- Rename directory keep-notes -> memento-note with all code references - Prisma: SQLite -> PostgreSQL (both app and MCP server schemas) - Sync MCP schema with main app (add missing fields, relations, indexes) - Delete 17 SQLite migrations (clean slate for PostgreSQL) - Remove SQLite dependencies (@libsql/client, better-sqlite3, etc.) - Fix MCP server: hardcoded Windows DB paths -> DATABASE_URL env var - Fix MCP server: .dockerignore excluded index-sse.js (SSE mode broken) - MCP Dockerfile: node:20 -> node:22 - Docker Compose: add postgres service, remove SQLite volume - Generate favicon.ico, icon-192.png, icon-512.png, apple-icon.png - Update layout.tsx icons and manifest.json for PNG icons - Update all .env files for PostgreSQL - Rewrite README.md with updated sections - Remove mcp-server/node_modules and prisma/client-generated from git tracking Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
121 lines
2.9 KiB
TypeScript
121 lines
2.9 KiB
TypeScript
'use server'
|
|
|
|
import { revalidatePath } from 'next/cache'
|
|
import prisma from '@/lib/prisma'
|
|
import { auth } from '@/auth'
|
|
import bcrypt from 'bcryptjs'
|
|
import { z } from 'zod'
|
|
|
|
// Schema pour la création d'utilisateur
|
|
const CreateUserSchema = z.object({
|
|
name: z.string().min(2, "Name must be at least 2 characters"),
|
|
email: z.string().email("Invalid email address"),
|
|
password: z.string().min(6, "Password must be at least 6 characters"),
|
|
role: z.enum(["USER", "ADMIN"]).default("USER"),
|
|
})
|
|
|
|
async function checkAdmin() {
|
|
const session = await auth()
|
|
if (!session?.user?.id || (session.user as any).role !== 'ADMIN') {
|
|
throw new Error('Unauthorized: Admin access required')
|
|
}
|
|
return session
|
|
}
|
|
|
|
export async function getUsers() {
|
|
await checkAdmin()
|
|
try {
|
|
const users = await prisma.user.findMany({
|
|
orderBy: { createdAt: 'desc' },
|
|
select: {
|
|
id: true,
|
|
name: true,
|
|
email: true,
|
|
role: true,
|
|
createdAt: true,
|
|
}
|
|
})
|
|
return users
|
|
} catch (error) {
|
|
console.error('Failed to fetch users:', error)
|
|
throw new Error('Failed to fetch users')
|
|
}
|
|
}
|
|
|
|
export async function createUser(formData: FormData) {
|
|
await checkAdmin()
|
|
|
|
const rawData = {
|
|
name: formData.get('name'),
|
|
email: formData.get('email'),
|
|
password: formData.get('password'),
|
|
role: formData.get('role'),
|
|
}
|
|
|
|
const validatedFields = CreateUserSchema.safeParse(rawData)
|
|
|
|
if (!validatedFields.success) {
|
|
return {
|
|
error: validatedFields.error.flatten().fieldErrors,
|
|
}
|
|
}
|
|
|
|
const { name, email, password, role } = validatedFields.data
|
|
const hashedPassword = await bcrypt.hash(password, 10)
|
|
|
|
try {
|
|
await prisma.user.create({
|
|
data: {
|
|
name,
|
|
email: email.toLowerCase(),
|
|
password: hashedPassword,
|
|
role,
|
|
},
|
|
})
|
|
revalidatePath('/admin')
|
|
return { success: true }
|
|
} catch (error: any) {
|
|
if (error.code === 'P2002') {
|
|
return { error: { email: ['Email already exists'] } }
|
|
}
|
|
return { error: { _form: ['Failed to create user'] } }
|
|
}
|
|
}
|
|
|
|
export async function deleteUser(userId: string) {
|
|
const session = await checkAdmin()
|
|
|
|
if (session.user?.id === userId) {
|
|
throw new Error("You cannot delete your own account")
|
|
}
|
|
|
|
try {
|
|
await prisma.user.delete({
|
|
where: { id: userId },
|
|
})
|
|
revalidatePath('/admin')
|
|
return { success: true }
|
|
} catch (error) {
|
|
throw new Error('Failed to delete user')
|
|
}
|
|
}
|
|
|
|
export async function updateUserRole(userId: string, newRole: string) {
|
|
const session = await checkAdmin()
|
|
|
|
if (session.user?.id === userId) {
|
|
throw new Error("You cannot change your own role")
|
|
}
|
|
|
|
try {
|
|
await prisma.user.update({
|
|
where: { id: userId },
|
|
data: { role: newRole },
|
|
})
|
|
revalidatePath('/admin')
|
|
return { success: true }
|
|
} catch (error) {
|
|
throw new Error('Failed to update role')
|
|
}
|
|
}
|