kawa/CubeAdmin
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Initial push

Browse Source
This commit is contained in:
Sébastien QUEROL
2026-03-08 15:49:34 +01:00
parent 8da12bb7d1
commit 47127f276d
101 changed files with 13844 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

69
app/api/scheduler/[id]/route.ts Normal file
View File

@@ -0,0 +1,69 @@
import { NextRequest, NextResponse } from "next/server";
import { auth } from "@/lib/auth";
import { db } from "@/lib/db";
import { scheduledTasks } from "@/lib/db/schema";
import { scheduleTask, stopTask } from "@/lib/scheduler";
import { eq } from "drizzle-orm";
import { z } from "zod";
import cron from "node-cron";
const UpdateSchema = z.object({
name: z.string().min(1).max(100).optional(),
description: z.string().max(500).optional(),
cronExpression: z.string().max(100).optional(),
command: z.string().min(1).max(500).optional(),
isEnabled: z.boolean().optional(),
});
export async function PATCH(
req: NextRequest,
{ params }: { params: Promise<{ id: string }> },
) {
const session = await auth.api.getSession({ headers: req.headers });
if (!session) return NextResponse.json({ error: "Unauthorized" }, { status: 401 });
if (!["superadmin", "admin"].includes(session.user.role ?? "")) {
return NextResponse.json({ error: "Forbidden" }, { status: 403 });
}
const { id } = await params;
const task = await db.select().from(scheduledTasks).where(eq(scheduledTasks.id, id)).get();
if (!task) return NextResponse.json({ error: "Task not found" }, { status: 404 });
let body: z.infer<typeof UpdateSchema>;
try {
body = UpdateSchema.parse(await req.json());
} catch {
return NextResponse.json({ error: "Invalid request" }, { status: 400 });
}
if (body.cronExpression && !cron.validate(body.cronExpression)) {
return NextResponse.json({ error: "Invalid cron expression" }, { status: 400 });
}
const updated = { ...task, ...body, updatedAt: Date.now() };
await db.update(scheduledTasks).set(updated).where(eq(scheduledTasks.id, id));
// Reschedule
stopTask(id);
if (updated.isEnabled) {
scheduleTask(id, updated.cronExpression, updated.command);
}
return NextResponse.json({ success: true });
}
export async function DELETE(
req: NextRequest,
{ params }: { params: Promise<{ id: string }> },
) {
const session = await auth.api.getSession({ headers: req.headers });
if (!session) return NextResponse.json({ error: "Unauthorized" }, { status: 401 });
if (!["superadmin", "admin"].includes(session.user.role ?? "")) {
return NextResponse.json({ error: "Forbidden" }, { status: 403 });
}
const { id } = await params;
stopTask(id);
await db.delete(scheduledTasks).where(eq(scheduledTasks.id, id));
return NextResponse.json({ success: true });
}

67
app/api/scheduler/route.ts Normal file
View File

@@ -0,0 +1,67 @@
import { NextRequest, NextResponse } from "next/server";
import { auth } from "@/lib/auth";
import { db } from "@/lib/db";
import { scheduledTasks } from "@/lib/db/schema";
import { scheduleTask, stopTask } from "@/lib/scheduler";
import { checkRateLimit, getClientIp } from "@/lib/security/rateLimit";
import { eq } from "drizzle-orm";
import { nanoid } from "nanoid";
import { z } from "zod";
import cron from "node-cron";
const TaskSchema = z.object({
name: z.string().min(1).max(100),
description: z.string().max(500).optional(),
cronExpression: z.string().max(100),
command: z.string().min(1).max(500),
isEnabled: z.boolean().default(true),
});
export async function GET(req: NextRequest) {
const session = await auth.api.getSession({ headers: req.headers });
if (!session) return NextResponse.json({ error: "Unauthorized" }, { status: 401 });
const tasks = await db.select().from(scheduledTasks).orderBy(scheduledTasks.createdAt);
return NextResponse.json({ tasks });
}
export async function POST(req: NextRequest) {
const session = await auth.api.getSession({ headers: req.headers });
if (!session) return NextResponse.json({ error: "Unauthorized" }, { status: 401 });
if (!["superadmin", "admin"].includes(session.user.role ?? "")) {
return NextResponse.json({ error: "Forbidden" }, { status: 403 });
}
const ip = getClientIp(req);
const { allowed } = checkRateLimit(ip);
if (!allowed) return NextResponse.json({ error: "Too many requests" }, { status: 429 });
let body: z.infer<typeof TaskSchema>;
try {
body = TaskSchema.parse(await req.json());
} catch {
return NextResponse.json({ error: "Invalid request" }, { status: 400 });
}
if (!cron.validate(body.cronExpression)) {
return NextResponse.json({ error: "Invalid cron expression" }, { status: 400 });
}
const id = nanoid();
await db.insert(scheduledTasks).values({
id,
name: body.name,
description: body.description ?? null,
cronExpression: body.cronExpression,
command: body.command,
isEnabled: body.isEnabled,
createdAt: Date.now(),
updatedAt: Date.now(),
});
if (body.isEnabled) {
scheduleTask(id, body.cronExpression, body.command);
}
return NextResponse.json({ success: true, id }, { status: 201 });
}