maxim.dolgolyov/Learn_System
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
51e5dc29e1abb1c083819683523aecb6f3edef52
Learn_System/backend/src/routes/admin.js
T
Maxim Dolgolyov fe122b7681 feat(admin): журнал событий безопасности (Tier 1-2) + аудит чувствительных действий (Tier 3) 
- security_events (миграция 047) + utils/securityLog.js (defensive, lazy stmt)
- Tier 1: login.success/fail, register, password.change в authController
- Tier 2: 403 (роль/разрешение) в middleware/auth, rate_limited в rateLimit
- Tier 3: audit() на выдачу доступа (access), начисление/сброс XP (gam), модерацию аватаров
- API GET/DELETE /api/admin/security-log (фильтр по категории + поиск, прунинг по дням)
- Frontend: вкладка «Безопасность» в admin.html + loadSecurityLog, расширены ACTION_LABELS

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
2026-06-01 15:28:21 +03:00

57 lines
2.4 KiB
JavaScript
Raw Blame History

const router = require('express').Router();
const { authMiddleware, requireRole } = require('../middleware/auth');
const ctrl = require('../controllers/adminController');
router.use(authMiddleware);
/* Features — teachers may read (need to know what's enabled for their classes) */
router.get('/features', requireRole('admin', 'teacher'), ctrl.getFeatures);
router.patch('/features', requireRole('admin'), ctrl.updateFeatures);
router.get('/free-student-features', requireRole('admin', 'teacher'), ctrl.getFreeStudentFeatures);
router.patch('/free-student-features', requireRole('admin'), ctrl.updateFreeStudentFeatures);
/* Everything below is admin-only */
router.use(requireRole('admin'));
router.get('/stats', ctrl.getStats);
router.get('/overview', ctrl.getOverview);
router.get('/search', ctrl.globalSearch);
router.get('/users', ctrl.getUsers);
router.patch('/users/:id/role', ctrl.updateRole);
router.get('/users/:id/sessions', ctrl.getUserSessions);
router.delete('/users/:id/sessions', ctrl.clearUserSessions);
router.post('/users/:id/sessions/clear', ctrl.clearUserSessions);
router.patch('/users/:id', ctrl.updateUser);
router.patch('/users/:id/ban', ctrl.banUser);
router.delete('/users/:id', ctrl.deleteUser);
router.get('/sessions', ctrl.getAllSessions);
router.get('/sessions/:id', ctrl.getSessionDetail);
router.delete('/sessions/:id', ctrl.deleteSession);
/* Audit log */
router.get('/audit-log', ctrl.getAuditLog);
router.delete('/audit-log', ctrl.clearAuditLog);
/* Error log */
router.get('/error-log', ctrl.getErrorLog);
router.delete('/error-log', ctrl.clearErrorLog);
/* Security / auth event log */
router.get('/security-log', ctrl.getSecurityLog);
router.delete('/security-log', ctrl.clearSecurityLog);
/* System health */
router.get('/health', ctrl.getHealth);
router.get('/metrics', ctrl.getMetrics);
/* Topics CRUD */
router.get('/topics', ctrl.getTopics);
router.post('/topics', ctrl.createTopic);
router.patch('/topics/:id', ctrl.updateTopic);
router.delete('/topics/:id', ctrl.deleteTopic);
/* Broadcast notifications */
router.post('/broadcast', ctrl.broadcast);
module.exports = router;
Reference in New Issue View Git Blame Copy Permalink