barbercollie/ReadMeABook
1
0
Fork 1
mirror of https://github.com/kikootwo/ReadMeABook.git synced 2026-06-02 20:30:10 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add useApiTokens hook and refactor token UI

Browse Source 
Introduce a shared useApiTokens hook to centralize API token CRUD and UI state (fetch, create, delete, copy, formatting). Refactor ApiTab and ApiTokensSection to consume the hook and remove duplicated logic. Add getInstanceUrl utility for client origin used in curl examples. Include an id alias in TokenPayload and add id into generated JWTs across auth routes and providers; update tests accordingly. Improve auth middleware typing and add debug logging around lastUsedAt updates. Add admin logging when creating a token with a role that differs from the target user's role.
This commit is contained in:
kikootwo
2026-03-04 15:18:48 -05:00
parent d6eca611fc
commit a50fbc721e
17 changed files with 344 additions and 311 deletions
Download Patch File Download Diff File Expand all files Collapse all files
src/app/api/admin/api-tokens/route.ts
+10
View File
@@ -123,6 +123,16 @@ export async function POST(request: NextRequest) {
// Determine token role (defaults to target user's role)
const tokenRole = role || targetUser.role;
// Log when admin explicitly overrides role to differ from user's actual role
if (role && role !== targetUser.role) {
logger.warn('Admin creating token with role different from user actual role', {
tokenRole: role,
userActualRole: targetUser.role,
targetUser: targetUser.plexUsername,
createdBy: req.user!.username,
});
}
// Generate the token
const { fullToken, tokenHash, tokenPrefix } = generateApiToken();
src/app/api/auth/admin/login/route.ts
+1
View File
@@ -92,6 +92,7 @@ export async function POST(request: NextRequest) {
// Generate JWT tokens
const accessToken = generateAccessToken({
sub: user.id,
id: user.id,
plexId: user.plexId,
username: user.plexUsername,
role: user.role,
src/app/api/auth/plex/callback/route.ts
+1
View File
@@ -239,6 +239,7 @@ export async function GET(request: NextRequest) {
// Generate JWT tokens
const accessToken = generateAccessToken({
sub: user.id,
id: user.id,
plexId: user.plexId,
username: user.plexUsername,
role: user.role,
src/app/api/auth/plex/switch-profile/route.ts
+1
View File
@@ -167,6 +167,7 @@ export async function POST(request: NextRequest) {
// Generate JWT tokens
const accessToken = generateAccessToken({
sub: user.id,
id: user.id,
plexId: user.plexId,
username: user.plexUsername,
role: user.role,
src/app/api/auth/refresh/route.ts
+1
View File
@@ -60,6 +60,7 @@ export async function POST(request: NextRequest) {
// Generate new access token
const accessToken = generateAccessToken({
sub: user.id,
id: user.id,
plexId: user.plexId,
username: user.plexUsername,
role: user.role,
src/app/api/setup/complete/route.ts
+1
View File
@@ -163,6 +163,7 @@ export async function POST(request: NextRequest) {
// Generate JWT tokens for auto-login
accessToken = generateAccessToken({
sub: adminUser.id,
id: adminUser.id,
plexId: adminUser.plexId,
username: adminUser.plexUsername,
role: adminUser.role,