feat: update app with RAG tracking and admin dashboard changes

Author: mrlynn

app/globals.css

@@ -40,3 +40,49 @@ a {
     color-scheme: dark;
   }
 }
+
+/* Mermaid diagram styling */
+.mermaid {
+  text-align: center;
+}
+
+.mermaid svg {
+  max-width: 100%;
+  height: auto !important;
+  margin: 0 auto;
+  display: block;
+}
+
+/* Fix for mermaid dark mode issues */
+[data-theme="dark"] .mermaid .label {
+  color: #FFFFFF !important;
+}
+
+[data-theme="dark"] .mermaid .node rect,
+[data-theme="dark"] .mermaid .node circle,
+[data-theme="dark"] .mermaid .node ellipse,
+[data-theme="dark"] .mermaid .node polygon,
+[data-theme="dark"] .mermaid .node path {
+  fill: #2D2D2D !important;
+  stroke: #CCCCCC !important;
+}
+
+[data-theme="dark"] .mermaid .edgePath .path {
+  stroke: #CCCCCC !important;
+}
+
+[data-theme="dark"] .mermaid .edgeLabel {
+  background-color: #2D2D2D !important;
+  color: #FFFFFF !important;
+}
+
+/* Enhanced visibility for diagrams */
+.mermaid-diagram-container {
+  padding: 16px;
+  background-color: #F8F9FA;
+  border-radius: 8px;
+  border: 1px solid #E1E4E8;
+  margin: 16px 0;
+  box-shadow: 0 1px 3px rgba(0,0,0,0.05);
+  overflow: auto;
+}

app/layout.js

@@ -9,6 +9,7 @@ import '@fontsource/roboto/300.css';
 import '@fontsource/roboto/400.css';
 import '@fontsource/roboto/500.css';
 import '@fontsource/roboto/700.css';
+import './globals.css';
 
 const inter = Inter({ subsets: ['latin'] });
 

app/lib/auth.js

@@ -11,35 +11,61 @@ export const authOptions = {
       },
       async authorize(credentials) {
         try {
-          const { conn } = await connectToDatabase();
-          const users = conn.connection.db.collection('users');
-
           // Use environment variables for admin credentials
           const adminEmail = process.env.ADMIN_EMAIL || '[email protected]';
           const adminPassword = process.env.ADMIN_PASSWORD || 'admin123';
 
           if (credentials.email === adminEmail && credentials.password === adminPassword) {
+            console.log('Admin user authenticated successfully');
             return {
               id: '1',
               email: adminEmail,
               name: 'Admin User',
-              isAdmin: true
+              isAdmin: true,
+              role: 'admin'
             };
           }
 
-          // In production, verify against your database
-          const user = await users.findOne({ email: credentials.email });
-          if (!user) return null;
+          try {
+            const { conn } = await connectToDatabase();
+            const users = conn.connection.db.collection('users');
+
+            // In production, verify against your database
+            const user = await users.findOne({ email: credentials.email });
+            if (!user) {
+              console.log(`User not found: ${credentials.email}`);
+              return null;
+            }
 
-          // In production, use proper password hashing
-          if (user.password !== credentials.password) return null;
+            // In production, use proper password hashing
+            if (user.password !== credentials.password) {
+              console.log(`Invalid password for user: ${credentials.email}`);
+              return null;
+            }
 
-          return {
-            id: user._id.toString(),
-            email: user.email,
-            name: user.name,
-            isAdmin: user.isAdmin
-          };
+            console.log(`User authenticated successfully: ${credentials.email}`);
+            return {
+              id: user._id.toString(),
+              email: user.email,
+              name: user.name,
+              isAdmin: user.isAdmin || false,
+              role: user.isAdmin ? 'admin' : 'user'
+            };
+          } catch (dbError) {
+            console.error('Database error during authentication:', dbError);
+            // Fall back to admin credentials if database connection fails
+            if (credentials.email === adminEmail && credentials.password === adminPassword) {
+              console.log('Using admin credentials as fallback');
+              return {
+                id: '1',
+                email: adminEmail,
+                name: 'Admin User',
+                isAdmin: true,
+                role: 'admin'
+              };
+            }
+            return null;
+          }
         } catch (error) {
           console.error('Auth error:', error);
           return null;
@@ -51,12 +77,14 @@ export const authOptions = {
     async jwt({ token, user }) {
       if (user) {
         token.isAdmin = user.isAdmin;
+        token.role = user.role;
       }
       return token;
     },
     async session({ session, token }) {
       if (token) {
         session.user.isAdmin = token.isAdmin;
+        session.user.role = token.role;
       }
       return session;
     }
@@ -67,4 +95,5 @@ export const authOptions = {
   session: {
     strategy: 'jwt',
   },
+  debug: process.env.NODE_ENV === 'development',
 }; 

app/models/UnansweredQuestion.js

@@ -5,11 +5,10 @@ const unansweredQuestionSchema = new mongoose.Schema({
   user_id: { type: String, required: true },
   user_name: { type: String, required: true },
   question: { type: String, required: true },
-  answer: { type: String, required: true },
+  answer: { type: String },
   module: { type: String },
   question_embedding: {
     type: [Number],
-    required: true,
     index: {
       type: 'vectorSearch',
       dimensions: 1536,

middleware.js

@@ -4,29 +4,70 @@ import { getToken } from 'next-auth/jwt';
 export async function middleware(request) {
   // Get the pathname of the request
   const path = request.nextUrl.pathname;
+
+  // Define public paths that don't require authentication
+  const isPublicPath = 
+    path === '/auth/signin' || 
+    path === '/auth/signup' || 
+    path === '/api/auth/signin' || 
+    path === '/api/auth/signup' ||
+    path === '/api/auth/callback' ||
+    path === '/api/auth/session' ||
+    path === '/api/auth/csrf' ||
+    path === '/api/auth/providers' ||
+    path.startsWith('/_next') ||
+    path.startsWith('/static') ||
+    path === '/favicon.ico';
+
+  // Check if the path is public
+  if (isPublicPath) {
+    return NextResponse.next();
+  }
+
+  // Check if the path is an API route
+  const isApiRoute = path.startsWith('/api/');
 
-  // If the path starts with /admin, check authentication
-  if (path.startsWith('/admin')) {
-    const session = await getToken({
-      req: request,
-      secret: process.env.NEXTAUTH_SECRET
-    });
-    
-    // If there is no session or the user is not an admin, redirect to signin
-    if (!session || !session.isAdmin) {
-      const url = new URL('/auth/signin', request.url);
-      url.searchParams.set('callbackUrl', encodeURI(request.url));
-      return NextResponse.redirect(url);
+  // For API routes, check for authentication
+  if (isApiRoute) {
+    try {
+      const token = await getToken({ req: request });
+      
+      // If no token is found and it's not a public API route, return unauthorized
+      if (!token) {
+        console.log(`Unauthorized API access attempt: ${path}`);
+        return NextResponse.json(
+          { error: 'Unauthorized' },
+          { status: 401 }
+        );
+      }
+      
+      // For admin-only API routes, check if the user is an admin
+      if (path.startsWith('/api/admin/') && !token.isAdmin) {
+        console.log(`Forbidden API access attempt: ${path}`);
+        return NextResponse.json(
+          { error: 'Forbidden' },
+          { status: 403 }
+        );
+      }
+    } catch (error) {
+      console.error('Middleware error:', error);
+      // Continue to the next middleware or route handler
     }
   }
-  
+
+  // Continue to the next middleware or route handler
   return NextResponse.next();
 }
 
-// Configure which paths middleware should run on
+// Configure the middleware to run on specific paths
 export const config = {
   matcher: [
-    // Match all paths starting with /admin
-    '/admin/:path*'
-  ]
+    /*
+     * Match all request paths except for the ones starting with:
+     * - _next/static (static files)
+     * - _next/image (image optimization files)
+     * - favicon.ico (favicon file)
+     */
+    '/((?!_next/static|_next/image|favicon.ico).*)',
+  ],
 };