till/managarten
1
0
Fork 0
mirror of https://github.com/Memo-2023/mana-monorepo.git synced 2026-05-18 00:49:40 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 5
managarten/packages/shared-hono/src/admin.ts
Till JS 32939fbfb5 refactor(infra): remove zitare + clock NestJS backends, add shared-hono package 
Both apps are fully local-first via Dexie.js + mana-sync. Their NestJS
backends were pure CRUD wrappers (20 + 31 source files) that are no
longer needed.

Changes:
- Add packages/shared-hono: JWT auth via JWKS (jose), Drizzle DB factory,
  health route, generic GDPR admin handler, error middleware
- Migrate zitare lists page from fetch() to listsStore (local-first)
- Rewrite clock timers store from API-based to timerCollection (Dexie)
- Update clock +layout.svelte CommandBar search to use local collections
- Remove zitare-backend + clock-backend from docker-compose, CI/CD,
  Prometheus, env generation, setup scripts
- Add docs/TECHNOLOGY_AUDIT_2026_03.md with full repo analysis

Net result: -2 Docker containers, -2 ports, -2728 lines of code

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-27 22:43:46 +01:00

74 lines
2.2 KiB
TypeScript
Raw Blame History

/**
* Generic GDPR admin routes for Hono servers.
*
* Provides user-data count and deletion endpoints called by
* mana-core-auth for GDPR compliance (right to be forgotten).
*
* Each app defines which tables contain user data; this module
* handles the routing and service-key authentication.
*/
import { Hono } from 'hono';
import { eq, sql } from 'drizzle-orm';
import type { PgTable } from 'drizzle-orm/pg-core';
import { serviceAuthMiddleware } from './auth';
interface UserTable {
/** Drizzle table reference */
table: PgTable;
/** Name shown in the response (e.g. "tasks", "favorites") */
name: string;
/** The user_id column on this table */
userIdColumn: ReturnType<typeof sql>;
}
/**
* Create admin routes for GDPR compliance.
*
* Usage:
* ```ts
* import { adminRoutes } from '@manacore/shared-hono/admin';
* import { tasks, projects, reminders } from './db';
*
* app.route('/api/v1/admin', adminRoutes(db, [
* { table: tasks, name: 'tasks', userIdColumn: tasks.userId },
* { table: projects, name: 'projects', userIdColumn: projects.userId },
* { table: reminders, name: 'reminders', userIdColumn: reminders.userId },
* ]));
* ```
*/
export function adminRoutes(db: any, tables: UserTable[]): Hono {
const route = new Hono();
route.use('/*', serviceAuthMiddleware());
/** Get user data counts across all tables. */
route.get('/user-data/:userId', async (c) => {
const userId = c.req.param('userId');
const counts: Record<string, number> = {};
for (const { table, name, userIdColumn } of tables) {
const [result] = await db
.select({ count: sql<number>`count(*)` })
.from(table)
.where(eq(userIdColumn, userId));
counts[name] = Number(result?.count ?? 0);
}
return c.json({ userId, counts });
});
/** Delete all user data (GDPR right to be forgotten). */
route.delete('/user-data/:userId', async (c) => {
const userId = c.req.param('userId');
// Delete in reverse order (children before parents if there are FKs)
for (const { table, userIdColumn } of [...tables].reverse()) {
await db.delete(table).where(eq(userIdColumn, userId));
}
return c.json({ userId, deleted: true, message: 'All user data deleted' });
});
return route;
}
Reference in a new issue View git blame Copy permalink