gatekeeper/mini
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

God Mode Valhalla: Initial Standalone Commit

Browse Source
This commit is contained in:
cawcenter
2025-12-14 19:19:14 -05:00
commit 153102b23e
127 changed files with 30781 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

425
src/pages/api/god/[...action].ts Normal file
View File

@@ -0,0 +1,425 @@
/**
* 🔱 GOD MODE BACKDOOR - Direct PostgreSQL Access
*
* This endpoint bypasses Directus entirely and connects directly to PostgreSQL.
* Works even when Directus is crashed/frozen.
*
* Endpoints:
* GET /api/god/health - Full system health check
* GET /api/god/services - Quick service status (all 4 containers)
* GET /api/god/db-status - Database connection test
* POST /api/god/sql - Execute raw SQL (dangerous!)
* GET /api/god/tables - List all tables
* GET /api/god/logs - Recent work_log entries
*/
import type { APIRoute } from 'astro';
import { pool } from '@/lib/db';
import Redis from 'ioredis';
// Direct PostgreSQL connection (Strict Connection String)
// God Mode requires Superuser access (postgres) to effectively diagnose and fix the DB.
// Pool is now shared from @/lib/dbr: process.env.DB_USER || 'postgres',
// password: process.env.DB_PASSWORD || 'Idk@2026lolhappyha232',
// max: 3,
// idleTimeoutMillis: 30000,
// connectionTimeoutMillis: 5000,
// });
// Directus URL
const DIRECTUS_URL = process.env.PUBLIC_DIRECTUS_URL || 'http://directus:8055';
// God Mode Token validation
function validateGodToken(request: Request): boolean {
const token = request.headers.get('X-God-Token') ||
request.headers.get('Authorization')?.replace('Bearer ', '') ||
new URL(request.url).searchParams.get('token');
const godToken = process.env.GOD_MODE_TOKEN || import.meta.env.GOD_MODE_TOKEN;
if (!godToken) {
console.warn('⚠️ GOD_MODE_TOKEN not set - backdoor is open!');
return true; // Allow access if no token configured (dev mode)
}
return token === godToken;
}
// JSON response helper
function json(data: object, status = 200) {
return new Response(JSON.stringify(data, null, 2), {
status,
headers: { 'Content-Type': 'application/json' }
});
}
// GET /api/god/health - Full system health
export const GET: APIRoute = async ({ request, url }) => {
if (!validateGodToken(request)) {
return json({ error: 'Unauthorized - Invalid God Mode Token' }, 401);
}
const action = url.pathname.split('/').pop();
try {
switch (action) {
case 'health':
return await getHealth();
case 'services':
return await getServices();
case 'db-status':
return await getDbStatus();
case 'tables':
return await getTables();
case 'logs':
return await getLogs();
default:
return json({
message: '🔱 God Mode Backdoor Active',
frontend: 'RUNNING ✅',
endpoints: {
'GET /api/god/health': 'Full system health check',
'GET /api/god/services': 'Quick status of all 4 containers',
'GET /api/god/db-status': 'Database connection test',
'GET /api/god/tables': 'List all tables',
'GET /api/god/logs': 'Recent work_log entries',
'POST /api/god/sql': 'Execute raw SQL (body: { query: "..." })',
},
timestamp: new Date().toISOString()
});
}
} catch (error: any) {
return json({ error: error.message, stack: error.stack }, 500);
}
};
// POST /api/god/sql - Execute raw SQL
export const POST: APIRoute = async ({ request, url }) => {
if (!validateGodToken(request)) {
return json({ error: 'Unauthorized - Invalid God Mode Token' }, 401);
}
const action = url.pathname.split('/').pop();
if (action !== 'sql') {
return json({ error: 'POST only supported for /api/god/sql' }, 400);
}
try {
const body = await request.json();
const { query } = body;
if (!query) {
return json({ error: 'Missing query in request body' }, 400);
}
const result = await pool.query(query);
return json({
success: true,
command: result.command,
rowCount: result.rowCount,
rows: result.rows,
fields: result.fields?.map(f => f.name)
});
} catch (error: any) {
return json({ error: error.message, code: error.code }, 500);
}
};
// Quick service status check
async function getServices() {
const services: Record<string, any> = {
timestamp: new Date().toISOString(),
frontend: { status: '✅ RUNNING', note: 'You are seeing this response' }
};
// Check PostgreSQL
try {
const start = Date.now();
await pool.query('SELECT 1');
services.postgresql = {
status: '✅ RUNNING',
latency_ms: Date.now() - start
};
} catch (error: any) {
services.postgresql = {
status: '❌ DOWN',
error: error.message
};
}
// Check Redis
try {
const redis = new Redis({
host: process.env.REDIS_HOST || 'redis',
port: 6379,
connectTimeout: 3000,
maxRetriesPerRequest: 1
});
const start = Date.now();
await redis.ping();
services.redis = {
status: '✅ RUNNING',
latency_ms: Date.now() - start
};
redis.disconnect();
} catch (error: any) {
services.redis = {
status: '❌ DOWN',
error: error.message
};
}
// Check Directus
try {
const start = Date.now();
const controller = new AbortController();
const timeout = setTimeout(() => controller.abort(), 5000);
const response = await fetch(`${DIRECTUS_URL}/server/health`, {
signal: controller.signal
});
clearTimeout(timeout);
if (response.ok) {
const data = await response.json();
services.directus = {
status: '✅ RUNNING',
latency_ms: Date.now() - start,
health: data.status
};
} else {
services.directus = {
status: '⚠️ UNHEALTHY',
http_status: response.status
};
}
} catch (error: any) {
services.directus = {
status: '❌ DOWN',
error: error.name === 'AbortError' ? 'Timeout (5s)' : error.message
};
}
// Summary
const allUp = services.postgresql.status.includes('✅') &&
services.redis.status.includes('✅') &&
services.directus.status.includes('✅');
services.summary = allUp ? '✅ ALL SERVICES HEALTHY' : '⚠️ SOME SERVICES DOWN';
return json(services);
}
// Health check implementation
async function getHealth() {
const start = Date.now();
const checks: Record<string, any> = {
timestamp: new Date().toISOString(),
uptime_seconds: Math.round(process.uptime()),
memory: {
rss_mb: Math.round(process.memoryUsage().rss / 1024 / 1024),
heap_used_mb: Math.round(process.memoryUsage().heapUsed / 1024 / 1024),
heap_total_mb: Math.round(process.memoryUsage().heapTotal / 1024 / 1024),
},
};
// PostgreSQL check
try {
const dbStart = Date.now();
const result = await pool.query('SELECT NOW() as time, current_database() as db, current_user as user');
checks.postgresql = {
status: '✅ healthy',
latency_ms: Date.now() - dbStart,
...result.rows[0]
};
} catch (error: any) {
checks.postgresql = {
status: '❌ unhealthy',
error: error.message
};
}
// Connection pool status
checks.pg_pool = {
total: pool.totalCount,
idle: pool.idleCount,
waiting: pool.waitingCount
};
// Redis check
try {
const redis = new Redis({
host: process.env.REDIS_HOST || 'redis',
port: 6379,
connectTimeout: 3000,
maxRetriesPerRequest: 1
});
const redisStart = Date.now();
const info = await redis.info('server');
checks.redis = {
status: '✅ healthy',
latency_ms: Date.now() - redisStart,
version: info.match(/redis_version:([^\r\n]+)/)?.[1]
};
redis.disconnect();
} catch (error: any) {
checks.redis = {
status: '❌ unhealthy',
error: error.message
};
}
// Directus check
try {
const directusStart = Date.now();
const controller = new AbortController();
const timeout = setTimeout(() => controller.abort(), 5000);
const response = await fetch(`${DIRECTUS_URL}/server/health`, {
signal: controller.signal
});
clearTimeout(timeout);
checks.directus = {
status: response.ok ? '✅ healthy' : '⚠️ unhealthy',
latency_ms: Date.now() - directusStart,
http_status: response.status
};
} catch (error: any) {
checks.directus = {
status: '❌ unreachable',
error: error.name === 'AbortError' ? 'Timeout (5s)' : error.message
};
}
// Directus tables check
try {
const tables = await pool.query(`
SELECT table_name
FROM information_schema.tables
WHERE table_schema = 'public'
AND table_name LIKE 'directus_%'
ORDER BY table_name
`);
checks.directus_tables = tables.rows.length;
} catch (error: any) {
checks.directus_tables = 0;
}
// Custom tables check
try {
const tables = await pool.query(`
SELECT table_name
FROM information_schema.tables
WHERE table_schema = 'public'
AND table_name NOT LIKE 'directus_%'
ORDER BY table_name
`);
checks.custom_tables = {
count: tables.rows.length,
tables: tables.rows.map(r => r.table_name)
};
} catch (error: any) {
checks.custom_tables = { count: 0, error: error.message };
}
checks.total_latency_ms = Date.now() - start;
return json(checks);
}
// Database status
async function getDbStatus() {
try {
const result = await pool.query(`
SELECT
pg_database_size(current_database()) as db_size_bytes,
(SELECT count(*) FROM pg_stat_activity) as active_connections,
(SELECT count(*) FROM pg_stat_activity WHERE state = 'active') as running_queries,
(SELECT max(query_start) FROM pg_stat_activity WHERE state = 'active') as oldest_query_start,
current_database() as database,
version() as version
`);
return json({
status: 'connected',
...result.rows[0],
db_size_mb: Math.round(result.rows[0].db_size_bytes / 1024 / 1024)
});
} catch (error: any) {
return json({ status: 'error', error: error.message }, 500);
}
}
// List all tables
async function getTables() {
try {
const result = await pool.query(`
SELECT
table_name,
(SELECT count(*) FROM information_schema.columns c WHERE c.table_name = t.table_name) as column_count
FROM information_schema.tables t
WHERE table_schema = 'public'
ORDER BY table_name
`);
// Get row counts for each table
const tables = [];
for (const row of result.rows) {
try {
const countResult = await pool.query(`SELECT count(*) as count FROM "${row.table_name}"`);
tables.push({
name: row.table_name,
columns: row.column_count,
rows: parseInt(countResult.rows[0].count)
});
} catch {
tables.push({
name: row.table_name,
columns: row.column_count,
rows: 'error'
});
}
}
return json({
total: tables.length,
tables
});
} catch (error: any) {
return json({ error: error.message }, 500);
}
}
// Get recent logs
async function getLogs() {
try {
// Check if work_log table exists
const exists = await pool.query(`
SELECT EXISTS (
SELECT FROM information_schema.tables
WHERE table_schema = 'public' AND table_name = 'work_log'
)
`);
if (!exists.rows[0].exists) {
return json({ message: 'work_log table does not exist', logs: [] });
}
const result = await pool.query(`
SELECT * FROM work_log
ORDER BY timestamp DESC
LIMIT 50
`);
return json({
count: result.rows.length,
logs: result.rows
});
} catch (error: any) {
return json({ error: error.message }, 500);
}
}

42
src/pages/api/god/db-ops.ts Normal file
View File

@@ -0,0 +1,42 @@
import type { APIRoute } from 'astro';
import { MECHANIC_OPS } from '@/lib/db/mechanic';
export const POST: APIRoute = async ({ request }) => {
// 1. Security Check (The Token)
const authHeader = request.headers.get('Authorization');
const token = import.meta.env.GOD_MODE_TOKEN || process.env.GOD_MODE_TOKEN;
// Allow either Bearer token or exact match (for flexibility)
if (authHeader !== `Bearer ${token}` && request.headers.get('X-God-Token') !== token) {
return new Response('Unauthorized: You are not God.', { status: 401 });
}
// 2. Parse the Command
const body = await request.json();
const op = body.operation; // 'vacuum', 'reindex', 'kill_locks'
try {
let result = '';
// 3. Execute the Mechanic
switch (op) {
case 'vacuum':
result = await MECHANIC_OPS.maintenance.vacuum();
break;
case 'reindex':
result = await MECHANIC_OPS.maintenance.reindex();
break;
case 'kill_locks':
result = await MECHANIC_OPS.maintenance.kill_locks();
break;
default:
return new Response('Unknown Operation', { status: 400 });
}
// 4. Return Success
return new Response(result, { status: 200 });
} catch (error) {
return new Response(`Error: ${(error as Error).message}`, { status: 500 });
}
};

37
src/pages/api/god/proxy.ts Normal file
View File

@@ -0,0 +1,37 @@
import type { APIRoute } from 'astro';
import { executeCommand } from '@/lib/directus/client';
export const POST: APIRoute = async ({ request }) => {
// 1. Security (Token)
const authHeader = request.headers.get('Authorization');
const token = import.meta.env.GOD_MODE_TOKEN || process.env.GOD_MODE_TOKEN;
// We can also accept X-God-Token header for flexibility
const headerToken = request.headers.get('X-God-Token');
if (authHeader !== `Bearer ${token}` && headerToken !== token) {
return new Response(JSON.stringify({ error: 'Unauthorized' }), {
status: 401,
headers: { 'Content-Type': 'application/json' }
});
}
try {
// 2. Parse Command
const command = await request.json();
// 3. Execute via Shim
const data = await executeCommand(command);
return new Response(JSON.stringify(data), {
status: 200,
headers: { 'Content-Type': 'application/json' }
});
} catch (error) {
return new Response(JSON.stringify({ error: (error as Error).message }), {
status: 500,
headers: { 'Content-Type': 'application/json' }
});
}
};