feat(admin): Betreiber-Panel (/api/admin) mit is_admin-Flag
- 0003_admin.sql: accounts.is_admin
- auth.js: ensureAdminFlag (Konto = ADMIN_EMAIL wird auto-promoted),
is_admin im JWT, requireAdmin-Middleware (prüft DB autoritativ)
- routes/admin.js: GET /stats (Kunden/Abos/Instanzen/MRR), GET /accounts,
GET /accounts/:id/instances, POST /instances/:id/{suspend,reactivate}
- register/login + /account/me liefern is_admin
- ADMIN_EMAIL in .env.example
E2E: Admin-Promotion, Kunde→403, Stats (2 Kunden/MRR 49), Kundenliste.
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
This commit is contained in:
+30
-4
@@ -4,6 +4,7 @@
|
||||
import bcrypt from "bcryptjs";
|
||||
import jwt from "jsonwebtoken";
|
||||
import { env } from "./env.js";
|
||||
import { one, query } from "./db.js";
|
||||
|
||||
export async function hashPassword(plain) {
|
||||
return bcrypt.hash(plain, 10);
|
||||
@@ -14,9 +15,23 @@ export async function verifyPassword(plain, hash) {
|
||||
}
|
||||
|
||||
export function signToken(account) {
|
||||
return jwt.sign({ sub: account.id, email: account.email }, env.jwtSecret, {
|
||||
expiresIn: "7d",
|
||||
});
|
||||
return jwt.sign(
|
||||
{ sub: account.id, email: account.email, is_admin: !!account.is_admin },
|
||||
env.jwtSecret,
|
||||
{ expiresIn: "7d" }
|
||||
);
|
||||
}
|
||||
|
||||
// Promotet das Konto zum Admin, wenn die E-Mail ADMIN_EMAIL entspricht.
|
||||
// Wird bei Register/Login aufgerufen, damit dein Konto ohne manuellen DB-Eingriff
|
||||
// Admin wird. Gibt das (ggf. aktualisierte) is_admin zurück.
|
||||
export async function ensureAdminFlag(account) {
|
||||
const shouldBeAdmin = env.adminEmail && account.email.toLowerCase() === env.adminEmail;
|
||||
if (shouldBeAdmin && !account.is_admin) {
|
||||
await query("update accounts set is_admin = true where id = $1", [account.id]);
|
||||
return true;
|
||||
}
|
||||
return !!account.is_admin;
|
||||
}
|
||||
|
||||
// Express-Middleware: setzt req.account aus dem Bearer-Token oder 401.
|
||||
@@ -26,9 +41,20 @@ export function requireAuth(req, res, next) {
|
||||
if (!token) return res.status(401).json({ error: "Nicht angemeldet." });
|
||||
try {
|
||||
const payload = jwt.verify(token, env.jwtSecret);
|
||||
req.account = { id: payload.sub, email: payload.email };
|
||||
req.account = { id: payload.sub, email: payload.email, is_admin: !!payload.is_admin };
|
||||
next();
|
||||
} catch {
|
||||
res.status(401).json({ error: "Session ungültig oder abgelaufen." });
|
||||
}
|
||||
}
|
||||
|
||||
// Wie requireAuth, aber verlangt Admin. Prüft die DB (autoritativ — nicht nur
|
||||
// das Token), damit ein entzogenes Admin-Recht sofort greift.
|
||||
export function requireAdmin(req, res, next) {
|
||||
requireAuth(req, res, async () => {
|
||||
const row = await one("select is_admin from accounts where id = $1", [req.account.id]);
|
||||
if (!row || !row.is_admin) return res.status(403).json({ error: "Kein Admin-Zugriff." });
|
||||
req.account.is_admin = true;
|
||||
next();
|
||||
});
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user