feat(auth): implement JWT-based authentication with admin access controls

2025-06-08 07:19:31 +00:00
parent 61778bdba8
commit 5faca8c1b6
10 changed files with 617 additions and 92 deletions
--- a/ts/opsserver/handlers/config.handler.ts
+++ b/ts/opsserver/handlers/config.handler.ts
@ -1,6 +1,7 @@
 import * as plugins from '../../plugins.js';
 import type { OpsServer } from '../classes.opsserver.js';
 import * as interfaces from '../../../ts_interfaces/index.js';
+import { requireAdminIdentity } from '../helpers/guards.js';

 export class ConfigHandler {
  public typedrouter = new plugins.typedrequest.TypedRouter();
@ -32,12 +33,18 @@ export class ConfigHandler {
        'updateConfiguration',
        async (dataArg, toolsArg) => {
          try {
+            // Require admin access to update configuration
+            await requireAdminIdentity(this.opsServerRef.adminHandler, dataArg);
+            
            const updatedConfig = await this.updateConfiguration(dataArg.section, dataArg.config);
            return {
              updated: true,
              config: updatedConfig,
            };
          } catch (error) {
+            if (error instanceof plugins.typedrequest.TypedResponseError) {
+              throw error;
+            }
            return {
              updated: false,
              config: null,