Backend user

.gitignore

@@ -2,6 +2,7 @@
 
 # dependencies
 /node_modules
+.env
 /.pnp
 .pnp.*
 .yarn/*

package.json

@@ -8,16 +8,17 @@
     "start": "next start"
   },
   "dependencies": {
+    "argon2": "^0.44.0",
+    "next": "16.0.1",
     "react": "19.2.0",
-    "react-dom": "19.2.0",
-    "next": "16.0.1"
+    "react-dom": "19.2.0"
   },
   "devDependencies": {
-    "typescript": "^5",
+    "@tailwindcss/postcss": "^4",
     "@types/node": "^20",
     "@types/react": "^19",
     "@types/react-dom": "^19",
-    "@tailwindcss/postcss": "^4",
-    "tailwindcss": "^4"
+    "tailwindcss": "^4",
+    "typescript": "^5"
   }
 }

src/pages/_app.tsx

@@ -0,0 +1,6 @@
+import "@/styles/globals.css";
+import type { AppProps } from "next/app";
+
+export default function App({ Component, pageProps }: AppProps) {
+  return <Component {...pageProps} />;
+}

src/pages/_document.tsx

@@ -0,0 +1,16 @@
+import { Html, Head, Main, NextScript } from "next/document";
+
+export default function Document() {
+  return (
+    <Html
+      lang="en"
+      className={`h-full antialiased`}
+    >
+      <Head />
+      <body className="min-h-full flex flex-col">
+        <Main />
+        <NextScript />
+      </body>
+    </Html>
+  );
+}

src/pages/api/admin/animals.js

@@ -0,0 +1,14 @@
+import { getAllAnimals } from "../../../../webapp/server/mongodb/actions/animalActions.js";
+
+export default async function handler(req, res) {
+  if (req.method === "GET") {
+    try {
+      const animals = await getAllAnimals();
+      return res.status(200).json(animals);
+    } catch (err) {
+      return res.status(500).json({ error: err.message });
+    }
+  }
+
+  return res.status(405).json({ error: "Method not allowed" });
+}

src/pages/api/admin/users.ts

@@ -0,0 +1,25 @@
+// allows you to get all user information, given that you are an admin 
+
+import { NextApiRequest, NextApiResponse } from 'next';
+import connectDB from '../../../../webapp/server/mongodb';
+import User from '../../../../webapp/server/mongodb/models/user';
+
+// we need the id to be passed in of the person requesting this info
+export default async function handler(req: NextApiRequest, res: NextApiResponse) {
+    try {
+        if (req.method !== 'GET') {
+            throw new Error('Invalid HTTP method');
+        }
+        await connectDB();
+        const requesterId = req.headers['user-id'];
+        const requester = await User.findById(requesterId);
+
+        if (!requester || !requester.admin) {
+            return res.status(500).json({ error: "Unauthorized"});
+        }
+        const users = await User.find().select('-password');
+        return res.status(200).json(users);
+    } catch (error) {
+        return res.status(500).json({ error: 'There was an error' });
+    }
+}

src/pages/api/animal.js

@@ -0,0 +1,25 @@
+import { createAnimal, updateAnimal } from "../../../server/mongodb/actions/animalActions.js";
+
+export default async function handler(req, res) {
+  if (req.method === "POST") {
+    try {
+      const animal = await createAnimal(req.body);
+      return res.status(201).json(animal);
+    } catch (err) {
+      return res.status(400).json({ error: err.message });
+    }
+  }
+
+  if (req.method === "PATCH") {
+    try {
+      const { id, ...data } = req.body;
+      const animal = await updateAnimal(id, data);
+      if (!animal) return res.status(404).json({ error: "Animal not found" });
+      return res.status(200).json(animal);
+    } catch (err) {
+      return res.status(400).json({ error: err.message });
+    }
+  }
+
+  return res.status(405).json({ error: "Method not allowed" });
+}