Assist_Design/apps/bff/src/modules/auth/auth-admin.controller.ts

import {
  Controller,
  Get,
  Post,
  Param,
  UseGuards,
  Query,
  BadRequestException,
} from "@nestjs/common";
import { ApiTags, ApiOperation, ApiResponse, ApiBearerAuth } from "@nestjs/swagger";
import { AdminGuard } from "./guards/admin.guard";
import { AuditService, AuditAction } from "@bff/infra/audit/audit.service";
import { UsersService } from "@bff/modules/users/users.service";

@ApiTags("auth-admin")
@ApiBearerAuth()
@UseGuards(AdminGuard)
@Controller("auth/admin")
export class AuthAdminController {
  constructor(
    private auditService: AuditService,
    private usersService: UsersService
  ) {}

  @Get("audit-logs")
  @ApiOperation({ summary: "Get audit logs (admin only)" })
  @ApiResponse({ status: 200, description: "Audit logs retrieved" })
  async getAuditLogs(
    @Query("page") page: string = "1",
    @Query("limit") limit: string = "50",
    @Query("action") action?: AuditAction,
    @Query("userId") userId?: string
  ) {
    const pageNum = parseInt(page, 10);
    const limitNum = parseInt(limit, 10);
    if (Number.isNaN(pageNum) || Number.isNaN(limitNum) || pageNum < 1 || limitNum < 1) {
      throw new BadRequestException("Invalid pagination parameters");
    }

    const { logs, total } = await this.auditService.getAuditLogs({
      page: pageNum,
      limit: limitNum,
      action,
      userId,
    });

    return {
      logs,
      pagination: {
        page: pageNum,
        limit: limitNum,
        total,
        totalPages: Math.ceil(total / limitNum),
      },
    };
  }

  @Post("unlock-account/:userId")
  @ApiOperation({ summary: "Unlock user account (admin only)" })
  @ApiResponse({ status: 200, description: "Account unlocked" })
  async unlockAccount(@Param("userId") userId: string) {
    const user = await this.usersService.findById(userId);
    if (!user) {
      throw new BadRequestException("User not found");
    }

    await this.usersService.update(userId, {
      failedLoginAttempts: 0,
      lockedUntil: null,
    });

    await this.auditService.log({
      userId,
      action: AuditAction.ACCOUNT_UNLOCKED,
      resource: "auth",
      details: { adminAction: true, email: user.email },
      success: true,
    });

    return { message: "Account unlocked successfully" };
  }

  @Get("security-stats")
  @ApiOperation({ summary: "Get security statistics (admin only)" })
  @ApiResponse({ status: 200, description: "Security stats retrieved" })
  async getSecurityStats() {
    return this.auditService.getSecurityStats();
  }
}
structure changes 2025-08-21 15:24:40 +09:00			`import {`
			`Controller,`
			`Get,`
			`Post,`
			`Param,`
			`UseGuards,`
			`Query,`
clean up 2025-08-22 17:02:49 +09:00			`BadRequestException,`
structure changes 2025-08-21 15:24:40 +09:00			`} from "@nestjs/common";`
clean up 2025-08-22 17:02:49 +09:00			`import { ApiTags, ApiOperation, ApiResponse, ApiBearerAuth } from "@nestjs/swagger";`
structure changes 2025-08-21 15:24:40 +09:00			`import { AdminGuard } from "./guards/admin.guard";`
Refactor address management and update related services for improved clarity and functionality - Updated address retrieval in user service to replace billing info with a dedicated address method. - Adjusted API endpoints to use `PATCH /api/me/address` for address updates instead of billing updates. - Enhanced documentation to reflect changes in address management processes and API usage. - Removed deprecated types and services related to billing address handling, streamlining the codebase. 2025-09-17 18:43:43 +09:00			`import { AuditService, AuditAction } from "@bff/infra/audit/audit.service";`
			`import { UsersService } from "@bff/modules/users/users.service";`
Initial Customer Portal setup - production ready 2025-08-20 18:02:50 +09:00
structure changes 2025-08-21 15:24:40 +09:00			`@ApiTags("auth-admin")`
Initial Customer Portal setup - production ready 2025-08-20 18:02:50 +09:00			`@ApiBearerAuth()`
catalog page consistency fix 2025-08-28 16:57:57 +09:00			`@UseGuards(AdminGuard)`
structure changes 2025-08-21 15:24:40 +09:00			`@Controller("auth/admin")`
Initial Customer Portal setup - production ready 2025-08-20 18:02:50 +09:00			`export class AuthAdminController {`
			`constructor(`
			`private auditService: AuditService,`
clean up 2025-08-22 17:02:49 +09:00			`private usersService: UsersService`
Initial Customer Portal setup - production ready 2025-08-20 18:02:50 +09:00			`) {}`

structure changes 2025-08-21 15:24:40 +09:00			`@Get("audit-logs")`
			`@ApiOperation({ summary: "Get audit logs (admin only)" })`
			`@ApiResponse({ status: 200, description: "Audit logs retrieved" })`
Initial Customer Portal setup - production ready 2025-08-20 18:02:50 +09:00			`async getAuditLogs(`
structure changes 2025-08-21 15:24:40 +09:00			`@Query("page") page: string = "1",`
			`@Query("limit") limit: string = "50",`
			`@Query("action") action?: AuditAction,`
clean up 2025-08-22 17:02:49 +09:00			`@Query("userId") userId?: string`
Initial Customer Portal setup - production ready 2025-08-20 18:02:50 +09:00			`) {`
			`const pageNum = parseInt(page, 10);`
			`const limitNum = parseInt(limit, 10);`
clean up 2025-08-22 17:02:49 +09:00			`if (Number.isNaN(pageNum) \|\| Number.isNaN(limitNum) \|\| pageNum < 1 \|\| limitNum < 1) {`
			`throw new BadRequestException("Invalid pagination parameters");`
			`}`

Refactor AuditService and AuthAdminController to streamline audit log retrieval and security statistics. Introduce new methods in AuditService for fetching audit logs and security stats, and update AuthAdminController to utilize these methods. Remove redundant code and improve error handling in InvoicesService. Clean up unused DTOs and API routes in the portal. Enhance query keys for better organization in billing and catalog features. 2025-09-18 17:49:43 +09:00			`const { logs, total } = await this.auditService.getAuditLogs({`
			`page: pageNum,`
			`limit: limitNum,`
			`action,`
			`userId,`
			`});`
Initial Customer Portal setup - production ready 2025-08-20 18:02:50 +09:00
			`return {`
			`logs,`
			`pagination: {`
			`page: pageNum,`
			`limit: limitNum,`
			`total,`
			`totalPages: Math.ceil(total / limitNum),`
			`},`
			`};`
			`}`

structure changes 2025-08-21 15:24:40 +09:00			`@Post("unlock-account/:userId")`
			`@ApiOperation({ summary: "Unlock user account (admin only)" })`
			`@ApiResponse({ status: 200, description: "Account unlocked" })`
			`async unlockAccount(@Param("userId") userId: string) {`
Initial Customer Portal setup - production ready 2025-08-20 18:02:50 +09:00			`const user = await this.usersService.findById(userId);`
			`if (!user) {`
clean up 2025-08-22 17:02:49 +09:00			`throw new BadRequestException("User not found");`
Initial Customer Portal setup - production ready 2025-08-20 18:02:50 +09:00			`}`

			`await this.usersService.update(userId, {`
			`failedLoginAttempts: 0,`
			`lockedUntil: null,`
			`});`

			`await this.auditService.log({`
			`userId,`
			`action: AuditAction.ACCOUNT_UNLOCKED,`
structure changes 2025-08-21 15:24:40 +09:00			`resource: "auth",`
Initial Customer Portal setup - production ready 2025-08-20 18:02:50 +09:00			`details: { adminAction: true, email: user.email },`
			`success: true,`
			`});`

structure changes 2025-08-21 15:24:40 +09:00			`return { message: "Account unlocked successfully" };`
Initial Customer Portal setup - production ready 2025-08-20 18:02:50 +09:00			`}`

structure changes 2025-08-21 15:24:40 +09:00			`@Get("security-stats")`
			`@ApiOperation({ summary: "Get security statistics (admin only)" })`
			`@ApiResponse({ status: 200, description: "Security stats retrieved" })`
Initial Customer Portal setup - production ready 2025-08-20 18:02:50 +09:00			`async getSecurityStats() {`
Refactor AuditService and AuthAdminController to streamline audit log retrieval and security statistics. Introduce new methods in AuditService for fetching audit logs and security stats, and update AuthAdminController to utilize these methods. Remove redundant code and improve error handling in InvoicesService. Clean up unused DTOs and API routes in the portal. Enhance query keys for better organization in billing and catalog features. 2025-09-18 17:49:43 +09:00			`return this.auditService.getSecurityStats();`
Initial Customer Portal setup - production ready 2025-08-20 18:02:50 +09:00			`}`
			`}`