Fix admin route access and backend configuration

- Added /admin redirect to login page in nginx config - Fixed backend server.js route ordering for proper admin handling - Updated authentication middleware and routes - Added user management routes - Configured PostgreSQL integration - Updated environment configuration
2025-12-13 22:34:11 -06:00
parent 8bb6430a70
commit 703ab57984
253 changed files with 29870 additions and 157 deletions
--- a/Sky_Art_shop/Controllers/ApiUploadController.cs
+++ b/Sky_Art_shop/Controllers/ApiUploadController.cs
@@ -0,0 +1,62 @@
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.AspNetCore.Authorization;
+
+namespace SkyArtShop.Controllers
+{
+    [Route("api/upload")]
+    [Authorize(Roles = "Admin")]
+    public class ApiUploadController : Controller
+    {
+        private readonly IWebHostEnvironment _environment;
+
+        public ApiUploadController(IWebHostEnvironment environment)
+        {
+            _environment = environment;
+        }
+
+        [HttpPost("image")]
+        public async Task<IActionResult> UploadImage(IFormFile image)
+        {
+            if (image == null || image.Length == 0)
+            {
+                return Json(new { success = false, message = "No file uploaded" });
+            }
+
+            var allowedExtensions = new[] { ".jpg", ".jpeg", ".png", ".gif", ".webp" };
+            var extension = Path.GetExtension(image.FileName).ToLowerInvariant();
+
+            if (!allowedExtensions.Contains(extension))
+            {
+                return Json(new { success = false, message = "Invalid file type. Only images are allowed." });
+            }
+
+            try
+            {
+                var uploadsPath = Path.Combine(_environment.WebRootPath, "uploads", "images");
+                if (!Directory.Exists(uploadsPath))
+                {
+                    Directory.CreateDirectory(uploadsPath);
+                }
+
+                var fileName = $"{Guid.NewGuid()}{extension}";
+                var filePath = Path.Combine(uploadsPath, fileName);
+
+                using (var stream = new FileStream(filePath, FileMode.Create))
+                {
+                    await image.CopyToAsync(stream);
+                }
+
+                var imageUrl = $"/uploads/images/{fileName}";
+
+                Console.WriteLine($"[API-UPLOAD] Image uploaded successfully: {imageUrl}");
+
+                return Json(new { success = true, imageUrl = imageUrl });
+            }
+            catch (Exception ex)
+            {
+                Console.WriteLine($"[API-UPLOAD] Upload failed: {ex.Message}");
+                return Json(new { success = false, message = $"Upload failed: {ex.Message}" });
+            }
+        }
+    }
+}