 Server : Apache/2 System : Linux server-15-235-50-60 5.15.0-164-generic #174-Ubuntu SMP Fri Nov 14 20:25:16 UTC 2025 x86_64 User : gositeme ( 1004) PHP Version : 8.2.29 Disable Function : exec,system,passthru,shell_exec,proc_close,proc_open,dl,popen,show_source,posix_kill,posix_mkfifo,posix_getpwuid,posix_setpgid,posix_setsid,posix_setuid,posix_setgid,posix_seteuid,posix_setegid,posix_uname Directory : /home/gositeme/domains/lavocat.ca/private_html/.next/server/pages/api/admin/ |
"use strict";(()=>{var e={};e.id=3082,e.ids=[3082],e.modules={8168:(e,r,i)=>{i.d(r,{v:()=>a});class s{formatMessage(e,r,i){let s=new Date().toISOString(),a=i?JSON.stringify(i,null,2):"";return`[${s}] [${e.toUpperCase()}] ${r}${a?`
Context: ${a}`:""}`}log(e,r,i){let s=this.formatMessage(e,r,i);this.isDevelopment?console.log(`${{debug:"\x1b[36m",info:"\x1b[32m",warn:"\x1b[33m",error:"\x1b[31m",security:"\x1b[35m"}[e]}${s}\x1b[0m`):console.log(s),"security"===e&&console.error(`🔒 SECURITY EVENT: ${s}`)}debug(e,r){this.isDevelopment&&this.log("debug",e,r)}info(e,r){this.log("info",e,r)}warn(e,r){this.log("warn",e,r)}error(e,r,i){let s={...i,error:r instanceof Error?{name:r.name,message:r.message,stack:r.stack}:r};this.log("error",e,s)}security(e,r){this.log("security",e,r)}getRequestContext(e,r){return{ip:e.headers["x-forwarded-for"]||e.connection.remoteAddress||"unknown",userAgent:e.headers["user-agent"]||"unknown",path:e.url||"unknown",method:e.method||"unknown",timestamp:new Date().toISOString(),...r}}authEvent(e,r){this.security(`AUTH_EVENT: ${e}`,{event:e,...r})}adminAction(e,r){this.security(`ADMIN_ACTION: ${e}`,{action:e,...r})}constructor(){this.isDevelopment=!1}}let a=new s},8667:(e,r)=>{Object.defineProperty(r,"A",{enumerable:!0,get:function(){return i}});var i=function(e){return e.PAGES="PAGES",e.PAGES_API="PAGES_API",e.APP_PAGE="APP_PAGE",e.APP_ROUTE="APP_ROUTE",e.IMAGE="IMAGE",e}({})},16382:e=>{e.exports=require("next-auth/providers/credentials")},33480:(e,r,i)=>{e.exports=i(75600)},41133:(e,r,i)=>{i.r(r),i.d(r,{config:()=>A,default:()=>f,routeModule:()=>h});var s={};i.r(s),i.d(s,{default:()=>c});var a=i(33480),t=i(8667),n=i(86435),o=i(65542),l=i(41822),u=i(76760),d=i(8168);async function c(e,r){try{let i=await (0,o.getServerSession)(e,r,l.N);if(!i?.user)return r.status(401).json({error:"Unauthorized"});if(!["ADMIN","SUPERADMIN","LAWYER"].includes(i.user.role))return r.status(403).json({error:"Access denied"});switch(e.method){case"GET":return await m(e,r,i);case"POST":return await g(e,r,i);case"DELETE":return await p(e,r,i);default:return r.status(405).json({error:"Method not allowed"})}}catch(e){d.v.error("Case assignment API error",e),r.status(500).json({error:"Internal server error"})}}async function m(e,r,i){let{caseId:s,userId:a}=e.query;if(s){let e=await u.z.caseAssignment.findMany({where:{caseId:s,isActive:!0},include:{user:{select:{id:!0,name:!0,email:!0,role:!0,title:!0,profilePicture:!0,lawFirm:{select:{name:!0,shortName:!0}}}},legalCase:{select:{id:!0,title:!0,caseNumber:!0,status:!0,priority:!0,jurisdiction:!0,court:!0}}},orderBy:{assignedAt:"desc"}});return r.status(200).json(e)}if(a){let e=await u.z.caseAssignment.findMany({where:{userId:a,isActive:!0},include:{legalCase:{select:{id:!0,title:!0,caseNumber:!0,status:!0,priority:!0,jurisdiction:!0,court:!0,leadLawyer:{select:{id:!0,name:!0,email:!0,title:!0,lawFirm:{select:{name:!0,shortName:!0,address:!0,city:!0,province:!0}}}},_count:{select:{caseAssignments:!0,registrations:!0}}}},user:{select:{id:!0,name:!0,email:!0,role:!0,title:!0,lawFirm:{select:{name:!0,shortName:!0}}}},registration:{select:{id:!0,firstName:!0,lastName:!0,status:!0}}},orderBy:{assignedAt:"desc"}});return r.status(200).json(e)}return r.status(400).json({error:"Either caseId or userId must be provided"})}async function g(e,r,i){if(!["ADMIN","SUPERADMIN"].includes(i.user.role))return r.status(403).json({error:"Cannot assign cases"});let{caseId:s,userId:a,role:t}=e.body;if(!s||!a||!t)return r.status(400).json({error:"Missing required fields"});if(!["lead_lawyer","primary_lawyer","assistant_lawyer","secretary"].includes(t))return r.status(400).json({error:"Invalid role"});if(!await u.z.legalCase.findUnique({where:{id:s}}))return r.status(404).json({error:"Legal case not found"});let n=await u.z.user.findUnique({where:{id:a}});if(!n)return r.status(404).json({error:"User not found"});if(!({lead_lawyer:["LAWYER","ADMIN","SUPERADMIN"],primary_lawyer:["LAWYER","ADMIN","SUPERADMIN"],assistant_lawyer:["LAWYER","CLERK","ADMIN","SUPERADMIN"],secretary:["SECRETARY","ASSISTANT","ADMIN","SUPERADMIN"]})[t].includes(n.role))return r.status(400).json({error:`User role ${n.role} cannot be assigned as ${t}`});let o=await u.z.caseAssignment.findFirst({where:{caseId:s,userId:a,isActive:!0}});if(o)return r.status(400).json({error:`User is already assigned to this case as ${o.role}`});if("lead_lawyer"===t&&await u.z.caseAssignment.findFirst({where:{caseId:s,role:"lead_lawyer",isActive:!0}}))return r.status(400).json({error:"This case already has a lead lawyer assigned"});let l=null,c=await u.z.registration.findFirst({where:{caseId:s}});l=c?c.id:(await u.z.registration.create({data:{firstName:"Team",lastName:"Assignment",email:`case-${s}@placeholder.com`,phone:"000-000-0000",birthDate:new Date("1990-01-01"),gender:"Other",relationship:"N/A",preferredLanguage:"en",preferredContactMethod:"email",status:"approved",caseId:s,address:{create:{street:"N/A",city:"N/A",state:"QC",postalCode:"H0H 0H0",country:"Canada"}}}})).id;let m=await u.z.caseAssignment.create({data:{registrationId:l,caseId:s,userId:a,role:t,assignedAt:new Date,assignedBy:i.user.id,isActive:!0},include:{user:{select:{id:!0,name:!0,email:!0,role:!0,title:!0}},legalCase:{select:{id:!0,title:!0,caseNumber:!0}}}});d.v.info("Case assignment created",{assignmentId:m.id,caseId:s,userId:a,role:t,assignedBy:i.user.id}),r.status(201).json(m)}async function p(e,r,i){if(!["ADMIN","SUPERADMIN"].includes(i.user.role))return r.status(403).json({error:"Cannot remove assignments"});let{assignmentId:s}=e.query;return s?await u.z.caseAssignment.findUnique({where:{id:s}})?void(await u.z.caseAssignment.update({where:{id:s},data:{isActive:!1}}),d.v.info("Case assignment removed",{assignmentId:s,removedBy:i.user.id}),r.status(200).json({message:"Assignment removed"})):r.status(404).json({error:"Assignment not found"}):r.status(400).json({error:"Assignment ID required"})}let f=(0,n.M)(s,"default"),A=(0,n.M)(s,"config"),h=new a.PagesAPIRouteModule({definition:{kind:t.A.PAGES_API,page:"/api/admin/case-assignments",pathname:"/api/admin/case-assignments",bundlePath:"",filename:""},userland:s})},41822:(e,r,i)=>{i.d(r,{N:()=>o});var s=i(16382),a=i.n(s),t=i(74729),n=i(76760);let o={providers:[a()({name:"Credentials",credentials:{email:{label:"Email",type:"email"},password:{label:"Password",type:"password"}},async authorize(e){if(!e?.email||!e?.password)return null;try{let r=await n.z.user.findUnique({where:{email:e.email},select:{id:!0,email:!0,password:!0,role:!0,name:!0,isVerified:!0,verificationStatus:!0}});if(!r||!await (0,t.compare)(e.password,r.password))return null;let{password:i,...s}=r;return{...s,name:s.name||s.email}}catch(e){return console.error("Auth error:",e),null}}})],session:{strategy:"jwt",maxAge:2592e3},cookies:{sessionToken:{name:"__Secure-next-auth.session-token",options:{httpOnly:!0,sameSite:"lax",path:"/",secure:!0,domain:process.env.COOKIE_DOMAIN}}},pages:{signIn:"/auth/login",signOut:"/auth/login",error:"/auth/error"},callbacks:{async jwt({token:e,user:r,trigger:i}){try{if(console.log("JWT Callback - trigger:",i),console.log("JWT Callback - user:",r?{id:r.id,email:r.email,role:r.role}:null),r)e.id=r.id,e.role=r.role,e.email=r.email,e.name=r.name||r.email,e.profilePicture=r.profilePicture||void 0,e.username=r.username||void 0,e.isVerified=r.isVerified||!1,e.verificationStatus=r.verificationStatus||"PENDING",e.isImpersonating=r.isImpersonating||!1,e.originalUser=r.originalUser||void 0,console.log("JWT Callback - Updated token from user:",{id:e.id,role:e.role,isImpersonating:e.isImpersonating});else if(e.id)try{console.log("JWT Callback - Checking for impersonation sessions...");let r=await n.z.impersonationSession.findFirst({where:{originalUserId:e.id,isActive:!0,expiresAt:{gt:new Date}},include:{impersonatedUser:{select:{id:!0,email:!0,name:!0,role:!0,profilePicture:!0,username:!0}},originalUser:{select:{id:!0,email:!0,name:!0,role:!0,profilePicture:!0,username:!0}}}});if(r){let i=r.impersonatedUser;e.id=i.id,e.email=i.email,e.name=i.name||i.email,e.role=i.role,e.profilePicture=i.profilePicture||void 0,e.username=i.username||void 0,e.isImpersonating=!0,e.originalUser={id:r.originalUser.id,email:r.originalUser.email,name:r.originalUser.name||r.originalUser.email,role:r.originalUser.role,profilePicture:r.originalUser.profilePicture||void 0,username:r.originalUser.username||void 0},console.log("JWT Callback - Applied impersonation:",{originalId:e.originalUser.id,impersonatedId:e.id,originalRole:e.originalUser.role,impersonatedRole:e.role})}else e.isImpersonating&&(e.originalUser&&(console.log("JWT Callback - Restoring original user from token"),e.id=e.originalUser.id,e.email=e.originalUser.email,e.name=e.originalUser.name||e.originalUser.email,e.role=e.originalUser.role,e.profilePicture=e.originalUser.profilePicture||void 0,e.username=e.originalUser.username||void 0),e.isImpersonating=!1,e.originalUser=void 0,console.log("JWT Callback - Cleared impersonation state"))}catch(r){console.error("JWT Callback - Database error:",r),e.isImpersonating&&e.originalUser&&(console.log("JWT Callback - Error occurred, restoring original user"),e.id=e.originalUser.id,e.email=e.originalUser.email,e.name=e.originalUser.name||e.originalUser.email,e.role=e.originalUser.role,e.profilePicture=e.originalUser.profilePicture||void 0,e.username=e.originalUser.username||void 0,e.isImpersonating=!1,e.originalUser=void 0)}return console.log("JWT Callback - Final token:",{id:e.id,email:e.email,role:e.role,isImpersonating:e.isImpersonating}),e}catch(r){return console.error("JWT Callback - Error:",r),e}},async session({session:e,token:r}){try{return console.log("Session Callback - token:",{id:r.id,email:r.email,role:r.role,isImpersonating:r.isImpersonating}),console.log("Session Callback - session before:",e),r&&e.user&&(e.user.id=r.id,e.user.role=r.role,e.user.email=r.email,e.user.name=r.name,e.user.profilePicture=r.profilePicture,e.user.username=r.username,e.user.isVerified=r.isVerified,e.user.verificationStatus=r.verificationStatus,e.user.isImpersonating=r.isImpersonating,e.user.originalUser=r.originalUser),console.log("Session Callback - session after:",e),console.log("Session Callback - Final user ID:",e.user?.id),e}catch(r){return console.error("Session Callback - Error:",r),e}},redirect:async({url:e,baseUrl:r})=>e===r||e===`${r}/`||e.endsWith("/auth/login")?r:e.startsWith("/")?`${r}${e}`:e.startsWith(r)?e:r},secret:process.env.NEXTAUTH_SECRET||"3560f921b7bbf968e64fbc2835960840d184fcb95977e960a2124de6bbbed2d3",debug:!1}},65542:e=>{e.exports=require("next-auth")},74729:e=>{e.exports=require("bcryptjs")},75600:e=>{e.exports=require("next/dist/compiled/next-server/pages-api.runtime.prod.js")},76760:(e,r,i)=>{i.d(r,{z:()=>a});var s=i(96330);let a=globalThis.prisma??new s.PrismaClient({log:["error"]})},86435:(e,r)=>{Object.defineProperty(r,"M",{enumerable:!0,get:function(){return function e(r,i){return i in r?r[i]:"then"in r&&"function"==typeof r.then?r.then(r=>e(r,i)):"function"==typeof r&&"default"===i?r:void 0}}})},96330:e=>{e.exports=require("@prisma/client")}};var r=require("../../../webpack-api-runtime.js");r.C(e);var i=r(r.s=41133);module.exports=i})();