davidovic/infohliadka
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
249a672cd72da81e0d208fc4277f1a24241f7ed9
infohliadka/pages/api/admin/api-keys.ts
Lukas Davidovic 249a672cd7 transform admin panel with comprehensive professional UI 
- migrate from SQLite to PostgreSQL with Drizzle ORM
- implement comprehensive AdminLayout with expandable sidebar navigation
- create professional dashboard with real-time charts and metrics
- add advanced monitoring, reporting, and export functionality
- fix menu alignment and remove non-existent pages
- eliminate duplicate headers and improve UI consistency
- add Tailwind CSS v3 for professional styling
- expand database schema from 6 to 15 tables
- implement role-based access control and API key management
- create comprehensive settings, monitoring, and system info pages
2025-09-06 15:14:20 +02:00

79 lines
2.3 KiB
TypeScript
Raw Blame History

import type { NextApiRequest, NextApiResponse } from "next"
import { db, schema } from '../../../lib/db/connection'
import { desc, eq } from 'drizzle-orm'
import { generateApiKey, hashApiKey } from "../../../lib/api-auth"
export default async function handler(req: NextApiRequest, res: NextApiResponse) {
try {
if (req.method === "GET") {
const keys = await db
.select({
id: schema.apiKeys.id,
name: schema.apiKeys.name,
permissions: schema.apiKeys.permissions,
rateLimit: schema.apiKeys.rateLimit,
isActive: schema.apiKeys.isActive,
lastUsed: schema.apiKeys.lastUsed,
createdAt: schema.apiKeys.createdAt
})
.from(schema.apiKeys)
.orderBy(desc(schema.apiKeys.createdAt))
res.json({
keys: keys.map(key => ({
...key,
permissions: key.permissions ? JSON.parse(key.permissions) : [],
key_preview: '***...' + (key.id.toString().slice(-4))
}))
})
} else if (req.method === "POST") {
const { name, permissions = [], rate_limit = 1000 } = req.body
if (!name) {
return res.status(400).json({ error: "Name required" })
}
const apiKey = generateApiKey()
const keyHash = hashApiKey(apiKey)
const [result] = await db
.insert(schema.apiKeys)
.values({
keyHash: keyHash,
name: name,
ownerEmail: 'admin@hliadka.sk', // Default admin email
permissions: JSON.stringify(permissions),
rateLimit: rate_limit,
isActive: true
})
.returning({ id: schema.apiKeys.id })
res.json({
success: true,
id: result.id,
api_key: apiKey, // Only returned once during creation
name,
permissions,
rate_limit
})
} else if (req.method === "DELETE") {
const { id } = req.query
await db
.update(schema.apiKeys)
.set({ isActive: false })
.where(eq(schema.apiKeys.id, parseInt(id as string)))
res.json({ success: true })
} else {
res.status(405).json({ error: "Method not allowed" })
}
} catch (error) {
console.error('API keys error:', error)
res.status(500).json({ error: "Operation failed" })
}
}
Reference in New Issue View Git Blame Copy Permalink