lilith-platform.live/codebase/@features/admin/backend-api
2026-04-19 03:31:30 -07:00
..
src deps-upgrade(admin-backend-api): ⬆️ Update dependencies to include security patches, bug fixes, and new features in admin-backend-api 2026-04-19 03:31:30 -07:00
.env.development
.env.local.example
package.json deps-upgrade(admin-backend-api): ⬆️ Update dependencies to include security patches, bug fixes, and new features in admin-backend-api 2026-04-19 03:31:30 -07:00
README.md feat(admin-backend-api): Add service token authentication guard to validate tokens in auth-guard.ts, register token auth in server.ts, and update documentation/tests 2026-04-18 19:25:57 -07:00
tsconfig.json
vitest.config.ts

Admin API

Node.js HTTP server for the Quinn admin control center. Port 3023.

Auth: SSO cookie (via quinn-sso-api) or service bearer token (QUINN_ADMIN_SERVICE_TOKEN).

Dev proxy mode

When PROXY_TARGET is set, the server short-circuits every request (except /health) and proxies it upstream to the target, injecting Authorization: Bearer <QUINN_ADMIN_SERVICE_TOKEN>. No local SQLite is touched.

Copy .env.local.example to .env.local and fill in the token:

cp .env.local.example .env.local
# edit .env.local — get QUINN_ADMIN_SERVICE_TOKEN from /etc/quinn-admin-api/secrets.env on vps-0

The server logs a WARN line at boot when proxy mode is active, and prefixes each proxied request log with [PROXY→prod].

See docs/PROD_DB_UNIFICATION_PLAN.md for full architecture context.