pfcontrol-2/server/routes/admin/sessions.ts at 7ba2a053c85237b636e6c58c63075ea80802d9b9 · cephie-studios/pfcontrol-2 · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
import express from 'express';
import { createAuditLogger } from '../../middleware/auditLogger.js';
import { requirePermission } from '../../middleware/rolePermissions.js';
import { getAdminSessions } from '../../db/admin.js';
import { deleteSession } from '../../db/sessions.js';

const router = express.Router();

router.use(requirePermission('sessions'));

// GET: /api/admin/sessions - Get all sessions with details
router.get('/', createAuditLogger('ADMIN_SESSIONS_ACCESSED'), async (req, res) => {
    try {
        const page = parseInt(req.query.page as string) || 1;
        const limit = Math.min(parseInt(req.query.limit as string) || 100, 100);
        const search = (req.query.search as string) || '';
        const result = await getAdminSessions(page, limit, search);
        res.json(result);
    } catch (error) {
        console.error('Error fetching sessions:', error);
        res.status(500).json({ error: 'Failed to fetch sessions' });
    }
});

// DELETE: /api/admin/sessions/:sessionId - Delete a session
router.delete('/:sessionId', createAuditLogger('SESSION_DELETED'), async (req, res) => {
    try {
        const { sessionId } = req.params;
        await deleteSession(sessionId);
        res.json({ message: 'Session deleted successfully', sessionId });
    } catch (error: unknown) {
        if (
            typeof error === 'object' &&
            error !== null &&
            'message' in error &&
            typeof (error as { message?: unknown }).message === 'string' &&
            ((error as { message: string }).message.includes('not found'))
        ) {
            return res.status(404).json({ error: 'Session not found' });
        }
        console.error('Error deleting session:', error);
        res.status(500).json({ error: 'Failed to delete session' });
    }
});

// POST: /api/admin/sessions/:sessionId/join - Log joining a session
router.post('/:sessionId/join', createAuditLogger('SESSION_JOINED'), async (req, res) => {
    try {
        const { sessionId } = req.params;
        res.json({ message: 'Session join logged successfully', sessionId });
    } catch (error) {
        console.error('Error logging session join:', error);
        res.status(500).json({ error: 'Failed to log session join' });
    }
});

export default router;