fix(admin): use correct column name 'expires' in admin_sessions queries
verifyAdminSession() and requireAdmin() both used expires_at but the admin_sessions table column is named expires — causing every session check to silently fail and always redirect to /admin-login. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This commit is contained in:
parent
fc0e75b5ad
commit
85d313bc86
1 changed files with 5 additions and 4 deletions
|
|
@ -15,9 +15,9 @@ export async function verifyAdminSession(): Promise<{
|
||||||
if (!sessionToken) return { success: false };
|
if (!sessionToken) return { success: false };
|
||||||
|
|
||||||
const sessions = await sql.unsafe(
|
const sessions = await sql.unsafe(
|
||||||
`SELECT username, role FROM admin_sessions
|
`SELECT admins.username, admins.role FROM admin_sessions
|
||||||
JOIN admins ON admins.id = admin_sessions.admin_id
|
JOIN admins ON admins.id = admin_sessions.admin_id
|
||||||
WHERE session_token = $1 AND expires_at > NOW()
|
WHERE admin_sessions.session_token = $1 AND admin_sessions.expires > NOW()
|
||||||
LIMIT 1`,
|
LIMIT 1`,
|
||||||
[sessionToken]
|
[sessionToken]
|
||||||
);
|
);
|
||||||
|
|
@ -47,8 +47,9 @@ export async function requireAdmin(request: Request): Promise<{
|
||||||
|
|
||||||
try {
|
try {
|
||||||
const sessions = await sql.unsafe(
|
const sessions = await sql.unsafe(
|
||||||
`SELECT id, username, role, expires_at FROM admin_sessions
|
`SELECT admin_sessions.id, admins.username, admins.role FROM admin_sessions
|
||||||
WHERE session_token = $1 AND expires_at > NOW()`,
|
JOIN admins ON admins.id = admin_sessions.admin_id
|
||||||
|
WHERE admin_sessions.session_token = $1 AND admin_sessions.expires > NOW()`,
|
||||||
[sessionToken]
|
[sessionToken]
|
||||||
);
|
);
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Add table
Reference in a new issue