IcyNet.eu/server/routes/admin.js

import express from 'express'

import { ensureLogin } from '../../scripts/ensureLogin'
import wrap from '../../scripts/asyncRoute'
import * as API from '../api/admin'
import { sendMail } from '../api/emailer'
import { User, Login } from '../api'

const router = express.Router()
const apiRouter = express.Router()

// Check for privilege required to access the admin panel
router.use(ensureLogin, wrap(async (req, res, next) => {
  if (!req.session.privilege) {
    const u = await User.get(req.session.user)
    req.session.privilege = u.nw_privilege
  }

  if (req.session.user && req.session.privilege !== 5) {
    return res.redirect('/login')
  }

  res.locals.server_time = process.uptime()
  next()
}))

/* ================
 *   ASK PASSWORD
 * ================
 */

router.get('/access', (req, res) => {
  if (!req.session.accesstime || req.session.accesstime < Date.now()) {
    return res.status(401).jsonp({ error: 'Access expired' })
  }

  res.jsonp({ access: req.session.accesstime - Date.now() })
})

// Post password to continue
router.post('/', wrap(async (req, res, next) => {
  if (!req.body.password) return next()

  if (req.body.csrf !== req.session.csrf) {
    req.flash('message', { error: true, text: 'Invalid session token' })
    return next()
  }

  const passReady = await Login.password(req.session.user, req.body.password)
  if (passReady) {
    req.session.accesstime = Date.now() + 600000 // 10 minutes
    return res.redirect('/admin')
  } else {
    req.flash('message', { error: true, text: 'Invalid password' })
  }

  next()
}))

// Ensure that the admin panel is not kept open for prolonged time
router.use(wrap(async (req, res, next) => {
  if (req.session.accesstime) {
    if (req.session.accesstime > Date.now()) {
      req.session.accesstime = Date.now() + 600000
      return next()
    }

    delete req.session.accesstime
  }

  res.render('user/password', { post: '/admin' })
}))

/* =========
 *   VIEWS
 * =========
 */

router.get('/', (req, res) => {
  res.render('admin/index')
})

router.get('/oauth2', wrap(async (req, res) => {
  res.render('admin/oauth2')
}))

/* =======
 *   API
 * =======
 */

function csrfVerify (req, res, next) {
  if (req.body.csrf !== req.session.csrf) {
    return next(new Error('Invalid session'))
  }

  next()
}

/* =============
 *   User Data
 * =============
 */

apiRouter.get('/users', wrap(async (req, res) => {
  let page = parseInt(req.query.page)
  if (isNaN(page) || page < 1) {
    page = 1
  }

  const users = await API.getAllUsers(page, req.session.user.id)
  res.jsonp(users)
}))

apiRouter.get('/user/:id', wrap(async (req, res) => {
  const id = parseInt(req.params.id)
  if (isNaN(id)) {
    throw new Error('Invalid number')
  }

  res.jsonp(await API.getUser(id))
}))

apiRouter.post('/user', csrfVerify, wrap(async (req, res) => {
  const id = parseInt(req.body.user_id)
  if (isNaN(id)) {
    throw new Error('Invalid or missing user ID')
  }

  res.jsonp(await API.editUser(id, req.body))
}))

apiRouter.post('/user/resend_activation', csrfVerify, wrap(async (req, res) => {
  const id = parseInt(req.body.user_id)
  if (isNaN(id)) {
    throw new Error('Invalid or missing user ID')
  }

  res.jsonp(await API.resendActivationEmail(id))
}))

apiRouter.post('/user/revoke_totp', csrfVerify, wrap(async (req, res) => {
  const id = parseInt(req.body.user_id)
  if (isNaN(id)) {
    throw new Error('Invalid or missing user ID')
  }

  res.jsonp(await API.revokeTotpToken(id))
}))

apiRouter.post('/user/reset_password', csrfVerify, wrap(async (req, res) => {
  const id = parseInt(req.body.user_id)
  if (isNaN(id)) {
    throw new Error('Invalid or missing user ID')
  }

  res.jsonp(await API.sendPasswordEmail(id))
}))

apiRouter.post('/user/lock', csrfVerify, wrap(async (req, res) => {
  const id = parseInt(req.body.user_id)
  if (isNaN(id)) {
    throw new Error('Invalid or missing user ID')
  }

  res.jsonp(await API.lockAccount(id))
}))

const availableScopes = ['uuid', 'email', 'username', 'display_name']
apiRouter.get('/search/users', wrap(async (req, res) => {
  if (!req.query.terms) throw new Error('Please specify search terms!')

  const scopes = []
  if (req.query.scopes) {
    const scq = req.query.scopes.split(',')

    for (const i in scq) {
      scq[i] = scq[i].trim()

      if (availableScopes.indexOf(scq[i]) !== -1) {
        scopes.push(scq[i])
      }
    }
  }

  if (!scopes.length) {
    scopes.push('email')
  }

  const results = await API.searchUsers(req.query.terms, scopes)
  res.jsonp(results)
}))

/* ===============
 *   OAuth2 Data
 * ===============
 */

apiRouter.get('/clients', wrap(async (req, res) => {
  let page = parseInt(req.query.page)
  if (isNaN(page) || page < 1) {
    page = 1
  }

  const clients = await API.getAllClients(page)
  res.jsonp(clients)
}))

apiRouter.get('/client/:id', wrap(async (req, res) => {
  const id = parseInt(req.params.id)
  if (isNaN(id)) {
    throw new Error('Invalid number')
  }

  const client = await API.getClient(id)

  res.jsonp(client)
}))

apiRouter.post('/client/new', csrfVerify, wrap(async (req, res) => {
  await API.createClient(req.body, req.session.user)

  res.status(204).end()
}))

apiRouter.post('/client/update', csrfVerify, wrap(async (req, res) => {
  const id = parseInt(req.body.id)

  if (!id || isNaN(id)) throw new Error('ID missing')

  await API.updateClient(id, req.body)

  res.status(204).end()
}))

apiRouter.post('/client/new_secret', csrfVerify, wrap(async (req, res) => {
  const id = parseInt(req.body.id)
  if (isNaN(id)) {
    throw new Error('Invalid client ID')
  }

  const client = await API.newSecret(id)

  res.jsonp(client)
}))

apiRouter.post('/client/delete', csrfVerify, wrap(async (req, res) => {
  const id = parseInt(req.body.id)
  if (isNaN(id)) {
    throw new Error('Invalid client ID')
  }

  const client = await API.removeClient(id)

  res.jsonp(client)
}))

/* ========
 *   Bans
 * ========
 */

apiRouter.get('/bans', wrap(async (req, res) => {
  let page = parseInt(req.query.page)
  if (isNaN(page) || page < 1) {
    page = 1
  }

  const bans = await API.getAllBans(page)
  res.jsonp(bans)
}))

apiRouter.post('/ban/pardon', csrfVerify, wrap(async (req, res) => {
  const id = parseInt(req.body.id)
  if (isNaN(id)) {
    throw new Error('Invalid number')
  }

  const ban = await API.removeBan(id)

  res.jsonp(ban)
}))

apiRouter.post('/ban', csrfVerify, wrap(async (req, res) => {
  if (!req.body.user_id) throw new Error('ID missing')

  const result = await API.addBan(req.body, req.session.user.id)

  res.jsonp(result)
}))

apiRouter.post('/email', csrfVerify, wrap(async (req, res) => {
  if (!req.body.email) throw new Error('Email missing')
  if (!req.body.title) throw new Error('Title missing')
  if (!req.body.content) throw new Error('Content missing')

  var message = {
    subject: req.body.title,
    html: req.body.content
  }

  const result = await sendMail(req.body.email, message)

  res.jsonp(result)
}))

apiRouter.use((err, req, res) => {
  console.error(err)
  return res.status(400).jsonp({ error: err.message })
})

router.use('/api', apiRouter)

export default router
start admin panel 2017-08-27 18:39:30 +00:00			`import express from 'express'`
even more minor changes and reorganizing 2017-12-01 11:35:47 +00:00
Major refactor and code modernization, vol. 1 2020-12-13 14:36:07 +00:00			`import { ensureLogin } from '../../scripts/ensureLogin'`
start admin panel 2017-08-27 18:39:30 +00:00			`import wrap from '../../scripts/asyncRoute'`
Major refactor and code modernization, vol. 1 2020-12-13 14:36:07 +00:00			`import * as API from '../api/admin'`
			`import { sendMail } from '../api/emailer'`
			`import { User, Login } from '../api'`
start admin panel 2017-08-27 18:39:30 +00:00
			`const router = express.Router()`
			`const apiRouter = express.Router()`

admin panel work a bit 2017-08-28 15:42:16 +00:00			`// Check for privilege required to access the admin panel`
some login redirect shenanigans 2017-10-09 14:38:27 +00:00			`router.use(ensureLogin, wrap(async (req, res, next) => {`
start admin panel 2017-08-27 18:39:30 +00:00			`if (!req.session.privilege) {`
Maintenance commit. 2020-05-28 18:30:21 +00:00			`const u = await User.get(req.session.user)`
start admin panel 2017-08-27 18:39:30 +00:00			`req.session.privilege = u.nw_privilege`
			`}`

			`if (req.session.user && req.session.privilege !== 5) {`
			`return res.redirect('/login')`
			`}`

			`res.locals.server_time = process.uptime()`
			`next()`
			`}))`

admin panel work a bit 2017-08-28 15:42:16 +00:00			`/* ================`
			`* ASK PASSWORD`
			`* ================`
			`*/`

add simple oauth2 client management to admin 2017-08-28 17:32:54 +00:00			`router.get('/access', (req, res) => {`
admin panel work a bit 2017-08-28 15:42:16 +00:00			`if (!req.session.accesstime \|\| req.session.accesstime < Date.now()) {`
Maintenance commit. 2020-05-28 18:30:21 +00:00			`return res.status(401).jsonp({ error: 'Access expired' })`
admin panel work a bit 2017-08-28 15:42:16 +00:00			`}`

Maintenance commit. 2020-05-28 18:30:21 +00:00			`res.jsonp({ access: req.session.accesstime - Date.now() })`
admin panel work a bit 2017-08-28 15:42:16 +00:00			`})`

			`// Post password to continue`
			`router.post('/', wrap(async (req, res, next) => {`
			`if (!req.body.password) return next()`

			`if (req.body.csrf !== req.session.csrf) {`
Maintenance commit. 2020-05-28 18:30:21 +00:00			`req.flash('message', { error: true, text: 'Invalid session token' })`
admin panel work a bit 2017-08-28 15:42:16 +00:00			`return next()`
			`}`

Major refactor and code modernization, vol. 1 2020-12-13 14:36:07 +00:00			`const passReady = await Login.password(req.session.user, req.body.password)`
admin panel work a bit 2017-08-28 15:42:16 +00:00			`if (passReady) {`
ban management and other changes 2017-08-28 22:36:13 +00:00			`req.session.accesstime = Date.now() + 600000 // 10 minutes`
admin panel work a bit 2017-08-28 15:42:16 +00:00			`return res.redirect('/admin')`
			`} else {`
Maintenance commit. 2020-05-28 18:30:21 +00:00			`req.flash('message', { error: true, text: 'Invalid password' })`
admin panel work a bit 2017-08-28 15:42:16 +00:00			`}`

			`next()`
			`}))`

			`// Ensure that the admin panel is not kept open for prolonged time`
			`router.use(wrap(async (req, res, next) => {`
			`if (req.session.accesstime) {`
add simple oauth2 client management to admin 2017-08-28 17:32:54 +00:00			`if (req.session.accesstime > Date.now()) {`
ban management and other changes 2017-08-28 22:36:13 +00:00			`req.session.accesstime = Date.now() + 600000`
add simple oauth2 client management to admin 2017-08-28 17:32:54 +00:00			`return next()`
			`}`

admin panel work a bit 2017-08-28 15:42:16 +00:00			`delete req.session.accesstime`
			`}`

Maintenance commit. 2020-05-28 18:30:21 +00:00			`res.render('user/password', { post: '/admin' })`
admin panel work a bit 2017-08-28 15:42:16 +00:00			`}))`

start admin panel 2017-08-27 18:39:30 +00:00			`/* =========`
			`* VIEWS`
			`* =========`
			`*/`

			`router.get('/', (req, res) => {`
			`res.render('admin/index')`
			`})`

			`router.get('/oauth2', wrap(async (req, res) => {`
			`res.render('admin/oauth2')`
			`}))`

			`/* =======`
			`* API`
			`* =======`
			`*/`

A lot of user actions, add CSRF tokens to all POSTs 2017-12-07 15:37:36 +00:00			`function csrfVerify (req, res, next) {`
			`if (req.body.csrf !== req.session.csrf) {`
			`return next(new Error('Invalid session'))`
			`}`

			`next()`
			`}`

			`/* =============`
			`* User Data`
			`* =============`
			`*/`

admin panel work a bit 2017-08-28 15:42:16 +00:00			`apiRouter.get('/users', wrap(async (req, res) => {`
			`let page = parseInt(req.query.page)`
			`if (isNaN(page) \|\| page < 1) {`
			`page = 1`
			`}`

Maintenance commit. 2020-05-28 18:30:21 +00:00			`const users = await API.getAllUsers(page, req.session.user.id)`
admin panel work a bit 2017-08-28 15:42:16 +00:00			`res.jsonp(users)`
			`}))`

A lot of user actions, add CSRF tokens to all POSTs 2017-12-07 15:37:36 +00:00			`apiRouter.get('/user/:id', wrap(async (req, res) => {`
Maintenance commit. 2020-05-28 18:30:21 +00:00			`const id = parseInt(req.params.id)`
A lot of user actions, add CSRF tokens to all POSTs 2017-12-07 15:37:36 +00:00			`if (isNaN(id)) {`
			`throw new Error('Invalid number')`
			`}`

			`res.jsonp(await API.getUser(id))`
			`}))`

			`apiRouter.post('/user', csrfVerify, wrap(async (req, res) => {`
Maintenance commit. 2020-05-28 18:30:21 +00:00			`const id = parseInt(req.body.user_id)`
A lot of user actions, add CSRF tokens to all POSTs 2017-12-07 15:37:36 +00:00			`if (isNaN(id)) {`
			`throw new Error('Invalid or missing user ID')`
			`}`

			`res.jsonp(await API.editUser(id, req.body))`
			`}))`

			`apiRouter.post('/user/resend_activation', csrfVerify, wrap(async (req, res) => {`
Maintenance commit. 2020-05-28 18:30:21 +00:00			`const id = parseInt(req.body.user_id)`
A lot of user actions, add CSRF tokens to all POSTs 2017-12-07 15:37:36 +00:00			`if (isNaN(id)) {`
			`throw new Error('Invalid or missing user ID')`
			`}`

			`res.jsonp(await API.resendActivationEmail(id))`
			`}))`

			`apiRouter.post('/user/revoke_totp', csrfVerify, wrap(async (req, res) => {`
Maintenance commit. 2020-05-28 18:30:21 +00:00			`const id = parseInt(req.body.user_id)`
A lot of user actions, add CSRF tokens to all POSTs 2017-12-07 15:37:36 +00:00			`if (isNaN(id)) {`
			`throw new Error('Invalid or missing user ID')`
			`}`

			`res.jsonp(await API.revokeTotpToken(id))`
			`}))`

			`apiRouter.post('/user/reset_password', csrfVerify, wrap(async (req, res) => {`
Maintenance commit. 2020-05-28 18:30:21 +00:00			`const id = parseInt(req.body.user_id)`
A lot of user actions, add CSRF tokens to all POSTs 2017-12-07 15:37:36 +00:00			`if (isNaN(id)) {`
			`throw new Error('Invalid or missing user ID')`
			`}`

			`res.jsonp(await API.sendPasswordEmail(id))`
			`}))`

Locking users mechanism 2018-02-13 20:32:11 +00:00			`apiRouter.post('/user/lock', csrfVerify, wrap(async (req, res) => {`
Maintenance commit. 2020-05-28 18:30:21 +00:00			`const id = parseInt(req.body.user_id)`
Locking users mechanism 2018-02-13 20:32:11 +00:00			`if (isNaN(id)) {`
			`throw new Error('Invalid or missing user ID')`
			`}`

			`res.jsonp(await API.lockAccount(id))`
			`}))`

User search bar 2017-12-07 19:57:42 +00:00			`const availableScopes = ['uuid', 'email', 'username', 'display_name']`
			`apiRouter.get('/search/users', wrap(async (req, res) => {`
			`if (!req.query.terms) throw new Error('Please specify search terms!')`

Maintenance commit. 2020-05-28 18:30:21 +00:00			`const scopes = []`
User search bar 2017-12-07 19:57:42 +00:00			`if (req.query.scopes) {`
Maintenance commit. 2020-05-28 18:30:21 +00:00			`const scq = req.query.scopes.split(',')`
User search bar 2017-12-07 19:57:42 +00:00
Maintenance commit. 2020-05-28 18:30:21 +00:00			`for (const i in scq) {`
User search bar 2017-12-07 19:57:42 +00:00			`scq[i] = scq[i].trim()`

			`if (availableScopes.indexOf(scq[i]) !== -1) {`
			`scopes.push(scq[i])`
			`}`
			`}`
			`}`

			`if (!scopes.length) {`
			`scopes.push('email')`
			`}`

Maintenance commit. 2020-05-28 18:30:21 +00:00			`const results = await API.searchUsers(req.query.terms, scopes)`
User search bar 2017-12-07 19:57:42 +00:00			`res.jsonp(results)`
			`}))`

ban management and other changes 2017-08-28 22:36:13 +00:00			`/* ===============`
			`* OAuth2 Data`
			`* ===============`
			`*/`
Maintenance commit Sat Jan 5 01:10:23 EET 2019 2019-01-04 23:10:23 +00:00
add simple oauth2 client management to admin 2017-08-28 17:32:54 +00:00			`apiRouter.get('/clients', wrap(async (req, res) => {`
			`let page = parseInt(req.query.page)`
			`if (isNaN(page) \|\| page < 1) {`
			`page = 1`
			`}`

Maintenance commit. 2020-05-28 18:30:21 +00:00			`const clients = await API.getAllClients(page)`
add simple oauth2 client management to admin 2017-08-28 17:32:54 +00:00			`res.jsonp(clients)`
			`}))`

			`apiRouter.get('/client/:id', wrap(async (req, res) => {`
Maintenance commit. 2020-05-28 18:30:21 +00:00			`const id = parseInt(req.params.id)`
add simple oauth2 client management to admin 2017-08-28 17:32:54 +00:00			`if (isNaN(id)) {`
A lot of user actions, add CSRF tokens to all POSTs 2017-12-07 15:37:36 +00:00			`throw new Error('Invalid number')`
add simple oauth2 client management to admin 2017-08-28 17:32:54 +00:00			`}`

Maintenance commit. 2020-05-28 18:30:21 +00:00			`const client = await API.getClient(id)`
add simple oauth2 client management to admin 2017-08-28 17:32:54 +00:00
			`res.jsonp(client)`
			`}))`

A lot of user actions, add CSRF tokens to all POSTs 2017-12-07 15:37:36 +00:00			`apiRouter.post('/client/new', csrfVerify, wrap(async (req, res) => {`
A whole load of stuff - Added password reset, changed error returns to throws and some other things 2017-11-30 21:13:14 +00:00			`await API.createClient(req.body, req.session.user)`
add simple oauth2 client management to admin 2017-08-28 17:32:54 +00:00
			`res.status(204).end()`
			`}))`

A lot of user actions, add CSRF tokens to all POSTs 2017-12-07 15:37:36 +00:00			`apiRouter.post('/client/update', csrfVerify, wrap(async (req, res) => {`
Maintenance commit. 2020-05-28 18:30:21 +00:00			`const id = parseInt(req.body.id)`
some stuff again 2017-08-30 12:23:45 +00:00
A lot of user actions, add CSRF tokens to all POSTs 2017-12-07 15:37:36 +00:00			`if (!id \|\| isNaN(id)) throw new Error('ID missing')`
add simple oauth2 client management to admin 2017-08-28 17:32:54 +00:00
A whole load of stuff - Added password reset, changed error returns to throws and some other things 2017-11-30 21:13:14 +00:00			`await API.updateClient(id, req.body)`
add simple oauth2 client management to admin 2017-08-28 17:32:54 +00:00
			`res.status(204).end()`
			`}))`

A lot of user actions, add CSRF tokens to all POSTs 2017-12-07 15:37:36 +00:00			`apiRouter.post('/client/new_secret', csrfVerify, wrap(async (req, res) => {`
Maintenance commit. 2020-05-28 18:30:21 +00:00			`const id = parseInt(req.body.id)`
add simple oauth2 client management to admin 2017-08-28 17:32:54 +00:00			`if (isNaN(id)) {`
A lot of user actions, add CSRF tokens to all POSTs 2017-12-07 15:37:36 +00:00			`throw new Error('Invalid client ID')`
add simple oauth2 client management to admin 2017-08-28 17:32:54 +00:00			`}`

Maintenance commit. 2020-05-28 18:30:21 +00:00			`const client = await API.newSecret(id)`
add simple oauth2 client management to admin 2017-08-28 17:32:54 +00:00
			`res.jsonp(client)`
			`}))`

A lot of user actions, add CSRF tokens to all POSTs 2017-12-07 15:37:36 +00:00			`apiRouter.post('/client/delete', csrfVerify, wrap(async (req, res) => {`
Maintenance commit. 2020-05-28 18:30:21 +00:00			`const id = parseInt(req.body.id)`
add simple oauth2 client management to admin 2017-08-28 17:32:54 +00:00			`if (isNaN(id)) {`
A lot of user actions, add CSRF tokens to all POSTs 2017-12-07 15:37:36 +00:00			`throw new Error('Invalid client ID')`
add simple oauth2 client management to admin 2017-08-28 17:32:54 +00:00			`}`

Maintenance commit. 2020-05-28 18:30:21 +00:00			`const client = await API.removeClient(id)`
add simple oauth2 client management to admin 2017-08-28 17:32:54 +00:00
			`res.jsonp(client)`
			`}))`

ban management and other changes 2017-08-28 22:36:13 +00:00			`/* ========`
			`* Bans`
			`* ========`
			`*/`

			`apiRouter.get('/bans', wrap(async (req, res) => {`
			`let page = parseInt(req.query.page)`
			`if (isNaN(page) \|\| page < 1) {`
			`page = 1`
			`}`

Maintenance commit. 2020-05-28 18:30:21 +00:00			`const bans = await API.getAllBans(page)`
ban management and other changes 2017-08-28 22:36:13 +00:00			`res.jsonp(bans)`
			`}))`

A lot of user actions, add CSRF tokens to all POSTs 2017-12-07 15:37:36 +00:00			`apiRouter.post('/ban/pardon', csrfVerify, wrap(async (req, res) => {`
Maintenance commit. 2020-05-28 18:30:21 +00:00			`const id = parseInt(req.body.id)`
ban management and other changes 2017-08-28 22:36:13 +00:00			`if (isNaN(id)) {`
A lot of user actions, add CSRF tokens to all POSTs 2017-12-07 15:37:36 +00:00			`throw new Error('Invalid number')`
ban management and other changes 2017-08-28 22:36:13 +00:00			`}`

Maintenance commit. 2020-05-28 18:30:21 +00:00			`const ban = await API.removeBan(id)`
ban management and other changes 2017-08-28 22:36:13 +00:00
			`res.jsonp(ban)`
			`}))`

A lot of user actions, add CSRF tokens to all POSTs 2017-12-07 15:37:36 +00:00			`apiRouter.post('/ban', csrfVerify, wrap(async (req, res) => {`
			`if (!req.body.user_id) throw new Error('ID missing')`
ban management and other changes 2017-08-28 22:36:13 +00:00
Maintenance commit. 2020-05-28 18:30:21 +00:00			`const result = await API.addBan(req.body, req.session.user.id)`
ban management and other changes 2017-08-28 22:36:13 +00:00
			`res.jsonp(result)`
			`}))`

Compose email from admin panel 2018-02-13 21:02:07 +00:00			`apiRouter.post('/email', csrfVerify, wrap(async (req, res) => {`
			`if (!req.body.email) throw new Error('Email missing')`
			`if (!req.body.title) throw new Error('Title missing')`
			`if (!req.body.content) throw new Error('Content missing')`

			`var message = {`
			`subject: req.body.title,`
			`html: req.body.content`
			`}`

Major refactor and code modernization, vol. 1 2020-12-13 14:36:07 +00:00			`const result = await sendMail(req.body.email, message)`
Compose email from admin panel 2018-02-13 21:02:07 +00:00
			`res.jsonp(result)`
			`}))`

some weird old code cleanup that was left hanging, /shrug 2021-02-09 16:46:04 +00:00			`apiRouter.use((err, req, res) => {`
add simple oauth2 client management to admin 2017-08-28 17:32:54 +00:00			`console.error(err)`
Maintenance commit. 2020-05-28 18:30:21 +00:00			`return res.status(400).jsonp({ error: err.message })`
add simple oauth2 client management to admin 2017-08-28 17:32:54 +00:00			`})`

start admin panel 2017-08-27 18:39:30 +00:00			`router.use('/api', apiRouter)`

Major refactor and code modernization, vol. 1 2020-12-13 14:36:07 +00:00			`export default router`