feat: implement user authentication system with admin dashboard

2026-01-31 12:23:33 -06:00 · 2026-01-29 12:56:51 -06:00
parent 4207783cdd
commit 527cbebc6a
28 changed files with 1575 additions and 13 deletions
@@ -7,6 +7,7 @@ import type {
  ServiceInfo,
  ServiceStatus,
  StatusResponse,
+  User,
 } from "$lib/bindings";

 const API_BASE_URL = "/api";
@@ -34,6 +35,43 @@ export type SearchResponse = SearchResponseGenerated;
 export type SortColumn = "course_code" | "title" | "instructor" | "time" | "seats";
 export type SortDirection = "asc" | "desc";

+export interface AdminStatus {
+  userCount: number;
+  sessionCount: number;
+  courseCount: number;
+  scrapeJobCount: number;
+  services: { name: string; status: string }[];
+}
+
+export interface ScrapeJob {
+  id: number;
+  targetType: string;
+  targetPayload: unknown;
+  priority: string;
+  executeAt: string;
+  createdAt: string;
+  lockedAt: string | null;
+  retryCount: number;
+  maxRetries: number;
+}
+
+export interface ScrapeJobsResponse {
+  jobs: ScrapeJob[];
+}
+
+export interface AuditLogEntry {
+  id: number;
+  courseId: number;
+  timestamp: string;
+  fieldChanged: string;
+  oldValue: string;
+  newValue: string;
+}
+
+export interface AuditLogResponse {
+  entries: AuditLogEntry[];
+}
+
 export interface SearchParams {
  term: string;
  subjects?: string[];
@@ -96,6 +134,33 @@ export class BannerApiClient {
  async getReference(category: string): Promise<ReferenceEntry[]> {
    return this.request<ReferenceEntry[]>(`/reference/${encodeURIComponent(category)}`);
  }
+
+  // Admin endpoints
+  async getAdminStatus(): Promise<AdminStatus> {
+    return this.request<AdminStatus>("/admin/status");
+  }
+
+  async getAdminUsers(): Promise<User[]> {
+    return this.request<User[]>("/admin/users");
+  }
+
+  async setUserAdmin(discordId: string, isAdmin: boolean): Promise<User> {
+    const response = await this.fetchFn(`${this.baseUrl}/admin/users/${discordId}/admin`, {
+      method: "PUT",
+      headers: { "Content-Type": "application/json" },
+      body: JSON.stringify({ is_admin: isAdmin }),
+    });
+    if (!response.ok) throw new Error(`API request failed: ${response.status}`);
+    return (await response.json()) as User;
+  }
+
+  async getAdminScrapeJobs(): Promise<ScrapeJobsResponse> {
+    return this.request<ScrapeJobsResponse>("/admin/scrape-jobs");
+  }
+
+  async getAdminAuditLog(): Promise<AuditLogResponse> {
+    return this.request<AuditLogResponse>("/admin/audit-log");
+  }
 }

 export const client = new BannerApiClient();
@@ -0,0 +1,55 @@
+import type { User } from "$lib/bindings";
+
+type AuthState =
+  | { mode: "loading" }
+  | { mode: "authenticated"; user: User }
+  | { mode: "unauthenticated" };
+
+class AuthStore {
+  state = $state<AuthState>({ mode: "loading" });
+
+  get user(): User | null {
+    return this.state.mode === "authenticated" ? this.state.user : null;
+  }
+
+  get isAdmin(): boolean {
+    return this.user?.isAdmin ?? false;
+  }
+
+  get isLoading(): boolean {
+    return this.state.mode === "loading";
+  }
+
+  get isAuthenticated(): boolean {
+    return this.state.mode === "authenticated";
+  }
+
+  async init() {
+    try {
+      const response = await fetch("/api/auth/me");
+      if (response.ok) {
+        const user: User = await response.json();
+        this.state = { mode: "authenticated", user };
+      } else {
+        this.state = { mode: "unauthenticated" };
+      }
+    } catch {
+      this.state = { mode: "unauthenticated" };
+    }
+  }
+
+  login() {
+    window.location.href = "/api/auth/login";
+  }
+
+  async logout() {
+    try {
+      await fetch("/api/auth/logout", { method: "POST" });
+    } finally {
+      this.state = { mode: "unauthenticated" };
+      window.location.href = "/";
+    }
+  }
+}
+
+export const authStore = new AuthStore();
@@ -6,3 +6,4 @@ export type { SearchResponse } from "./SearchResponse";
 export type { ServiceInfo } from "./ServiceInfo";
 export type { ServiceStatus } from "./ServiceStatus";
 export type { StatusResponse } from "./StatusResponse";
+export type { User } from "./User";
@@ -0,0 +1,74 @@
+<script lang="ts">
+import { onMount } from "svelte";
+import { goto } from "$app/navigation";
+import { authStore } from "$lib/auth.svelte";
+import { LayoutDashboard, Users, ClipboardList, FileText, LogOut } from "@lucide/svelte";
+
+let { children } = $props();
+
+onMount(async () => {
+  if (authStore.isLoading) {
+    await authStore.init();
+  }
+});
+
+$effect(() => {
+  if (authStore.state.mode === "unauthenticated") {
+    goto("/login");
+  }
+});
+
+const navItems = [
+  { href: "/admin", label: "Dashboard", icon: LayoutDashboard },
+  { href: "/admin/scrape-jobs", label: "Scrape Jobs", icon: ClipboardList },
+  { href: "/admin/audit-log", label: "Audit Log", icon: FileText },
+  { href: "/admin/users", label: "Users", icon: Users },
+];
+</script>
+
+{#if authStore.isLoading}
+  <div class="flex min-h-screen items-center justify-center">
+    <p class="text-muted-foreground">Loading...</p>
+  </div>
+{:else if !authStore.isAdmin}
+  <div class="flex min-h-screen items-center justify-center">
+    <div class="text-center">
+      <h1 class="text-2xl font-bold">Access Denied</h1>
+      <p class="text-muted-foreground mt-2">You do not have admin access.</p>
+    </div>
+  </div>
+{:else}
+  <div class="flex min-h-screen">
+    <aside class="border-border bg-card flex w-64 flex-col border-r">
+      <div class="border-border border-b p-4">
+        <h2 class="text-lg font-semibold">Admin</h2>
+        {#if authStore.user}
+          <p class="text-muted-foreground text-sm">{authStore.user.username}</p>
+        {/if}
+      </div>
+      <nav class="flex-1 space-y-1 p-2">
+        {#each navItems as item}
+          <a
+            href={item.href}
+            class="hover:bg-accent flex items-center gap-3 rounded-lg px-3 py-2 text-sm font-medium transition-colors"
+          >
+            <item.icon size={18} />
+            {item.label}
+          </a>
+        {/each}
+      </nav>
+      <div class="border-border border-t p-2">
+        <button
+          onclick={() => authStore.logout()}
+          class="hover:bg-destructive/10 text-destructive flex w-full items-center gap-3 rounded-lg px-3 py-2 text-sm font-medium transition-colors"
+        >
+          <LogOut size={18} />
+          Sign Out
+        </button>
+      </div>
+    </aside>
+    <main class="flex-1 overflow-auto p-6">
+      {@render children()}
+    </main>
+  </div>
+{/if}
@@ -0,0 +1,54 @@
+<script lang="ts">
+import { onMount } from "svelte";
+import { client, type AdminStatus } from "$lib/api";
+
+let status = $state<AdminStatus | null>(null);
+let error = $state<string | null>(null);
+
+onMount(async () => {
+  try {
+    status = await client.getAdminStatus();
+  } catch (e) {
+    error = e instanceof Error ? e.message : "Failed to load status";
+  }
+});
+</script>
+
+<h1 class="mb-6 text-2xl font-bold">Dashboard</h1>
+
+{#if error}
+  <p class="text-destructive">{error}</p>
+{:else if !status}
+  <p class="text-muted-foreground">Loading...</p>
+{:else}
+  <div class="grid grid-cols-2 gap-4 lg:grid-cols-4">
+    <div class="bg-card border-border rounded-lg border p-4">
+      <p class="text-muted-foreground text-sm">Users</p>
+      <p class="text-3xl font-bold">{status.userCount}</p>
+    </div>
+    <div class="bg-card border-border rounded-lg border p-4">
+      <p class="text-muted-foreground text-sm">Active Sessions</p>
+      <p class="text-3xl font-bold">{status.sessionCount}</p>
+    </div>
+    <div class="bg-card border-border rounded-lg border p-4">
+      <p class="text-muted-foreground text-sm">Courses</p>
+      <p class="text-3xl font-bold">{status.courseCount}</p>
+    </div>
+    <div class="bg-card border-border rounded-lg border p-4">
+      <p class="text-muted-foreground text-sm">Scrape Jobs</p>
+      <p class="text-3xl font-bold">{status.scrapeJobCount}</p>
+    </div>
+  </div>
+
+  <h2 class="mt-8 mb-4 text-lg font-semibold">Services</h2>
+  <div class="bg-card border-border rounded-lg border">
+    {#each status.services as service}
+      <div class="border-border flex items-center justify-between border-b px-4 py-3 last:border-b-0">
+        <span class="font-medium">{service.name}</span>
+        <span class="rounded-full bg-green-100 px-2 py-0.5 text-xs font-medium text-green-800 dark:bg-green-900 dark:text-green-200">
+          {service.status}
+        </span>
+      </div>
+    {/each}
+  </div>
+{/if}
@@ -0,0 +1,50 @@
+<script lang="ts">
+import { onMount } from "svelte";
+import { client, type AuditLogResponse } from "$lib/api";
+
+let data = $state<AuditLogResponse | null>(null);
+let error = $state<string | null>(null);
+
+onMount(async () => {
+  try {
+    data = await client.getAdminAuditLog();
+  } catch (e) {
+    error = e instanceof Error ? e.message : "Failed to load audit log";
+  }
+});
+</script>
+
+<h1 class="mb-6 text-2xl font-bold">Audit Log</h1>
+
+{#if error}
+  <p class="text-destructive">{error}</p>
+{:else if !data}
+  <p class="text-muted-foreground">Loading...</p>
+{:else if data.entries.length === 0}
+  <p class="text-muted-foreground">No audit log entries found.</p>
+{:else}
+  <div class="bg-card border-border overflow-hidden rounded-lg border">
+    <table class="w-full text-sm">
+      <thead>
+        <tr class="border-border border-b">
+          <th class="px-4 py-3 text-left font-medium">Time</th>
+          <th class="px-4 py-3 text-left font-medium">Course ID</th>
+          <th class="px-4 py-3 text-left font-medium">Field</th>
+          <th class="px-4 py-3 text-left font-medium">Old Value</th>
+          <th class="px-4 py-3 text-left font-medium">New Value</th>
+        </tr>
+      </thead>
+      <tbody>
+        {#each data.entries as entry}
+          <tr class="border-border border-b last:border-b-0">
+            <td class="px-4 py-3">{new Date(entry.timestamp).toLocaleString()}</td>
+            <td class="px-4 py-3">{entry.courseId}</td>
+            <td class="px-4 py-3 font-mono text-xs">{entry.fieldChanged}</td>
+            <td class="px-4 py-3">{entry.oldValue}</td>
+            <td class="px-4 py-3">{entry.newValue}</td>
+          </tr>
+        {/each}
+      </tbody>
+    </table>
+  </div>
+{/if}
@@ -0,0 +1,52 @@
+<script lang="ts">
+import { onMount } from "svelte";
+import { client, type ScrapeJobsResponse } from "$lib/api";
+
+let data = $state<ScrapeJobsResponse | null>(null);
+let error = $state<string | null>(null);
+
+onMount(async () => {
+  try {
+    data = await client.getAdminScrapeJobs();
+  } catch (e) {
+    error = e instanceof Error ? e.message : "Failed to load scrape jobs";
+  }
+});
+</script>
+
+<h1 class="mb-6 text-2xl font-bold">Scrape Jobs</h1>
+
+{#if error}
+  <p class="text-destructive">{error}</p>
+{:else if !data}
+  <p class="text-muted-foreground">Loading...</p>
+{:else if data.jobs.length === 0}
+  <p class="text-muted-foreground">No scrape jobs found.</p>
+{:else}
+  <div class="bg-card border-border overflow-hidden rounded-lg border">
+    <table class="w-full text-sm">
+      <thead>
+        <tr class="border-border border-b">
+          <th class="px-4 py-3 text-left font-medium">ID</th>
+          <th class="px-4 py-3 text-left font-medium">Type</th>
+          <th class="px-4 py-3 text-left font-medium">Priority</th>
+          <th class="px-4 py-3 text-left font-medium">Execute At</th>
+          <th class="px-4 py-3 text-left font-medium">Retries</th>
+          <th class="px-4 py-3 text-left font-medium">Status</th>
+        </tr>
+      </thead>
+      <tbody>
+        {#each data.jobs as job}
+          <tr class="border-border border-b last:border-b-0">
+            <td class="px-4 py-3">{job.id}</td>
+            <td class="px-4 py-3">{job.targetType}</td>
+            <td class="px-4 py-3">{job.priority}</td>
+            <td class="px-4 py-3">{new Date(job.executeAt).toLocaleString()}</td>
+            <td class="px-4 py-3">{job.retryCount}/{job.maxRetries}</td>
+            <td class="px-4 py-3">{job.lockedAt ? "Locked" : "Pending"}</td>
+          </tr>
+        {/each}
+      </tbody>
+    </table>
+  </div>
+{/if}
@@ -0,0 +1,92 @@
+<script lang="ts">
+import { onMount } from "svelte";
+import { client } from "$lib/api";
+import type { User } from "$lib/bindings";
+import { Shield, ShieldOff } from "@lucide/svelte";
+
+let users = $state<User[]>([]);
+let error = $state<string | null>(null);
+let updating = $state<string | null>(null);
+
+onMount(async () => {
+  try {
+    users = await client.getAdminUsers();
+  } catch (e) {
+    error = e instanceof Error ? e.message : "Failed to load users";
+  }
+});
+
+async function toggleAdmin(user: User) {
+  updating = user.discordId;
+  try {
+    const updated = await client.setUserAdmin(user.discordId, !user.isAdmin);
+    users = users.map((u) => (u.discordId === updated.discordId ? updated : u));
+  } catch (e) {
+    error = e instanceof Error ? e.message : "Failed to update user";
+  } finally {
+    updating = null;
+  }
+}
+</script>
+
+<h1 class="mb-6 text-2xl font-bold">Users</h1>
+
+{#if error}
+  <p class="text-destructive mb-4">{error}</p>
+{/if}
+
+{#if users.length === 0 && !error}
+  <p class="text-muted-foreground">Loading...</p>
+{:else}
+  <div class="bg-card border-border overflow-hidden rounded-lg border">
+    <table class="w-full text-sm">
+      <thead>
+        <tr class="border-border border-b">
+          <th class="px-4 py-3 text-left font-medium">Username</th>
+          <th class="px-4 py-3 text-left font-medium">Discord ID</th>
+          <th class="px-4 py-3 text-left font-medium">Admin</th>
+          <th class="px-4 py-3 text-left font-medium">Actions</th>
+        </tr>
+      </thead>
+      <tbody>
+        {#each users as user}
+          <tr class="border-border border-b last:border-b-0">
+            <td class="flex items-center gap-2 px-4 py-3">
+              {#if user.avatarHash}
+                <img
+                  src="https://cdn.discordapp.com/avatars/{user.discordId}/{user.avatarHash}.png?size=32"
+                  alt=""
+                  class="h-6 w-6 rounded-full"
+                />
+              {/if}
+              {user.username}
+            </td>
+            <td class="text-muted-foreground px-4 py-3 font-mono text-xs">{user.discordId}</td>
+            <td class="px-4 py-3">
+              {#if user.isAdmin}
+                <span class="rounded-full bg-blue-100 px-2 py-0.5 text-xs font-medium text-blue-800 dark:bg-blue-900 dark:text-blue-200">Admin</span>
+              {:else}
+                <span class="text-muted-foreground text-xs">User</span>
+              {/if}
+            </td>
+            <td class="px-4 py-3">
+              <button
+                onclick={() => toggleAdmin(user)}
+                disabled={updating === user.discordId}
+                class="hover:bg-accent inline-flex items-center gap-1 rounded px-2 py-1 text-xs transition-colors disabled:opacity-50"
+              >
+                {#if user.isAdmin}
+                  <ShieldOff size={14} />
+                  Remove Admin
+                {:else}
+                  <Shield size={14} />
+                  Make Admin
+                {/if}
+              </button>
+            </td>
+          </tr>
+        {/each}
+      </tbody>
+    </table>
+  </div>
+{/if}
@@ -0,0 +1,18 @@
+<script lang="ts">
+import { authStore } from "$lib/auth.svelte";
+import { LogIn } from "@lucide/svelte";
+</script>
+
+<div class="flex min-h-screen items-center justify-center">
+  <div class="w-full max-w-sm space-y-6 text-center">
+    <h1 class="text-3xl font-bold">Sign In</h1>
+    <p class="text-muted-foreground">Sign in with your Discord account to continue.</p>
+    <button
+      onclick={() => authStore.login()}
+      class="inline-flex w-full items-center justify-center gap-2 rounded-lg bg-[#5865F2] px-6 py-3 text-lg font-semibold text-white transition-colors hover:bg-[#4752C4]"
+    >
+      <LogIn size={20} />
+      Sign in with Discord
+    </button>
+  </div>
+</div>