assign user as an admin

JapaneseRestream · Jun 10, 2024 · cfde3cd · cfde3cd
1 parent 4797ed5
commit cfde3cd
Show file tree

Hide file tree

Showing 16 changed files with 228 additions and 91 deletions.
diff --git a/app/lib/session.server.ts b/app/lib/session.server.ts
@@ -0,0 +1,37 @@
+import { type AppLoadContext } from "@remix-run/cloudflare";
+
+export const assertSession = async (
+	request: Request,
+	context: AppLoadContext,
+) => {
+	const session = await context.authenticator.isAuthenticated(request);
+	if (session) {
+		const user = await context.prisma.users.findUnique({
+			where: { id: session.userId },
+			select: {
+				id: true,
+				discordId: true,
+				displayName: true,
+				isAdmin: true,
+			},
+		});
+		if (user) {
+			return user;
+		}
+	}
+	throw new Response("not found", { status: 404 });
+};
+
+export const assertAdminSession = async (
+	request: Request,
+	context: AppLoadContext,
+) => {
+	const user = await assertSession(request, context);
+	const superAdminDiscordIds =
+		context.cloudflare.env.SUPER_ADMIN_DISCORD_ID.split(",");
+	const isSuperAdmin = superAdminDiscordIds.includes(user.discordId);
+	if (isSuperAdmin || user.isAdmin) {
+		return { ...user, isSuperAdmin };
+	}
+	throw new Response("not found", { status: 404 });
+};
diff --git a/app/routes/_auth.admin.$/resources/users.tsx b/app/routes/_auth.admin.$/resources/users.tsx
diff --git a/app/routes/_auth.admin.$/route.tsx b/app/routes/_auth.admin.$/route.tsx
diff --git a/app/routes/_auth.admin.api.$.tsx b/app/routes/_auth.admin.api.$.tsx
diff --git a/app/routes/_auth.tsx b/app/routes/_auth.tsx
diff --git a/...tes/_auth.admin.$/components/datagrid.tsx → app/routes/admin.$/components/override.tsx b/...tes/_auth.admin.$/components/datagrid.tsx → app/routes/admin.$/components/override.tsx
@@ -1,6 +1,9 @@
 import type { ComponentProps } from "react";
-import { BulkDeleteButton, Datagrid as RaDatagrid } from "react-admin";
-
+import {
+	BulkDeleteButton,
+	Datagrid as RaDatagrid,
+	Edit as RaEdit,
+} from "react-admin";
 
 export const Datagrid = (props: ComponentProps<typeof RaDatagrid>) => {
 	return (
@@ -10,3 +13,7 @@ export const Datagrid = (props: ComponentProps<typeof RaDatagrid>) => {
 		/>
 	);
 };
+
+export const Edit = (props: ComponentProps<typeof RaEdit>) => {
+	return <RaEdit mutationMode="pessimistic" {...props} />;
+};
diff --git a/app/routes/admin.$/resources/users.tsx b/app/routes/admin.$/resources/users.tsx
@@ -0,0 +1,42 @@
+import {
+	DateField,
+	List,
+	Resource,
+	TextField,
+	DateInput,
+	SimpleForm,
+	TextInput,
+	BooleanInput,
+	BooleanField,
+} from "react-admin";
+import { Datagrid, Edit } from "../components/override";
+
+const UsersList = () => (
+	<List>
+		<Datagrid rowClick="edit">
+			<TextField source="id" />
+			<TextField source="discordId" />
+			<TextField source="displayName" />
+			<BooleanField source="isAdmin" />
+			<DateField source="createdAt" />
+			<DateField source="updatedAt" />
+		</Datagrid>
+	</List>
+);
+
+const UsersEdit = () => (
+	<Edit>
+		<SimpleForm>
+			<TextInput source="id" readOnly />
+			<TextInput source="discordId" />
+			<TextInput source="displayName" />
+			<BooleanInput source="isAdmin" />
+			<DateInput source="createdAt" readOnly />
+			<DateInput source="updatedAt" readOnly />
+		</SimpleForm>
+	</Edit>
+);
+
+export const usersResource = (
+	<Resource name="users" list={UsersList} edit={UsersEdit} />
+);
diff --git a/app/routes/admin.$/route.tsx b/app/routes/admin.$/route.tsx
@@ -0,0 +1,24 @@
+import "./styles.css";
+
+import { dataProvider } from "ra-data-simple-prisma";
+import { Admin } from "react-admin";
+import { assertAdminSession } from "../../lib/session.server";
+import { type LoaderFunctionArgs } from "@remix-run/cloudflare";
+import { usersResource } from "./resources/users";
+
+export const loader = async ({ request, context }: LoaderFunctionArgs) => {
+	await assertAdminSession(request, context);
+	return new Response();
+};
+
+export default () => {
+	return (
+		<Admin
+			disableTelemetry
+			basename="/admin"
+			dataProvider={dataProvider("/admin/api")}
+		>
+			{usersResource}
+		</Admin>
+	);
+};
diff --git a/app/routes/_auth.admin.$/styles.css → app/routes/admin.$/styles.css b/app/routes/_auth.admin.$/styles.css → app/routes/admin.$/styles.css
diff --git a/app/routes/admin.api.$.tsx b/app/routes/admin.api.$.tsx
@@ -0,0 +1,68 @@
+import {
+	type ActionFunctionArgs,
+	type LoaderFunctionArgs,
+	json,
+} from "@remix-run/cloudflare";
+import { type RaPayload, defaultHandler } from "ra-data-simple-prisma";
+import { z } from "zod";
+import { assertAdminSession } from "../lib/session.server";
+import { P, match } from "ts-pattern";
+
+const getMethods = [
+	"getList",
+	"getOne",
+	"getMany",
+	"getManyReference",
+] as const;
+const createMethods = ["create"] as const;
+const updateMethods = ["update", "updateMany"] as const;
+const deleteMethods = ["delete", "deleteMany"] as const;
+
+const handlerSchema = z.object({
+	resource: z.string(),
+	method: z.enum([
+		...getMethods,
+		...createMethods,
+		...updateMethods,
+		...deleteMethods,
+	]),
+	params: z.any(),
+	model: z.string().optional(),
+});
+
+const handler = async ({
+	request,
+	context,
+}: LoaderFunctionArgs | ActionFunctionArgs) => {
+	const [user, payload] = await Promise.all([
+		assertAdminSession(request, context),
+		request.json(),
+	]);
+
+	const parseResult = handlerSchema.safeParse(payload);
+	if (!parseResult.success) {
+		throw new Response(parseResult.error.message, { status: 400 });
+	}
+
+	const data = parseResult.data;
+
+	match({ data, user }).with(
+		{
+			data: { resource: "users", method: P.not(P.union(...getMethods)) },
+			user: { isSuperAdmin: P.not(true) },
+		},
+		() => {
+			throw new Response("unauthorized", { status: 401 });
+		},
+	);
+
+	const result = await defaultHandler(
+		parseResult.data as RaPayload,
+		context.prisma,
+	);
+	return json(result);
+};
+
+export const loader = handler;
+
+export const action = handler;
diff --git a/eslint.config.js b/eslint.config.js
@@ -29,6 +29,7 @@ export default tseslint.config(
 	{
 		rules: {
 			"@typescript-eslint/only-throw-error": "off",
+			"@typescript-eslint/no-unused-vars": "off",
 		},
 	},
 );
diff --git a/migrations/0002_create-user-roles.sql b/migrations/0002_create-user-roles.sql
@@ -0,0 +1,12 @@
+-- CreateTable
+CREATE TABLE "UserRoles" (
+    "id" TEXT NOT NULL PRIMARY KEY,
+    "userId" TEXT NOT NULL,
+    "isAdmin" BOOLEAN NOT NULL DEFAULT false,
+    "createdAt" DATETIME NOT NULL DEFAULT CURRENT_TIMESTAMP,
+    "updatedAt" DATETIME NOT NULL,
+    CONSTRAINT "UserRoles_userId_fkey" FOREIGN KEY ("userId") REFERENCES "Users" ("id") ON DELETE RESTRICT ON UPDATE CASCADE
+);
+
+-- CreateIndex
+CREATE UNIQUE INDEX "UserRoles_userId_key" ON "UserRoles"("userId");
diff --git a/migrations/0003_move-role-columns.sql b/migrations/0003_move-role-columns.sql
@@ -0,0 +1,25 @@
+-- DropIndex
+DROP INDEX "UserRoles_userId_key";
+
+-- DropTable
+PRAGMA foreign_keys=off;
+DROP TABLE "UserRoles";
+PRAGMA foreign_keys=on;
+
+-- RedefineTables
+PRAGMA defer_foreign_keys=ON;
+PRAGMA foreign_keys=OFF;
+CREATE TABLE "new_Users" (
+    "id" TEXT NOT NULL PRIMARY KEY,
+    "discordId" TEXT NOT NULL,
+    "displayName" TEXT NOT NULL,
+    "isAdmin" BOOLEAN NOT NULL DEFAULT false,
+    "createdAt" DATETIME NOT NULL DEFAULT CURRENT_TIMESTAMP,
+    "updatedAt" DATETIME NOT NULL
+);
+INSERT INTO "new_Users" ("createdAt", "discordId", "displayName", "id", "updatedAt") SELECT "createdAt", "discordId", "displayName", "id", "updatedAt" FROM "Users";
+DROP TABLE "Users";
+ALTER TABLE "new_Users" RENAME TO "Users";
+CREATE UNIQUE INDEX "Users_discordId_key" ON "Users"("discordId");
+PRAGMA foreign_keys=ON;
+PRAGMA defer_foreign_keys=OFF;
diff --git a/package.json b/package.json
@@ -28,6 +28,7 @@
 		"react-dom": "^18.3.1",
 		"remix-auth": "^3.7.0",
 		"remix-auth-discord": "^1.3.3",
+		"ts-pattern": "^5.1.2",
 		"zod": "^3.23.8"
 	},
 	"devDependencies": {

diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
diff --git a/prisma/schema.prisma b/prisma/schema.prisma
@@ -15,6 +15,7 @@ model Users {
   id          String   @id @default(uuid())
   discordId   String   @unique
   displayName String
+  isAdmin     Boolean  @default(false)
   createdAt   DateTime @default(now())
   updatedAt   DateTime @updatedAt
 }