutes() {
      *                   example: "API key generated successfully"
      *                 api_key_details:
      *                   type: object
+     *                   description: API key details
      *                   properties:
+     *                     uuid:
+     *                       type: string
+     *                       example: "123e4567-e89b-12d3-a456-426614174000"
      *                     company_name:
      *                       type: string
      *                       example: "Vezlo"
@@ -1940,7 +2171,7 @@ function setupRoutes() {
      *                       type: string
      *                       example: "v.bzkO2h7Ga.c5MGe0zX-2CU-IeZPqreT6xSRCgq3Tw"
      *       401:
-     *         description: Unauthorized
+     *         description: Unauthorized - Invalid or missing authentication
      *         content:
      *           application/json:
      *             schema:
@@ -1955,47 +2186,27 @@ function setupRoutes() {
      *                 error:
      *                   type: string
      *                   example: "UNAUTHORIZED"
+     *       403:
+     *         description: Forbidden - Only admin users can generate API keys
+     *         content:
+     *           application/json:
+     *             schema:
+     *               type: object
+     *               properties:
+     *                 success:
+     *                   type: boolean
+     *                   example: false
+     *                 message:
+     *                   type: string
+     *                   example: "Only admin users can generate API keys"
+     *                 error:
+     *                   type: string
+     *                   example: "FORBIDDEN"
      *       500:
      *         description: Failed to generate API key
      */
     app.post('/api/generate-key', (0, errorHandler_1.asyncHandler)(async (req, res) => {
-        // Extract API key from query or header
-        const apiKey = req.query.key || req.headers['x-migration-key'];
-        try {
-            // Validate API key
-            const { MigrationService } = await Promise.resolve().then(() => __importStar(require('./services/MigrationService')));
-            const keyValid = MigrationService.validateApiKey(apiKey);
-            if (!keyValid) {
-                res.status(401).json({
-                    success: false,
-                    message: 'Invalid or missing migration API key',
-                    error: 'UNAUTHORIZED'
-                });
-                return;
-            }
-            // Initialize Supabase
-            const supabase = (0, supabase_js_1.createClient)(process.env.SUPABASE_URL, process.env.SUPABASE_SERVICE_KEY);
-            // Execute generate-key using SetupService
-            const { SetupService } = await Promise.resolve().then(() => __importStar(require('./services/SetupService')));
-            const setupService = new SetupService(supabase);
-            const response = await setupService.executeGenerateKey();
-            res.status(200).json({
-                success: true,
-                message: 'API key generated successfully',
-                api_key_details: response
-            });
-        }
-        catch (error) {
-            logger_1.default.error('Generate key failed:', error);
-            res.status(500).json({
-                success: false,
-                message: 'Failed to generate API key',
-                error: error.message || 'GENERATE_KEY_FAILED',
-                details: {
-                    error: error.message
-                }
-            });
-        }
+        await generateKeyController.generateKey(req, res);
     }));
     // Slack Integration Routes
     /**