dragonflight/services/mam-api/src/index.js

import 'dotenv/config';
import express from 'express';
import cors    from 'cors';
import session from 'express-session';
import ConnectPgSimple from 'connect-pg-simple';
import pool    from './db/pool.js';
import { errorHandler } from './middleware/errors.js';
import { requireAuth }  from './middleware/auth.js';

// Routes
import authRouter      from './routes/auth.js';
import assetsRouter    from './routes/assets.js';
import projectsRouter  from './routes/projects.js';
import binsRouter      from './routes/bins.js';
import jobsRouter      from './routes/jobs.js';
import captureRouter   from './routes/capture.js';
import uploadRouter    from './routes/upload.js';
import recordersRouter from './routes/recorders.js';
import settingsRouter  from './routes/settings.js';
import amppRouter      from './routes/ampp.js';
import usersRouter     from './routes/users.js';
import groupsRouter    from './routes/groups.js';
import tokensRouter    from './routes/tokens.js';

const app  = express();
const PORT = process.env.PORT || 3000;

// ── Middleware ─────────────────────────────────────────────────────────────────
app.use(cors({ origin: true, credentials: true }));
app.use(express.json({ limit: '50mb' }));

const PgSession = ConnectPgSimple(session);
app.use(session({
  store: new PgSession({
    pool,
    tableName:           'sessions',
    pruneSessionInterval: 3600,
  }),
  secret:            process.env.SESSION_SECRET || 'change-me-in-production',
  resave:            false,
  saveUninitialized: false,
  cookie: {
    secure:   process.env.NODE_ENV === 'production',
    httpOnly: true,
    maxAge:   1000 * 60 * 60 * 24, // 24 h
  },
}));

// ── Health (no auth) ──────────────────────────────────────────────────────────
app.get('/health', (_req, res) => res.json({ status: 'ok' }));

// ── Auth routes (always open) ─────────────────────────────────────────────────
app.use('/api/v1/auth', authRouter);

// ── Protected routes (requireAuth is a no-op unless AUTH_ENABLED=true) ────────
app.use('/api/v1/assets',    requireAuth, assetsRouter);
app.use('/api/v1/projects',  requireAuth, projectsRouter);
app.use('/api/v1/bins',      requireAuth, binsRouter);
app.use('/api/v1/jobs',      requireAuth, jobsRouter);
app.use('/api/v1/capture',   requireAuth, captureRouter);
app.use('/api/v1/upload',    requireAuth, uploadRouter);
app.use('/api/v1/recorders', requireAuth, recordersRouter);
app.use('/api/v1/settings',  requireAuth, settingsRouter);
app.use('/api/v1/ampp',      requireAuth, amppRouter);

// ── Admin routes (requireAuth + requireAdmin applied inside each router) ───────
app.use('/api/v1/users',  usersRouter);
app.use('/api/v1/groups', groupsRouter);

// ── Personal token management ─────────────────────────────────────────────────
app.use('/api/v1/tokens', requireAuth, tokensRouter);

// ── Error handler ─────────────────────────────────────────────────────────────
app.use(errorHandler);

// ── Start ─────────────────────────────────────────────────────────────────────
app.listen(PORT, () => {
  const authMode = process.env.AUTH_ENABLED === 'true'
    ? 'ENABLED'
    : 'DISABLED (set AUTH_ENABLED=true to require login)';
  console.log(`MAM API listening on port ${PORT}`);
  console.log(`Authentication: ${authMode}`);
});
add services/mam-api/src/index.js 2026-04-07 21:58:25 -04:00			`import 'dotenv/config';`
			`import express from 'express';`
feat(mam-api): wire users, groups, and tokens routes into main app 2026-05-18 12:51:14 -04:00			`import cors from 'cors';`
add services/mam-api/src/index.js 2026-04-07 21:58:25 -04:00			`import session from 'express-session';`
			`import ConnectPgSimple from 'connect-pg-simple';`
feat(mam-api): wire users, groups, and tokens routes into main app 2026-05-18 12:51:14 -04:00			`import pool from './db/pool.js';`
add services/mam-api/src/index.js 2026-04-07 21:58:25 -04:00			`import { errorHandler } from './middleware/errors.js';`
feat(mam-api): wire users, groups, and tokens routes into main app 2026-05-18 12:51:14 -04:00			`import { requireAuth } from './middleware/auth.js';`
add services/mam-api/src/index.js 2026-04-07 21:58:25 -04:00
fix(auth+bugs): optional auth bypass, login routes, conform column name, panel metadata fields, login page: index.js 2026-05-15 23:40:12 -04:00			`// Routes`
feat(mam-api): wire users, groups, and tokens routes into main app 2026-05-18 12:51:14 -04:00			`import authRouter from './routes/auth.js';`
			`import assetsRouter from './routes/assets.js';`
			`import projectsRouter from './routes/projects.js';`
			`import binsRouter from './routes/bins.js';`
			`import jobsRouter from './routes/jobs.js';`
			`import captureRouter from './routes/capture.js';`
			`import uploadRouter from './routes/upload.js';`
Phase 2: services/mam-api/src/index.js 2026-04-07 22:05:39 -04:00			`import recordersRouter from './routes/recorders.js';`
feat(mam-api): wire users, groups, and tokens routes into main app 2026-05-18 12:51:14 -04:00			`import settingsRouter from './routes/settings.js';`
			`import amppRouter from './routes/ampp.js';`
			`import usersRouter from './routes/users.js';`
			`import groupsRouter from './routes/groups.js';`
			`import tokensRouter from './routes/tokens.js';`
add services/mam-api/src/index.js 2026-04-07 21:58:25 -04:00
fix(auth+bugs): optional auth bypass, login routes, conform column name, panel metadata fields, login page: index.js 2026-05-15 23:40:12 -04:00			`const app = express();`
add services/mam-api/src/index.js 2026-04-07 21:58:25 -04:00			`const PORT = process.env.PORT \|\| 3000;`

feat(mam-api): wire users, groups, and tokens routes into main app 2026-05-18 12:51:14 -04:00			`// ── Middleware ─────────────────────────────────────────────────────────────────`
fix(auth+bugs): optional auth bypass, login routes, conform column name, panel metadata fields, login page: index.js 2026-05-15 23:40:12 -04:00			`app.use(cors({ origin: true, credentials: true }));`
Phase 2: services/mam-api/src/index.js 2026-04-07 22:05:39 -04:00			`app.use(express.json({ limit: '50mb' }));`
add services/mam-api/src/index.js 2026-04-07 21:58:25 -04:00
			`const PgSession = ConnectPgSimple(session);`
feat(mam-api): wire users, groups, and tokens routes into main app 2026-05-18 12:51:14 -04:00			`app.use(session({`
			`store: new PgSession({`
			`pool,`
			`tableName: 'sessions',`
			`pruneSessionInterval: 3600,`
			`}),`
			`secret: process.env.SESSION_SECRET \|\| 'change-me-in-production',`
			`resave: false,`
			`saveUninitialized: false,`
			`cookie: {`
			`secure: process.env.NODE_ENV === 'production',`
			`httpOnly: true,`
			`maxAge: 1000 * 60 * 60 * 24, // 24 h`
			`},`
			`}));`
add services/mam-api/src/index.js 2026-04-07 21:58:25 -04:00
fix(auth+bugs): optional auth bypass, login routes, conform column name, panel metadata fields, login page: index.js 2026-05-15 23:40:12 -04:00			`// ── Health (no auth) ──────────────────────────────────────────────────────────`
			`app.get('/health', (_req, res) => res.json({ status: 'ok' }));`

feat(mam-api): wire users, groups, and tokens routes into main app 2026-05-18 12:51:14 -04:00			`// ── Auth routes (always open) ─────────────────────────────────────────────────`
			`app.use('/api/v1/auth', authRouter);`

			`// ── Protected routes (requireAuth is a no-op unless AUTH_ENABLED=true) ────────`
			`app.use('/api/v1/assets', requireAuth, assetsRouter);`
			`app.use('/api/v1/projects', requireAuth, projectsRouter);`
			`app.use('/api/v1/bins', requireAuth, binsRouter);`
			`app.use('/api/v1/jobs', requireAuth, jobsRouter);`
			`app.use('/api/v1/capture', requireAuth, captureRouter);`
			`app.use('/api/v1/upload', requireAuth, uploadRouter);`
			`app.use('/api/v1/recorders', requireAuth, recordersRouter);`
			`app.use('/api/v1/settings', requireAuth, settingsRouter);`
			`app.use('/api/v1/ampp', requireAuth, amppRouter);`

			`// ── Admin routes (requireAuth + requireAdmin applied inside each router) ───────`
			`app.use('/api/v1/users', usersRouter);`
			`app.use('/api/v1/groups', groupsRouter);`
add services/mam-api/src/index.js 2026-04-07 21:58:25 -04:00
feat(mam-api): wire users, groups, and tokens routes into main app 2026-05-18 12:51:14 -04:00			`// ── Personal token management ─────────────────────────────────────────────────`
			`app.use('/api/v1/tokens', requireAuth, tokensRouter);`
add services/mam-api/src/index.js 2026-04-07 21:58:25 -04:00
fix(auth+bugs): optional auth bypass, login routes, conform column name, panel metadata fields, login page: index.js 2026-05-15 23:40:12 -04:00			`// ── Error handler ─────────────────────────────────────────────────────────────`
add services/mam-api/src/index.js 2026-04-07 21:58:25 -04:00			`app.use(errorHandler);`

feat(mam-api): wire users, groups, and tokens routes into main app 2026-05-18 12:51:14 -04:00			`// ── Start ─────────────────────────────────────────────────────────────────────`
add services/mam-api/src/index.js 2026-04-07 21:58:25 -04:00			`app.listen(PORT, () => {`
feat(mam-api): wire users, groups, and tokens routes into main app 2026-05-18 12:51:14 -04:00			`const authMode = process.env.AUTH_ENABLED === 'true'`
			`? 'ENABLED'`
			`: 'DISABLED (set AUTH_ENABLED=true to require login)';`
add services/mam-api/src/index.js 2026-04-07 21:58:25 -04:00			console.log(`MAM API listening on port ${PORT}`);
fix(auth+bugs): optional auth bypass, login routes, conform column name, panel metadata fields, login page: index.js 2026-05-15 23:40:12 -04:00			console.log(`Authentication: ${authMode}`);
add services/mam-api/src/index.js 2026-04-07 21:58:25 -04:00			`});`