Gerhard Scheikl
fb4880a1d9
Adds an authenticated admin surface gated by auth.users.app_metadata.role==='admin'. - lib/auth/admin-guard.ts: requireAdmin() (pages) + requireAdminApi() (routes) - middleware.ts: defense-in-depth /admin and /api/admin guarding - API: users (list/detail/role/ban/delete), tunnels (list + active/quota/reset/reassign/regenerate-token/delete), metrics, audit log, reserved subdomains - Self-lockout prevention (no self demote/ban/delete) - Best-effort Redis kill-switch via dependency-free net-socket client (REDIS_URL) - admin_audit_log + reserved_subdomains migration (RLS on, service-role only) - Admin UI (overview, users, tunnels, reserved, audit) + conditional nav link
24 lines
302 B
Plaintext
24 lines
302 B
Plaintext
.idea/
|
|
.vscode/
|
|
node_modules/
|
|
build/
|
|
.DS_Store
|
|
*.tgz
|
|
my-app*
|
|
template/src/__tests__/__snapshots__/
|
|
lerna-debug.log
|
|
npm-debug.log*
|
|
yarn-debug.log*
|
|
yarn-error.log*
|
|
/.changelog
|
|
.npm/
|
|
|
|
# Dev environment secrets (never commit)
|
|
.env.production
|
|
|
|
# Next.js build output
|
|
.next/
|
|
out/
|
|
*.tsbuildinfo
|
|
next-env.d.ts
|