57 lines
1.7 KiB
TypeScript
57 lines
1.7 KiB
TypeScript
import { validateExternalAuth } from "../_shared/auth.ts";
|
|
|
|
const corsHeaders = {
|
|
"Access-Control-Allow-Origin": "*",
|
|
"Access-Control-Allow-Headers":
|
|
"authorization, x-client-info, apikey, content-type",
|
|
};
|
|
|
|
Deno.serve(async (req) => {
|
|
if (req.method === "OPTIONS")
|
|
return new Response("ok", { headers: corsHeaders });
|
|
|
|
try {
|
|
const authHeader = req.headers.get("Authorization");
|
|
const supabase = createClient(
|
|
Deno.env.get("SUPABASE_URL")!,
|
|
Deno.env.get("SUPABASE_ANON_KEY")!,
|
|
{ global: { headers: { Authorization: authHeader! } } }
|
|
);
|
|
|
|
const {
|
|
data: { user },
|
|
} = await supabase.auth.getUser();
|
|
if (!user) throw new Error("Unauthorized");
|
|
|
|
const url = new URL(req.url);
|
|
const entity_type = url.searchParams.get("entity_type");
|
|
const entity_id = url.searchParams.get("entity_id");
|
|
const action_type = url.searchParams.get("action_type");
|
|
const limit = parseInt(url.searchParams.get("limit") || "50");
|
|
|
|
let query = supabase.from("audit_actions").select("*");
|
|
|
|
if (entity_type) query = query.eq("entity_type", entity_type);
|
|
if (entity_id) query = query.eq("entity_id", entity_id);
|
|
if (action_type) query = query.eq("action_type", action_type);
|
|
|
|
const { data, error } = await query
|
|
.order("created_at", { ascending: false })
|
|
.limit(limit);
|
|
|
|
if (error) throw error;
|
|
|
|
return new Response(JSON.stringify({ success: true, data }), {
|
|
headers: { ...corsHeaders, "Content-Type": "application/json" },
|
|
});
|
|
} catch (error: any) {
|
|
return new Response(
|
|
JSON.stringify({ success: false, error: error.message }),
|
|
{
|
|
status: 400,
|
|
headers: { ...corsHeaders, "Content-Type": "application/json" },
|
|
}
|
|
);
|
|
}
|
|
});
|