lilith-platform.live/codebase/@features/api
Natalie 6a508d701d feat(api/vip): add SSO-gated admin impersonation surface
Backend for the VIP light-admin /admin view (mirrors quinn.www AdminDevView).
Mounted under the SSO-gated /vip/admin/* path, so it is Quinn-only:
- GET /vip/admin/impersonate/clients — roster picker flagging which fans have a
  live token to open as.
- POST /vip/admin/impersonate/:clientId — resolves the fan's active token and
  (best-effort) their content key via the service-token path, returning an
  impersonation session so the SPA can load the fan's portal without their
  password. Read view-as; every start is logged for audit.

Verified: bun run typecheck clean; 4 integration tests green on a real Postgres.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
2026-06-24 23:52:35 -04:00
..
config
scripts fix(ci/deploy): local-remote helpers for black-runner deploy jobs 2026-06-24 19:53:37 -04:00
src feat(api/vip): add SSO-gated admin impersonation surface 2026-06-24 23:52:35 -04:00
tests/processors
.dependency-cruiser.cjs
.env.development feat(quinn.admin): serve main-branch dev preview on black without SSO 2026-06-21 23:38:06 -05:00
bunfig.toml
package.json test(api): auto-skip DB-dependent tests off the fast LAN path 2026-06-19 18:20:11 -05:00
tsconfig.json fix(api): null-safe tour-stop hotels, declare sharp, exclude mcp-prospector 2026-06-19 06:46:08 -05:00