BivekiGroup/ckeproekt
4
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Удалены устаревшие файлы документации и отчетов, включая ADMIN_DESIGN_IMPROVEMENTS.md, DATABASE_SETUP.md, FIX_REPORT.md, IMPLEMENTATION_SUMMARY.md, S3_SETUP.md, S3_TROUBLESHOOTING.md. Обновлен docker-compose.yml для упрощения проверки состояния контейнера. Исправлены ошибки в компонентах админ-панели, включая улучшение логики авторизации и загрузки категорий новостей.

Browse Source
This commit is contained in:
Bivekich
2025-08-08 01:56:54 +03:00
parent e49559c0b4
commit 8191775647
21 changed files with 541 additions and 1093 deletions
Download Patch File Download Diff File Expand all files Collapse all files

54
app/api/admin/credentials/route.ts Normal file
View File

@ -0,0 +1,54 @@
import { NextRequest, NextResponse } from 'next/server';
import { getAuthContext, hashPassword, verifyPassword } from '@/lib/auth';
import prisma from '@/lib/database';
export async function PUT(request: NextRequest) {
const context = await getAuthContext(request);
if (!context.user || context.user.role !== 'ADMIN') {
return NextResponse.json({ error: 'Unauthorized' }, { status: 401 });
}
try {
const { email, username, currentPassword, newPassword } = await request.json();
if (!currentPassword) {
return NextResponse.json({ error: 'Текущий пароль обязателен' }, { status: 400 });
}
const user = await prisma.user.findUnique({ where: { id: context.user.id } });
if (!user) {
return NextResponse.json({ error: 'Пользователь не найден' }, { status: 404 });
}
// Проверка текущего пароля
const isValid = await verifyPassword(currentPassword, user.password);
if (!isValid) {
return NextResponse.json({ error: 'Неверный текущий пароль' }, { status: 400 });
}
const data: any = {};
if (email && email !== user.email) data.email = email;
if (username && username !== user.username) data.username = username;
if (newPassword && newPassword.length >= 6) {
data.password = await hashPassword(newPassword);
}
if (Object.keys(data).length === 0) {
return NextResponse.json({ success: true });
}
const updated = await prisma.user.update({
where: { id: user.id },
data,
select: { id: true, email: true, username: true, role: true, name: true, avatar: true }
});
return NextResponse.json({ user: updated });
} catch (error: any) {
if (error.code === 'P2002') {
return NextResponse.json({ error: 'Email или логин уже заняты' }, { status: 409 });
}
return NextResponse.json({ error: 'Внутренняя ошибка сервера' }, { status: 500 });
}
}

51
app/api/admin/login/route.ts Normal file
View File

@ -0,0 +1,51 @@
import { NextRequest, NextResponse } from 'next/server';
import prisma from '@/lib/database';
import { verifyPassword, generateToken } from '@/lib/auth';
export async function POST(request: NextRequest) {
try {
const { identifier, password } = await request.json();
if (!identifier || !password) {
return NextResponse.json({ error: 'Логин/Email и пароль обязательны' }, { status: 400 });
}
const user = await prisma.user.findFirst({
where: {
OR: [
{ email: identifier },
{ username: identifier }
]
}
});
if (!user) {
return NextResponse.json({ error: 'Неверные учетные данные' }, { status: 401 });
}
if (user.role !== 'ADMIN') {
return NextResponse.json({ error: 'Доступ запрещен' }, { status: 403 });
}
const isValid = await verifyPassword(password, user.password);
if (!isValid) {
return NextResponse.json({ error: 'Неверные учетные данные' }, { status: 401 });
}
const token = generateToken(user.id);
const { password: _pwd, ...safeUser } = user as any;
const response = NextResponse.json({ user: safeUser });
response.cookies.set('auth-token', token, {
httpOnly: true,
sameSite: 'lax',
secure: process.env.NODE_ENV === 'production',
path: '/',
maxAge: 60 * 60 * 24 * 7, // 7 дней
});
return response;
} catch (error) {
return NextResponse.json({ error: 'Внутренняя ошибка сервера' }, { status: 500 });
}
}

14
app/api/admin/logout/route.ts Normal file
View File

@ -0,0 +1,14 @@
import { NextResponse } from 'next/server';
export async function POST() {
const response = NextResponse.json({ success: true });
response.cookies.set('auth-token', '', {
httpOnly: true,
sameSite: 'lax',
secure: process.env.NODE_ENV === 'production',
path: '/',
maxAge: 0,
});
return response;
}

11
app/api/admin/me/route.ts Normal file
View File

@ -0,0 +1,11 @@
import { NextRequest, NextResponse } from 'next/server';
import { getAuthContext } from '@/lib/auth';
export async function GET(request: NextRequest) {
const context = await getAuthContext(request);
if (!context.user || context.user.role !== 'ADMIN') {
return NextResponse.json({ user: null }, { status: 401 });
}
return NextResponse.json({ user: context.user });
}

51
app/api/categories/[id]/route.ts Normal file
View File

@ -0,0 +1,51 @@
import { NextResponse } from 'next/server';
import prisma from '@/lib/database';
export async function PUT(
request: Request,
{ params }: { params: { id: string } }
) {
try {
const body = await request.json();
const { name, description, color, slug } = body;
const id = params.id;
const updated = await prisma.category.update({
where: { id },
data: {
...(name ? { name } : {}),
...(description !== undefined ? { description } : {}),
...(color ? { color } : {}),
...(slug ? { slug } : {}),
},
select: { id: true, name: true, slug: true, description: true, color: true }
});
return NextResponse.json({ success: true, data: updated });
} catch (error: any) {
if (error.code === 'P2025') {
return NextResponse.json({ success: false, error: 'Категория не найдена' }, { status: 404 });
}
if (error.code === 'P2002') {
return NextResponse.json({ success: false, error: 'Имя или слаг уже используются' }, { status: 409 });
}
return NextResponse.json({ success: false, error: 'Не удалось обновить категорию' }, { status: 500 });
}
}
export async function DELETE(
_request: Request,
{ params }: { params: { id: string } }
) {
try {
const id = params.id;
await prisma.category.delete({ where: { id } });
return NextResponse.json({ success: true });
} catch (error: any) {
if (error.code === 'P2025') {
return NextResponse.json({ success: false, error: 'Категория не найдена' }, { status: 404 });
}
return NextResponse.json({ success: false, error: 'Не удалось удалить категорию' }, { status: 500 });
}
}

56
app/api/categories/route.ts Normal file
View File

@ -0,0 +1,56 @@
import { NextResponse } from 'next/server';
import prisma from '@/lib/database';
export async function GET() {
try {
const categories = await prisma.category.findMany({
orderBy: { name: 'asc' },
select: { id: true, name: true, slug: true, description: true, color: true }
});
return NextResponse.json({ success: true, data: categories });
} catch {
return NextResponse.json({ success: false, error: 'Не удалось получить категории' }, { status: 500 });
}
}
export async function POST(request: Request) {
try {
const body = await request.json();
const name: string = body.name;
const description: string | undefined = body.description;
const color: string | undefined = body.color;
let slug: string | undefined = body.slug;
if (!name || !name.trim()) {
return NextResponse.json({ success: false, error: 'Название обязательно' }, { status: 400 });
}
if (!slug) {
slug = name
.toLowerCase()
.replace(/[^a-z0-9а-яё\s-]/g, '')
.replace(/[\s_]+/g, '-')
.replace(/-+/g, '-')
.replace(/^-|-$/g, '');
}
const created = await prisma.category.create({
data: {
name: name.trim(),
slug,
description,
color: color || 'bg-blue-500'
},
select: { id: true, name: true, slug: true, description: true, color: true }
});
return NextResponse.json({ success: true, data: created }, { status: 201 });
} catch (e: unknown) {
const code = typeof e === 'object' && e !== null && 'code' in e ? (e as { code?: string }).code : undefined;
if (code === 'P2002') {
return NextResponse.json({ success: false, error: 'Категория с таким именем или слагом уже существует' }, { status: 409 });
}
return NextResponse.json({ success: false, error: 'Не удалось создать категорию' }, { status: 500 });
}
}