From fa2f365608157d91913275577544c00735a9cc30 Mon Sep 17 00:00:00 2001 From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com> Date: Thu, 8 Jan 2026 01:18:34 +0000 Subject: [PATCH] Add complete Postgres Web Admin UI with Material UI and all-in-one Docker Co-authored-by: johndoe6345789 <224850594+johndoe6345789@users.noreply.github.com> --- .dockerignore | 21 ++ .github/workflows/docker.yml | 59 +++ ADMIN_README.md | 209 +++++++++++ Dockerfile | 82 +++++ docker-compose.yml | 19 + migrations/0001_swift_namorita.sql | 8 + migrations/meta/0001_snapshot.json | 112 ++++++ migrations/meta/_journal.json | 7 + package-lock.json | 565 ++++++++++++++++++++++++++++- package.json | 5 + scripts/seed-admin.ts | 38 ++ src/app/admin/dashboard/page.tsx | 334 +++++++++++++++++ src/app/admin/layout.tsx | 18 + src/app/admin/login/page.tsx | 155 ++++++++ src/app/api/admin/login/route.ts | 60 +++ src/app/api/admin/logout/route.ts | 15 + src/app/api/admin/query/route.ts | 57 +++ src/app/api/admin/tables/route.ts | 37 ++ src/models/Schema.ts | 13 +- src/proxy.ts | 5 + src/utils/auth.ts | 14 + src/utils/db.ts | 11 + src/utils/session.ts | 54 +++ src/utils/theme.ts | 26 ++ 24 files changed, 1909 insertions(+), 15 deletions(-) create mode 100644 .dockerignore create mode 100644 .github/workflows/docker.yml create mode 100644 ADMIN_README.md create mode 100644 Dockerfile create mode 100644 docker-compose.yml create mode 100644 migrations/0001_swift_namorita.sql create mode 100644 migrations/meta/0001_snapshot.json create mode 100644 scripts/seed-admin.ts create mode 100644 src/app/admin/dashboard/page.tsx create mode 100644 src/app/admin/layout.tsx create mode 100644 src/app/admin/login/page.tsx create mode 100644 src/app/api/admin/login/route.ts create mode 100644 src/app/api/admin/logout/route.ts create mode 100644 src/app/api/admin/query/route.ts create mode 100644 src/app/api/admin/tables/route.ts create mode 100644 src/utils/auth.ts create mode 100644 src/utils/db.ts create mode 100644 src/utils/session.ts create mode 100644 src/utils/theme.ts diff --git a/.dockerignore b/.dockerignore new file mode 100644 index 0000000..75a7dc2 --- /dev/null +++ b/.dockerignore @@ -0,0 +1,21 @@ +node_modules +npm-debug.log +.next +out +.env +.env.local +.env*.local +.git +.gitignore +README.md +.vscode +.storybook +coverage +tests +*.test.ts +*.test.tsx +*.spec.ts +*.e2e.ts +.github +Dockerfile +.dockerignore diff --git a/.github/workflows/docker.yml b/.github/workflows/docker.yml new file mode 100644 index 0000000..55b8ae8 --- /dev/null +++ b/.github/workflows/docker.yml @@ -0,0 +1,59 @@ +name: Build and Push Docker Image + +on: + push: + branches: + - main + tags: + - 'v*' + pull_request: + branches: + - main + +env: + REGISTRY: ghcr.io + IMAGE_NAME: ${{ github.repository }} + +jobs: + build-and-push: + runs-on: ubuntu-latest + permissions: + contents: read + packages: write + + steps: + - name: Checkout repository + uses: actions/checkout@v4 + + - name: Set up Docker Buildx + uses: docker/setup-buildx-action@v3 + + - name: Log in to GitHub Container Registry + uses: docker/login-action@v3 + with: + registry: ${{ env.REGISTRY }} + username: ${{ github.actor }} + password: ${{ secrets.GITHUB_TOKEN }} + + - name: Extract metadata (tags, labels) for Docker + id: meta + uses: docker/metadata-action@v5 + with: + images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }} + tags: | + type=ref,event=branch + type=ref,event=pr + type=semver,pattern={{version}} + type=semver,pattern={{major}}.{{minor}} + type=semver,pattern={{major}} + type=sha + + - name: Build and push Docker image + uses: docker/build-push-action@v5 + with: + context: . + push: ${{ github.event_name != 'pull_request' }} + tags: ${{ steps.meta.outputs.tags }} + labels: ${{ steps.meta.outputs.labels }} + cache-from: type=gha + cache-to: type=gha,mode=max diff --git a/ADMIN_README.md b/ADMIN_README.md new file mode 100644 index 0000000..20b0fa6 --- /dev/null +++ b/ADMIN_README.md @@ -0,0 +1,209 @@ +# Postgres Web Admin Panel + +A modern web-based admin interface for PostgreSQL with Material UI. + +## Features + +- 🔐 User/password authentication +- 💎 Material UI design +- 📊 View database tables +- 🔍 SQL query interface (SELECT only for security) +- 📋 Table data viewer with pagination +- 🐳 Docker support +- 📦 GitHub Container Registry (GHCR) integration + +## Quick Start + +### 1. Setup Database + +First, ensure your database is running and migrations are applied: + +```bash +npm run db:migrate +``` + +### 2. Create Admin User + +Create an admin user for logging into the admin panel: + +```bash +npm run db:seed-admin +``` + +This creates a default admin user: +- **Username**: admin +- **Password**: admin123 + +You can customize these credentials by setting environment variables: +```bash +ADMIN_USERNAME=myuser ADMIN_PASSWORD=mypassword npm run db:seed-admin +``` + +### 3. Access the Admin Panel + +Start the development server: +```bash +npm run dev +``` + +Navigate to: **http://localhost:3000/admin/login** + +## Docker Deployment + +The project includes an **all-in-one Docker image** that contains both PostgreSQL and the Next.js application, making deployment simple and straightforward. + +### Build Docker Image + +```bash +docker build -t postgres-admin . +``` + +### Run with Docker (All-in-One) + +The simplest way to run the application is using the all-in-one image: + +```bash +docker run -p 3000:3000 -p 5432:5432 \ + -e JWT_SECRET="your-secret-key" \ + -e ADMIN_USERNAME="admin" \ + -e ADMIN_PASSWORD="admin123" \ + postgres-admin +``` + +The container will: +1. Start PostgreSQL automatically +2. Run database migrations +3. Create the admin user +4. Start the Next.js application + +Access the admin panel at: **http://localhost:3000/admin/login** + +### Using Docker Compose + +The easiest way to run the application: + +```bash +docker-compose up +``` + +This will: +- Build the all-in-one image +- Start PostgreSQL and Next.js in the same container +- Expose ports 3000 (web) and 5432 (database) +- Create a persistent volume for PostgreSQL data +- Automatically create an admin user + +Access the admin panel at: **http://localhost:3000/admin/login** + +Default credentials: +- **Username**: admin +- **Password**: admin123 + +### Multi-Container Setup (Optional) + +If you prefer to run PostgreSQL in a separate container, create this `docker-compose.yml`: + +```yaml +version: '3.8' +services: + postgres: + image: postgres:16 + environment: + POSTGRES_DB: mydb + POSTGRES_USER: postgres + POSTGRES_PASSWORD: postgres + ports: + - "5432:5432" + volumes: + - postgres_data:/var/lib/postgresql/data + + admin: + build: . + ports: + - "3000:3000" + environment: + DATABASE_URL: postgresql://postgres:postgres@postgres:5432/mydb + JWT_SECRET: your-secret-key-here + depends_on: + - postgres + +volumes: + postgres_data: +``` + +Run: +```bash +docker-compose up +``` + +## GitHub Container Registry (GHCR) + +The project automatically builds and publishes Docker images to GitHub Container Registry when you push to the main branch or create tags. + +### Pull from GHCR + +```bash +docker pull ghcr.io/johndoe6345789/postgres:latest +``` + +### Run from GHCR + +```bash +docker run -p 3000:3000 \ + -e DATABASE_URL="your-database-url" \ + -e JWT_SECRET="your-secret-key" \ + ghcr.io/johndoe6345789/postgres:latest +``` + +## Environment Variables + +| Variable | Description | Default | +|----------|-------------|---------| +| `DATABASE_URL` | PostgreSQL connection string | Required | +| `JWT_SECRET` | Secret key for JWT tokens | `your-secret-key-change-in-production` | +| `ADMIN_USERNAME` | Initial admin username | `admin` | +| `ADMIN_PASSWORD` | Initial admin password | `admin123` | + +## Security + +- Only SELECT queries are allowed in the SQL query interface +- Password authentication with bcrypt hashing +- JWT-based session management +- HTTP-only cookies for session tokens +- Protected API routes requiring authentication + +## API Routes + +- `POST /api/admin/login` - User login +- `POST /api/admin/logout` - User logout +- `GET /api/admin/tables` - List all database tables +- `POST /api/admin/query` - Execute SQL query (SELECT only) + +## Production Deployment + +1. Set strong passwords for admin users +2. Use a secure JWT_SECRET +3. Enable HTTPS +4. Configure proper CORS settings +5. Set up database backups +6. Monitor logs and errors + +## Development + +```bash +# Install dependencies +npm install + +# Run migrations +npm run db:migrate + +# Create admin user +npm run db:seed-admin + +# Start dev server +npm run dev +``` + +## License + +MIT diff --git a/Dockerfile b/Dockerfile new file mode 100644 index 0000000..e924b89 --- /dev/null +++ b/Dockerfile @@ -0,0 +1,82 @@ +# All-in-one image with PostgreSQL and Next.js +FROM node:20-bookworm + +# Install PostgreSQL +RUN apt-get update && apt-get install -y \ + postgresql-15 \ + postgresql-client-15 \ + sudo \ + && rm -rf /var/lib/apt/lists/* + +# Set up PostgreSQL +USER postgres +RUN /etc/init.d/postgresql start && \ + psql --command "CREATE USER docker WITH SUPERUSER PASSWORD 'docker';" && \ + createdb -O docker postgres + +# Switch back to root +USER root + +# Configure PostgreSQL to allow connections +RUN echo "host all all 0.0.0.0/0 md5" >> /etc/postgresql/15/main/pg_hba.conf && \ + echo "listen_addresses='*'" >> /etc/postgresql/15/main/postgresql.conf + +# Create app directory +WORKDIR /app + +# Copy package files +COPY package*.json ./ + +# Install dependencies +RUN npm ci + +# Copy application files +COPY . . + +# Build the Next.js application +RUN npm run build + +# Copy startup script +COPY <=18.0.0" } }, - "node_modules/@modelcontextprotocol/sdk/node_modules/jose": { - "version": "6.1.3", - "resolved": "https://registry.npmjs.org/jose/-/jose-6.1.3.tgz", - "integrity": "sha512-0TpaTfihd4QMNwrz/ob2Bp7X04yuxJkjRGi4aKmOqwhov54i6u79oCv7T+C7lo70MKH6BesI3vscD1yb/yzKXQ==", - "dev": true, - "license": "MIT", - "funding": { - "url": "https://github.com/sponsors/panva" - } - }, "node_modules/@modelcontextprotocol/sdk/node_modules/json-schema-typed": { "version": "8.0.2", "resolved": "https://registry.npmjs.org/json-schema-typed/-/json-schema-typed-8.0.2.tgz", @@ -7695,6 +7689,16 @@ "node": ">=18" } }, + "node_modules/@segment/analytics-node/node_modules/jose": { + "version": "5.10.0", + "resolved": "https://registry.npmjs.org/jose/-/jose-5.10.0.tgz", + "integrity": "sha512-s+3Al/p9g32Iq+oqXxkW//7jk2Vig6FF1CFqzVXoTUXt2qz89YWbL+OwS17NFYEvxC35n0FKeGO2LGYSxeM2Gg==", + "dev": true, + "license": "MIT", + "funding": { + "url": "https://github.com/sponsors/panva" + } + }, "node_modules/@semantic-release/commit-analyzer": { "version": "13.0.1", "resolved": "https://registry.npmjs.org/@semantic-release/commit-analyzer/-/commit-analyzer-13.0.1.tgz", @@ -12015,6 +12019,12 @@ "@babel/types": "^7.28.2" } }, + "node_modules/@types/bcryptjs": { + "version": "2.4.6", + "resolved": "https://registry.npmjs.org/@types/bcryptjs/-/bcryptjs-2.4.6.tgz", + "integrity": "sha512-9xlo6R2qDs5uixm0bcIqCeMCE6HiQsIyel9KQySStiyqNl2tnj2mP3DX1Nf56MD6KMenNNlBBsy3LJ7gUEQPXQ==", + "license": "MIT" + }, "node_modules/@types/chai": { "version": "5.2.3", "resolved": "https://registry.npmjs.org/@types/chai/-/chai-5.2.3.tgz", @@ -14006,6 +14016,15 @@ "baseline-browser-mapping": "dist/cli.js" } }, + "node_modules/bcryptjs": { + "version": "3.0.3", + "resolved": "https://registry.npmjs.org/bcryptjs/-/bcryptjs-3.0.3.tgz", + "integrity": "sha512-GlF5wPWnSa/X5LKM1o0wz0suXIINz1iHRLvTS+sLyi7XPbe5ycmYI3DlZqVGZZtDgl4DmasFg7gOB3JYbphV5g==", + "license": "BSD-3-Clause", + "bin": { + "bcrypt": "bin/bcrypt" + } + }, "node_modules/before-after-hook": { "version": "4.0.0", "resolved": "https://registry.npmjs.org/before-after-hook/-/before-after-hook-4.0.0.tgz", @@ -21802,10 +21821,9 @@ } }, "node_modules/jose": { - "version": "5.10.0", - "resolved": "https://registry.npmjs.org/jose/-/jose-5.10.0.tgz", - "integrity": "sha512-s+3Al/p9g32Iq+oqXxkW//7jk2Vig6FF1CFqzVXoTUXt2qz89YWbL+OwS17NFYEvxC35n0FKeGO2LGYSxeM2Gg==", - "dev": true, + "version": "6.1.3", + "resolved": "https://registry.npmjs.org/jose/-/jose-6.1.3.tgz", + "integrity": "sha512-0TpaTfihd4QMNwrz/ob2Bp7X04yuxJkjRGi4aKmOqwhov54i6u79oCv7T+C7lo70MKH6BesI3vscD1yb/yzKXQ==", "license": "MIT", "funding": { "url": "https://github.com/sponsors/panva" @@ -32735,6 +32753,525 @@ "integrity": "sha512-oJFu94HQb+KVduSUQL7wnpmqnfmLsOA/nAh6b6EH0wCEoK0/mPeXU6c3wKDV83MkOuHPRHtSXKKU99IBazS/2w==", "license": "0BSD" }, + "node_modules/tsx": { + "version": "4.21.0", + "resolved": "https://registry.npmjs.org/tsx/-/tsx-4.21.0.tgz", + "integrity": "sha512-5C1sg4USs1lfG0GFb2RLXsdpXqBSEhAaA/0kPL01wxzpMqLILNxIxIOKiILz+cdg/pLnOUxFYOR5yhHU666wbw==", + "dev": true, + "license": "MIT", + "dependencies": { + "esbuild": "~0.27.0", + "get-tsconfig": "^4.7.5" + }, + "bin": { + "tsx": "dist/cli.mjs" + }, + "engines": { + "node": ">=18.0.0" + }, + "optionalDependencies": { + "fsevents": "~2.3.3" + } + }, + "node_modules/tsx/node_modules/@esbuild/aix-ppc64": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/aix-ppc64/-/aix-ppc64-0.27.2.tgz", + "integrity": "sha512-GZMB+a0mOMZs4MpDbj8RJp4cw+w1WV5NYD6xzgvzUJ5Ek2jerwfO2eADyI6ExDSUED+1X8aMbegahsJi+8mgpw==", + "cpu": [ + "ppc64" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "aix" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/android-arm": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/android-arm/-/android-arm-0.27.2.tgz", + "integrity": "sha512-DVNI8jlPa7Ujbr1yjU2PfUSRtAUZPG9I1RwW4F4xFB1Imiu2on0ADiI/c3td+KmDtVKNbi+nffGDQMfcIMkwIA==", + "cpu": [ + "arm" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "android" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/android-arm64": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/android-arm64/-/android-arm64-0.27.2.tgz", + "integrity": "sha512-pvz8ZZ7ot/RBphf8fv60ljmaoydPU12VuXHImtAs0XhLLw+EXBi2BLe3OYSBslR4rryHvweW5gmkKFwTiFy6KA==", + "cpu": [ + "arm64" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "android" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/android-x64": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/android-x64/-/android-x64-0.27.2.tgz", + "integrity": "sha512-z8Ank4Byh4TJJOh4wpz8g2vDy75zFL0TlZlkUkEwYXuPSgX8yzep596n6mT7905kA9uHZsf/o2OJZubl2l3M7A==", + "cpu": [ + "x64" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "android" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/darwin-arm64": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/darwin-arm64/-/darwin-arm64-0.27.2.tgz", + "integrity": "sha512-davCD2Zc80nzDVRwXTcQP/28fiJbcOwvdolL0sOiOsbwBa72kegmVU0Wrh1MYrbuCL98Omp5dVhQFWRKR2ZAlg==", + "cpu": [ + "arm64" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "darwin" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/darwin-x64": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/darwin-x64/-/darwin-x64-0.27.2.tgz", + "integrity": "sha512-ZxtijOmlQCBWGwbVmwOF/UCzuGIbUkqB1faQRf5akQmxRJ1ujusWsb3CVfk/9iZKr2L5SMU5wPBi1UWbvL+VQA==", + "cpu": [ + "x64" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "darwin" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/freebsd-arm64": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/freebsd-arm64/-/freebsd-arm64-0.27.2.tgz", + "integrity": "sha512-lS/9CN+rgqQ9czogxlMcBMGd+l8Q3Nj1MFQwBZJyoEKI50XGxwuzznYdwcav6lpOGv5BqaZXqvBSiB/kJ5op+g==", + "cpu": [ + "arm64" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "freebsd" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/freebsd-x64": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/freebsd-x64/-/freebsd-x64-0.27.2.tgz", + "integrity": "sha512-tAfqtNYb4YgPnJlEFu4c212HYjQWSO/w/h/lQaBK7RbwGIkBOuNKQI9tqWzx7Wtp7bTPaGC6MJvWI608P3wXYA==", + "cpu": [ + "x64" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "freebsd" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/linux-arm": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/linux-arm/-/linux-arm-0.27.2.tgz", + "integrity": "sha512-vWfq4GaIMP9AIe4yj1ZUW18RDhx6EPQKjwe7n8BbIecFtCQG4CfHGaHuh7fdfq+y3LIA2vGS/o9ZBGVxIDi9hw==", + "cpu": [ + "arm" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "linux" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/linux-arm64": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/linux-arm64/-/linux-arm64-0.27.2.tgz", + "integrity": "sha512-hYxN8pr66NsCCiRFkHUAsxylNOcAQaxSSkHMMjcpx0si13t1LHFphxJZUiGwojB1a/Hd5OiPIqDdXONia6bhTw==", + "cpu": [ + "arm64" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "linux" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/linux-ia32": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/linux-ia32/-/linux-ia32-0.27.2.tgz", + "integrity": "sha512-MJt5BRRSScPDwG2hLelYhAAKh9imjHK5+NE/tvnRLbIqUWa+0E9N4WNMjmp/kXXPHZGqPLxggwVhz7QP8CTR8w==", + "cpu": [ + "ia32" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "linux" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/linux-loong64": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/linux-loong64/-/linux-loong64-0.27.2.tgz", + "integrity": "sha512-lugyF1atnAT463aO6KPshVCJK5NgRnU4yb3FUumyVz+cGvZbontBgzeGFO1nF+dPueHD367a2ZXe1NtUkAjOtg==", + "cpu": [ + "loong64" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "linux" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/linux-mips64el": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/linux-mips64el/-/linux-mips64el-0.27.2.tgz", + "integrity": "sha512-nlP2I6ArEBewvJ2gjrrkESEZkB5mIoaTswuqNFRv/WYd+ATtUpe9Y09RnJvgvdag7he0OWgEZWhviS1OTOKixw==", + "cpu": [ + "mips64el" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "linux" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/linux-ppc64": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/linux-ppc64/-/linux-ppc64-0.27.2.tgz", + "integrity": "sha512-C92gnpey7tUQONqg1n6dKVbx3vphKtTHJaNG2Ok9lGwbZil6DrfyecMsp9CrmXGQJmZ7iiVXvvZH6Ml5hL6XdQ==", + "cpu": [ + "ppc64" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "linux" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/linux-riscv64": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/linux-riscv64/-/linux-riscv64-0.27.2.tgz", + "integrity": "sha512-B5BOmojNtUyN8AXlK0QJyvjEZkWwy/FKvakkTDCziX95AowLZKR6aCDhG7LeF7uMCXEJqwa8Bejz5LTPYm8AvA==", + "cpu": [ + "riscv64" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "linux" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/linux-s390x": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/linux-s390x/-/linux-s390x-0.27.2.tgz", + "integrity": "sha512-p4bm9+wsPwup5Z8f4EpfN63qNagQ47Ua2znaqGH6bqLlmJ4bx97Y9JdqxgGZ6Y8xVTixUnEkoKSHcpRlDnNr5w==", + "cpu": [ + "s390x" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "linux" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/linux-x64": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/linux-x64/-/linux-x64-0.27.2.tgz", + "integrity": "sha512-uwp2Tip5aPmH+NRUwTcfLb+W32WXjpFejTIOWZFw/v7/KnpCDKG66u4DLcurQpiYTiYwQ9B7KOeMJvLCu/OvbA==", + "cpu": [ + "x64" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "linux" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/netbsd-arm64": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/netbsd-arm64/-/netbsd-arm64-0.27.2.tgz", + "integrity": "sha512-Kj6DiBlwXrPsCRDeRvGAUb/LNrBASrfqAIok+xB0LxK8CHqxZ037viF13ugfsIpePH93mX7xfJp97cyDuTZ3cw==", + "cpu": [ + "arm64" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "netbsd" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/netbsd-x64": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/netbsd-x64/-/netbsd-x64-0.27.2.tgz", + "integrity": "sha512-HwGDZ0VLVBY3Y+Nw0JexZy9o/nUAWq9MlV7cahpaXKW6TOzfVno3y3/M8Ga8u8Yr7GldLOov27xiCnqRZf0tCA==", + "cpu": [ + "x64" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "netbsd" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/openbsd-arm64": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/openbsd-arm64/-/openbsd-arm64-0.27.2.tgz", + "integrity": "sha512-DNIHH2BPQ5551A7oSHD0CKbwIA/Ox7+78/AWkbS5QoRzaqlev2uFayfSxq68EkonB+IKjiuxBFoV8ESJy8bOHA==", + "cpu": [ + "arm64" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "openbsd" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/openbsd-x64": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/openbsd-x64/-/openbsd-x64-0.27.2.tgz", + "integrity": "sha512-/it7w9Nb7+0KFIzjalNJVR5bOzA9Vay+yIPLVHfIQYG/j+j9VTH84aNB8ExGKPU4AzfaEvN9/V4HV+F+vo8OEg==", + "cpu": [ + "x64" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "openbsd" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/openharmony-arm64": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/openharmony-arm64/-/openharmony-arm64-0.27.2.tgz", + "integrity": "sha512-LRBbCmiU51IXfeXk59csuX/aSaToeG7w48nMwA6049Y4J4+VbWALAuXcs+qcD04rHDuSCSRKdmY63sruDS5qag==", + "cpu": [ + "arm64" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "openharmony" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/sunos-x64": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/sunos-x64/-/sunos-x64-0.27.2.tgz", + "integrity": "sha512-kMtx1yqJHTmqaqHPAzKCAkDaKsffmXkPHThSfRwZGyuqyIeBvf08KSsYXl+abf5HDAPMJIPnbBfXvP2ZC2TfHg==", + "cpu": [ + "x64" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "sunos" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/win32-arm64": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/win32-arm64/-/win32-arm64-0.27.2.tgz", + "integrity": "sha512-Yaf78O/B3Kkh+nKABUF++bvJv5Ijoy9AN1ww904rOXZFLWVc5OLOfL56W+C8F9xn5JQZa3UX6m+IktJnIb1Jjg==", + "cpu": [ + "arm64" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "win32" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/win32-ia32": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/win32-ia32/-/win32-ia32-0.27.2.tgz", + "integrity": "sha512-Iuws0kxo4yusk7sw70Xa2E2imZU5HoixzxfGCdxwBdhiDgt9vX9VUCBhqcwY7/uh//78A1hMkkROMJq9l27oLQ==", + "cpu": [ + "ia32" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "win32" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/@esbuild/win32-x64": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/@esbuild/win32-x64/-/win32-x64-0.27.2.tgz", + "integrity": "sha512-sRdU18mcKf7F+YgheI/zGf5alZatMUTKj/jNS6l744f9u3WFu4v7twcUI9vu4mknF4Y9aDlblIie0IM+5xxaqQ==", + "cpu": [ + "x64" + ], + "dev": true, + "license": "MIT", + "optional": true, + "os": [ + "win32" + ], + "engines": { + "node": ">=18" + } + }, + "node_modules/tsx/node_modules/esbuild": { + "version": "0.27.2", + "resolved": "https://registry.npmjs.org/esbuild/-/esbuild-0.27.2.tgz", + "integrity": "sha512-HyNQImnsOC7X9PMNaCIeAm4ISCQXs5a5YasTXVliKv4uuBo1dKrG0A+uQS8M5eXjVMnLg3WgXaKvprHlFJQffw==", + "dev": true, + "hasInstallScript": true, + "license": "MIT", + "bin": { + "esbuild": "bin/esbuild" + }, + "engines": { + "node": ">=18" + }, + "optionalDependencies": { + "@esbuild/aix-ppc64": "0.27.2", + "@esbuild/android-arm": "0.27.2", + "@esbuild/android-arm64": "0.27.2", + "@esbuild/android-x64": "0.27.2", + "@esbuild/darwin-arm64": "0.27.2", + "@esbuild/darwin-x64": "0.27.2", + "@esbuild/freebsd-arm64": "0.27.2", + "@esbuild/freebsd-x64": "0.27.2", + "@esbuild/linux-arm": "0.27.2", + "@esbuild/linux-arm64": "0.27.2", + "@esbuild/linux-ia32": "0.27.2", + "@esbuild/linux-loong64": "0.27.2", + "@esbuild/linux-mips64el": "0.27.2", + "@esbuild/linux-ppc64": "0.27.2", + "@esbuild/linux-riscv64": "0.27.2", + "@esbuild/linux-s390x": "0.27.2", + "@esbuild/linux-x64": "0.27.2", + "@esbuild/netbsd-arm64": "0.27.2", + "@esbuild/netbsd-x64": "0.27.2", + "@esbuild/openbsd-arm64": "0.27.2", + "@esbuild/openbsd-x64": "0.27.2", + "@esbuild/openharmony-arm64": "0.27.2", + "@esbuild/sunos-x64": "0.27.2", + "@esbuild/win32-arm64": "0.27.2", + "@esbuild/win32-ia32": "0.27.2", + "@esbuild/win32-x64": "0.27.2" + } + }, + "node_modules/tsx/node_modules/fsevents": { + "version": "2.3.3", + "resolved": "https://registry.npmjs.org/fsevents/-/fsevents-2.3.3.tgz", + "integrity": "sha512-5xoDfX+fL7faATnagmWPpbFtwh/R77WmMMqqHGS65C3vvB0YHrgF+B1YmZ3441tMj5n63k0212XNoJwzlhffQw==", + "dev": true, + "hasInstallScript": true, + "license": "MIT", + "optional": true, + "os": [ + "darwin" + ], + "engines": { + "node": "^8.16.0 || ^10.6.0 || >=11.0.0" + } + }, "node_modules/tunnel": { "version": "0.0.6", "resolved": "https://registry.npmjs.org/tunnel/-/tunnel-0.0.6.tgz", diff --git a/package.json b/package.json index 98e0571..800102e 100644 --- a/package.json +++ b/package.json @@ -29,6 +29,7 @@ "db:generate": "drizzle-kit generate", "db:migrate": "dotenv -c -- drizzle-kit migrate", "db:studio": "drizzle-kit studio", + "db:seed-admin": "tsx scripts/seed-admin.ts", "storybook": "storybook dev -p 6006", "storybook:test": "vitest run --config .storybook/vitest.config.mts", "build-storybook": "storybook build" @@ -45,7 +46,10 @@ "@mui/material": "^7.3.6", "@sentry/nextjs": "^10.32.1", "@t3-oss/env-nextjs": "^0.13.10", + "@types/bcryptjs": "^2.4.6", + "bcryptjs": "^3.0.3", "drizzle-orm": "^0.45.1", + "jose": "^6.1.3", "next": "^16.1.1", "next-intl": "^4.6.1", "pg": "^8.16.3", @@ -105,6 +109,7 @@ "semantic-release": "^25.0.2", "storybook": "^10.1.4", "tailwindcss": "^4.1.17", + "tsx": "^4.21.0", "typescript": "^5.9.3", "vite-tsconfig-paths": "^5.1.4", "vitest": "^4.0.15", diff --git a/scripts/seed-admin.ts b/scripts/seed-admin.ts new file mode 100644 index 0000000..8737f8c --- /dev/null +++ b/scripts/seed-admin.ts @@ -0,0 +1,38 @@ +import { drizzle } from 'drizzle-orm/node-postgres'; +import { Pool } from 'pg'; +import * as bcrypt from 'bcryptjs'; +import { adminUserSchema } from '../src/models/Schema'; + +async function seedAdminUser() { + const pool = new Pool({ + connectionString: process.env.DATABASE_URL, + }); + + const db = drizzle(pool); + + const username = process.env.ADMIN_USERNAME || 'admin'; + const password = process.env.ADMIN_PASSWORD || 'admin123'; + + const passwordHash = await bcrypt.hash(password, 10); + + try { + await db.insert(adminUserSchema).values({ + username, + passwordHash, + }); + + console.log(`Admin user created successfully!`); + console.log(`Username: ${username}`); + console.log(`Password: ${password}`); + } catch (error: any) { + if (error.code === '23505') { + console.log('Admin user already exists'); + } else { + console.error('Error creating admin user:', error); + } + } finally { + await pool.end(); + } +} + +seedAdminUser(); diff --git a/src/app/admin/dashboard/page.tsx b/src/app/admin/dashboard/page.tsx new file mode 100644 index 0000000..df06b9b --- /dev/null +++ b/src/app/admin/dashboard/page.tsx @@ -0,0 +1,334 @@ +'use client'; + +import { useState, useEffect } from 'react'; +import { useRouter } from 'next/navigation'; +import { + Box, + Container, + Paper, + Typography, + Button, + AppBar, + Toolbar, + Drawer, + List, + ListItem, + ListItemButton, + ListItemIcon, + ListItemText, + TextField, + Alert, + CircularProgress, + Table, + TableBody, + TableCell, + TableContainer, + TableHead, + TableRow, + Tabs, + Tab, +} from '@mui/material'; +import { ThemeProvider } from '@mui/material/styles'; +import StorageIcon from '@mui/icons-material/Storage'; +import CodeIcon from '@mui/icons-material/Code'; +import LogoutIcon from '@mui/icons-material/Logout'; +import { theme } from '@/utils/theme'; + +const DRAWER_WIDTH = 240; + +interface TabPanelProps { + children?: React.ReactNode; + index: number; + value: number; +} + +function TabPanel(props: TabPanelProps) { + const { children, value, index, ...other } = props; + + return ( + + ); +} + +export default function AdminDashboard() { + const router = useRouter(); + const [tabValue, setTabValue] = useState(0); + const [tables, setTables] = useState([]); + const [selectedTable, setSelectedTable] = useState(''); + const [queryText, setQueryText] = useState(''); + const [queryResult, setQueryResult] = useState(null); + const [loading, setLoading] = useState(false); + const [error, setError] = useState(''); + + useEffect(() => { + fetchTables(); + }, []); + + const fetchTables = async () => { + try { + const response = await fetch('/api/admin/tables'); + if (!response.ok) { + if (response.status === 401) { + router.push('/admin/login'); + return; + } + throw new Error('Failed to fetch tables'); + } + const data = await response.json(); + setTables(data.tables); + } catch (err: any) { + setError(err.message); + } + }; + + const handleTableClick = async (tableName: string) => { + setSelectedTable(tableName); + setLoading(true); + setError(''); + setQueryResult(null); + + try { + const response = await fetch('/api/admin/query', { + method: 'POST', + headers: { + 'Content-Type': 'application/json', + }, + body: JSON.stringify({ + query: `SELECT * FROM ${tableName} LIMIT 100`, + }), + }); + + if (!response.ok) { + throw new Error('Query failed'); + } + + const data = await response.json(); + setQueryResult(data); + } catch (err: any) { + setError(err.message); + } finally { + setLoading(false); + } + }; + + const handleQuerySubmit = async () => { + if (!queryText.trim()) { + setError('Please enter a query'); + return; + } + + setLoading(true); + setError(''); + setQueryResult(null); + + try { + const response = await fetch('/api/admin/query', { + method: 'POST', + headers: { + 'Content-Type': 'application/json', + }, + body: JSON.stringify({ query: queryText }), + }); + + const data = await response.json(); + + if (!response.ok) { + throw new Error(data.error || 'Query failed'); + } + + setQueryResult(data); + } catch (err: any) { + setError(err.message); + } finally { + setLoading(false); + } + }; + + const handleLogout = async () => { + try { + await fetch('/api/admin/logout', { + method: 'POST', + }); + router.push('/admin/login'); + router.refresh(); + } catch (err) { + console.error('Logout error:', err); + } + }; + + return ( + + + theme.zIndex.drawer + 1 }} + > + + + + Postgres Admin Panel + + + + + + + + + + + setTabValue(0)}> + + + + + + + + setTabValue(1)}> + + + + + + + + + + + + + + + + Database Tables + + + + + {tables.map(table => ( + + handleTableClick(table.table_name)}> + + + + + + + ))} + + + + {selectedTable && ( + + Table: {selectedTable} + + )} + + + + + SQL Query Interface + + + + setQueryText(e.target.value)} + placeholder="SELECT * FROM your_table LIMIT 10;" + sx={{ mb: 2 }} + /> + + + + + {error && ( + + {error} + + )} + + {loading && ( + + + + )} + + {queryResult && !loading && ( + + + + Rows returned: {queryResult.rowCount} + + + + + + + {queryResult.fields?.map((field: any) => ( + + {field.name} + + ))} + + + + {queryResult.rows?.map((row: any, idx: number) => ( + + {queryResult.fields?.map((field: any) => ( + + {row[field.name] !== null + ? String(row[field.name]) + : 'NULL'} + + ))} + + ))} + +
+ + + )} + + + + ); +} diff --git a/src/app/admin/layout.tsx b/src/app/admin/layout.tsx new file mode 100644 index 0000000..94782a2 --- /dev/null +++ b/src/app/admin/layout.tsx @@ -0,0 +1,18 @@ +import type { Metadata } from 'next'; + +export const metadata: Metadata = { + title: 'Postgres Admin Panel', + description: 'Web-based PostgreSQL admin interface', +}; + +export default function AdminLayout({ + children, +}: { + children: React.ReactNode; +}) { + return ( + + {children} + + ); +} diff --git a/src/app/admin/login/page.tsx b/src/app/admin/login/page.tsx new file mode 100644 index 0000000..72e8437 --- /dev/null +++ b/src/app/admin/login/page.tsx @@ -0,0 +1,155 @@ +'use client'; + +import { useState } from 'react'; +import { useRouter } from 'next/navigation'; +import { + Box, + Button, + Container, + Paper, + TextField, + Typography, + Alert, + CircularProgress, +} from '@mui/material'; +import { ThemeProvider } from '@mui/material/styles'; +import LockOutlinedIcon from '@mui/icons-material/LockOutlined'; +import { theme } from '@/utils/theme'; + +export default function AdminLoginPage() { + const router = useRouter(); + const [username, setUsername] = useState(''); + const [password, setPassword] = useState(''); + const [error, setError] = useState(''); + const [loading, setLoading] = useState(false); + + const handleSubmit = async (e: React.FormEvent) => { + e.preventDefault(); + setError(''); + setLoading(true); + + try { + const response = await fetch('/api/admin/login', { + method: 'POST', + headers: { + 'Content-Type': 'application/json', + }, + body: JSON.stringify({ username, password }), + }); + + const data = await response.json(); + + if (!response.ok) { + setError(data.error || 'Login failed'); + setLoading(false); + return; + } + + // Redirect to admin dashboard + router.push('/admin/dashboard'); + router.refresh(); + } catch (err) { + setError('An error occurred. Please try again.'); + setLoading(false); + } + }; + + return ( + + + + + + + + + + Postgres Admin + + + + Sign in to access the database admin panel + + + {error && ( + + {error} + + )} + + + setUsername(e.target.value)} + disabled={loading} + /> + + setPassword(e.target.value)} + disabled={loading} + /> + + + + + + + + ); +} diff --git a/src/app/api/admin/login/route.ts b/src/app/api/admin/login/route.ts new file mode 100644 index 0000000..de0337e --- /dev/null +++ b/src/app/api/admin/login/route.ts @@ -0,0 +1,60 @@ +import { eq } from 'drizzle-orm'; +import { NextResponse } from 'next/server'; +import { verifyPassword } from '@/utils/auth'; +import { adminUserSchema, db } from '@/utils/db'; +import { createSession, setSessionCookie } from '@/utils/session'; + +export async function POST(request: Request) { + try { + const { username, password } = await request.json(); + + if (!username || !password) { + return NextResponse.json( + { error: 'Username and password are required' }, + { status: 400 }, + ); + } + + // Find user + const users = await db + .select() + .from(adminUserSchema) + .where(eq(adminUserSchema.username, username)) + .limit(1); + + const user = users[0]; + + if (!user) { + return NextResponse.json( + { error: 'Invalid credentials' }, + { status: 401 }, + ); + } + + // Verify password + const isValid = await verifyPassword(password, user.passwordHash); + + if (!isValid) { + return NextResponse.json( + { error: 'Invalid credentials' }, + { status: 401 }, + ); + } + + // Create session + const token = await createSession({ + userId: user.id, + username: user.username, + }); + + await setSessionCookie(token); + + return NextResponse.json({ success: true, username: user.username }); + } catch (error) { + console.error('Login error:', error); + return NextResponse.json( + { error: 'Internal server error' }, + { status: 500 }, + ); + } +} diff --git a/src/app/api/admin/logout/route.ts b/src/app/api/admin/logout/route.ts new file mode 100644 index 0000000..0f2f748 --- /dev/null +++ b/src/app/api/admin/logout/route.ts @@ -0,0 +1,15 @@ +import { NextResponse } from 'next/server'; +import { clearSession } from '@/utils/session'; + +export async function POST() { + try { + await clearSession(); + return NextResponse.json({ success: true }); + } catch (error) { + console.error('Logout error:', error); + return NextResponse.json( + { error: 'Internal server error' }, + { status: 500 }, + ); + } +} diff --git a/src/app/api/admin/query/route.ts b/src/app/api/admin/query/route.ts new file mode 100644 index 0000000..40af633 --- /dev/null +++ b/src/app/api/admin/query/route.ts @@ -0,0 +1,57 @@ +import { NextResponse } from 'next/server'; +import { Pool } from 'pg'; +import { getSession } from '@/utils/session'; + +export async function POST(request: Request) { + try { + const session = await getSession(); + + if (!session) { + return NextResponse.json( + { error: 'Unauthorized' }, + { status: 401 }, + ); + } + + const { query } = await request.json(); + + if (!query) { + return NextResponse.json( + { error: 'Query is required' }, + { status: 400 }, + ); + } + + // Security: Only allow SELECT queries + const trimmedQuery = query.trim().toLowerCase(); + if (!trimmedQuery.startsWith('select')) { + return NextResponse.json( + { error: 'Only SELECT queries are allowed' }, + { status: 400 }, + ); + } + + const pool = new Pool({ + connectionString: process.env.DATABASE_URL, + }); + + const result = await pool.query(query); + + await pool.end(); + + return NextResponse.json({ + rows: result.rows, + rowCount: result.rowCount, + fields: result.fields.map(field => ({ + name: field.name, + dataTypeID: field.dataTypeID, + })), + }); + } catch (error: any) { + console.error('Query error:', error); + return NextResponse.json( + { error: error.message || 'Query failed' }, + { status: 500 }, + ); + } +} diff --git a/src/app/api/admin/tables/route.ts b/src/app/api/admin/tables/route.ts new file mode 100644 index 0000000..a436857 --- /dev/null +++ b/src/app/api/admin/tables/route.ts @@ -0,0 +1,37 @@ +import { NextResponse } from 'next/server'; +import { Pool } from 'pg'; +import { getSession } from '@/utils/session'; + +export async function GET() { + try { + const session = await getSession(); + + if (!session) { + return NextResponse.json( + { error: 'Unauthorized' }, + { status: 401 }, + ); + } + + const pool = new Pool({ + connectionString: process.env.DATABASE_URL, + }); + + const result = await pool.query(` + SELECT table_name + FROM information_schema.tables + WHERE table_schema = 'public' + ORDER BY table_name + `); + + await pool.end(); + + return NextResponse.json({ tables: result.rows }); + } catch (error) { + console.error('Error fetching tables:', error); + return NextResponse.json( + { error: 'Failed to fetch tables' }, + { status: 500 }, + ); + } +} diff --git a/src/models/Schema.ts b/src/models/Schema.ts index edbdc2a..e0926ad 100644 --- a/src/models/Schema.ts +++ b/src/models/Schema.ts @@ -1,4 +1,4 @@ -import { integer, pgTable, serial, timestamp } from 'drizzle-orm/pg-core'; +import { integer, pgTable, serial, timestamp, varchar } from 'drizzle-orm/pg-core'; // This file defines the structure of your database tables using the Drizzle ORM. @@ -22,3 +22,14 @@ export const counterSchema = pgTable('counter', { .notNull(), createdAt: timestamp('created_at', { mode: 'date' }).defaultNow().notNull(), }); + +export const adminUserSchema = pgTable('admin_users', { + id: serial('id').primaryKey(), + username: varchar('username', { length: 255 }).unique().notNull(), + passwordHash: varchar('password_hash', { length: 255 }).notNull(), + createdAt: timestamp('created_at', { mode: 'date' }).defaultNow().notNull(), + updatedAt: timestamp('updated_at', { mode: 'date' }) + .defaultNow() + .$onUpdate(() => new Date()) + .notNull(), +}); diff --git a/src/proxy.ts b/src/proxy.ts index 05a0e3f..30f5a0a 100644 --- a/src/proxy.ts +++ b/src/proxy.ts @@ -38,6 +38,11 @@ export default async function proxy( request: NextRequest, event: NextFetchEvent, ) { + // Skip i18n routing for admin and API routes + if (request.nextUrl.pathname.startsWith('/admin') || request.nextUrl.pathname.startsWith('/api/admin')) { + return NextResponse.next(); + } + // Verify the request with Arcjet // Use `process.env` instead of Env to reduce bundle size in middleware if (process.env.ARCJET_KEY) { diff --git a/src/utils/auth.ts b/src/utils/auth.ts new file mode 100644 index 0000000..3dcca1f --- /dev/null +++ b/src/utils/auth.ts @@ -0,0 +1,14 @@ +import bcrypt from 'bcryptjs'; + +const SALT_ROUNDS = 10; + +export async function hashPassword(password: string): Promise { + return bcrypt.hash(password, SALT_ROUNDS); +} + +export async function verifyPassword( + password: string, + hash: string, +): Promise { + return bcrypt.compare(password, hash); +} diff --git a/src/utils/db.ts b/src/utils/db.ts new file mode 100644 index 0000000..72b6697 --- /dev/null +++ b/src/utils/db.ts @@ -0,0 +1,11 @@ +import { drizzle } from 'drizzle-orm/node-postgres'; +import { Pool } from 'pg'; +import { adminUserSchema } from '@/models/Schema'; + +const pool = new Pool({ + connectionString: process.env.DATABASE_URL, +}); + +export const db = drizzle(pool); + +export { adminUserSchema }; diff --git a/src/utils/session.ts b/src/utils/session.ts new file mode 100644 index 0000000..9fa5ce9 --- /dev/null +++ b/src/utils/session.ts @@ -0,0 +1,54 @@ +import { jwtVerify, SignJWT } from 'jose'; +import { cookies } from 'next/headers'; + +const SESSION_COOKIE_NAME = 'admin-session'; +const JWT_SECRET = new TextEncoder().encode( + process.env.JWT_SECRET || 'your-secret-key-change-in-production', +); + +export type SessionData = { + userId: number; + username: string; +}; + +export async function createSession(data: SessionData): Promise { + const token = await new SignJWT(data) + .setProtectedHeader({ alg: 'HS256' }) + .setIssuedAt() + .setExpirationTime('24h') + .sign(JWT_SECRET); + + return token; +} + +export async function setSessionCookie(token: string): Promise { + const cookieStore = await cookies(); + cookieStore.set(SESSION_COOKIE_NAME, token, { + httpOnly: true, + secure: process.env.NODE_ENV === 'production', + sameSite: 'lax', + maxAge: 60 * 60 * 24, // 24 hours + path: '/', + }); +} + +export async function getSession(): Promise { + const cookieStore = await cookies(); + const token = cookieStore.get(SESSION_COOKIE_NAME)?.value; + + if (!token) { + return null; + } + + try { + const { payload } = await jwtVerify(token, JWT_SECRET); + return payload as SessionData; + } catch { + return null; + } +} + +export async function clearSession(): Promise { + const cookieStore = await cookies(); + cookieStore.delete(SESSION_COOKIE_NAME); +} diff --git a/src/utils/theme.ts b/src/utils/theme.ts new file mode 100644 index 0000000..bfc2dad --- /dev/null +++ b/src/utils/theme.ts @@ -0,0 +1,26 @@ +'use client'; + +import { createTheme } from '@mui/material/styles'; + +export const theme = createTheme({ + palette: { + mode: 'light', + primary: { + main: '#1976d2', + }, + secondary: { + main: '#dc004e', + }, + }, + typography: { + fontFamily: [ + '-apple-system', + 'BlinkMacSystemFont', + '"Segoe UI"', + 'Roboto', + '"Helvetica Neue"', + 'Arial', + 'sans-serif', + ].join(','), + }, +});