vantzs/corrosion-admin-panel
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 18 Wiki Activity
Files
a8722a7a075f2c8e8eddf2fa8a2b44aaa3eac663
corrosion-admin-panel/backend-nest/src/modules/notifications/notifications.controller.ts
Vantz Stockwell e1a3ea3b78
All checks were successful
Test Asgard Runner / test (push) Successful in 2s
Details
feat: Wave 2 — entities, security guards, API key encryption (15 files) 
Entities:
- Create 5 new TypeORM entities: webstore_config, webstore_categories,
  webstore_items, webstore_transactions, module_store (all verified against live DB)
- Fix wipe-profile entity: remove incorrect default {} for pre/post wipe configs

Security:
- Add @RequirePermission guards to 7 controllers (36 endpoints total):
  team, webstore, notifications, alerts, analytics, settings, schedules
- Encrypt panel API key with AES-256-GCM in setup service (was plaintext)

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-21 13:28:48 -05:00

54 lines
1.7 KiB
TypeScript
Raw Blame History

import { Controller, Get, Put, Body, UseGuards } from '@nestjs/common';
import {
ApiTags,
ApiBearerAuth,
ApiOperation,
ApiResponse,
} from '@nestjs/swagger';
import { JwtAuthGuard } from '../../common/guards/jwt-auth.guard';
import { CurrentTenant } from '../../common/decorators/current-tenant.decorator';
import { RequirePermission } from '../../common/decorators/require-permission.decorator';
import { NotificationsService } from './notifications.service';
import { UpdateConfigDto } from './dto/update-config.dto';
@ApiTags('notifications')
@ApiBearerAuth()
@UseGuards(JwtAuthGuard)
@Controller('notifications')
export class NotificationsController {
constructor(private readonly notificationsService: NotificationsService) {}
@Get('config')
@RequirePermission('notifications.view')
@ApiOperation({
summary: 'Get notification configuration',
description: 'Returns notification settings for this license',
})
@ApiResponse({
status: 200,
description: 'Notification config retrieved successfully',
})
async getConfig(@CurrentTenant() licenseId: string) {
const config = await this.notificationsService.getConfig(licenseId);
return { config };
}
@Put('config')
@RequirePermission('notifications.manage')
@ApiOperation({
summary: 'Update notification configuration',
description: 'Update notification settings for this license',
})
@ApiResponse({
status: 200,
description: 'Notification config updated successfully',
})
async updateConfig(
@CurrentTenant() licenseId: string,
@Body() dto: UpdateConfigDto,
) {
const config = await this.notificationsService.updateConfig(licenseId, dto);
return { config };
}
}
Reference in New Issue View Git Blame Copy Permalink