chore(release): 0.1.0-alpha.1

correction to external labeling

ref #20

.env-example

@@ -50,3 +50,11 @@ GP_PASSWORD=
 # how often to check for new/updated queries in min
 QUERY_TIME_TYPE=m #valid options are m, h 
 QUERY_CHECK=1
+
+
+# Oauth setup
+PROVIDER=""
+CLIENT_ID=""
+CLIENT_SECRET=""
+CLIENT_SCOPES="openid profile email groups"
+DISCOVERY_URL=""

.gitea/ISSUE_TEMPLATE/bug_report.md

@@ -0,0 +1,66 @@
+---
+name: Bug Report
+about: Report something that is broken or not working correctly
+title: "[BUG] "
+ref: "main"
+labels:
+
+- bug
+
+---
+
+# Summary
+
+Briefly explain the issue.
+
+---
+
+# Steps To Reproduce
+
+1. Go to ...
+2. Click ...
+3. Scan ...
+4. Error occurs ...
+
+---
+
+# Expected Behavior
+
+What should have happened?
+
+---
+
+# Actual Behavior
+
+What actually happened instead?
+
+---
+
+# Severity
+
+- [ ] Low
+- [ ] Medium
+- [ ] High
+- [ ] Critical
+
+---
+
+# Environment
+
+Example:
+
+- Production
+- Development
+- Zebra Scanner
+- Mobile Device
+- Windows Server
+- Docker
+
+---
+
+# Logs / Screenshots
+
+Paste logs or upload screenshots here.
+
+```txt
+Paste logs here

.gitea/ISSUE_TEMPLATE/config.yaml

@@ -0,0 +1 @@
+blank_issues_enabled: false

.gitea/ISSUE_TEMPLATE/enhancement.md

@@ -0,0 +1,47 @@
+---
+name: Enhancement
+about: Improve or refine an existing feature
+title: "[ENHANCEMENT] "
+ref: "main"
+labels: 
+
+- enhancement
+---
+
+# Existing Feature
+
+What current feature or workflow is being improved?
+
+Example:
+
+- Notifications
+- Scanner Login
+- Release Monitor
+- Printing
+- Auth
+
+---
+
+# Proposed Improvement
+
+Describe the improvement.
+
+---
+
+# Expected Benefit
+
+Why would this improvement help?
+
+---
+
+# Impact
+
+- [ ] Small
+- [ ] Medium
+- [ ] Large
+
+---
+
+# Additional Notes
+
+Anything else worth mentioning.

.gitea/ISSUE_TEMPLATE/feature_request.md

@@ -0,0 +1,40 @@
+---
+name: Feature Request
+about: Suggest a brand new feature or module
+title: "[FEATURE] "
+ref: "main"
+labels: 
+
+- feature
+---
+
+# Problem Statement
+
+What problem are you trying to solve?
+
+---
+
+# Proposed Solution
+
+Describe the feature you would like added.
+
+---
+
+# Alternatives Considered
+
+Any other ideas, workarounds, or approaches?
+
+---
+
+# Priority
+
+- [ ] Nice to Have
+- [ ] Medium Priority
+- [ ] High Priority
+- [ ] Critical
+
+---
+
+# Additional Context
+
+Add mockups, screenshots, examples, or notes here.

.gitea/workflows/docker-build.yml

@@ -12,20 +12,20 @@ jobs:
     steps:
       - name: Checkout (local)
         run: |
-          git clone https://git.tuffraid.net/cowch/lst_v3.git .
+          git clone http://10.75.9.150:3100/cowch/lst_v3.git .
           git checkout ${{ gitea.sha }}
 
       - name: Login to registry
-        run: echo "${{ secrets.PASSWORD }}" | docker login git.tuffraid.net -u "cowch" --password-stdin
+        run: echo "${{ secrets.PASSWORD }}" | docker login 10.75.9.150:3100 -u "cowch" --password-stdin
 
       - name: Build image
         run: |
           docker build \
-            -t git.tuffraid.net/cowch/lst_v3:latest \
+            -t 10.75.9.150:3100/cowch/lst_v3:latest \
-            -t git.tuffraid.net/cowch/lst_v3:${{ gitea.sha }} \
+            -t 10.75.9.150:3100/cowch/lst_v3:${{ gitea.sha }} \
             .
 
       - name: Push
         run: |
-          docker push git.tuffraid.net/cowch/lst_v3:latest
+          docker push 10.75.9.150:3100/cowch/lst_v3:latest
-          docker push git.tuffraid.net/cowch/lst_v3:${{ gitea.sha }}
+          docker push 10.75.9.150:3100/cowch/lst_v3:${{ gitea.sha }}

.gitea/workflows/release.yml

@@ -14,12 +14,12 @@ jobs:
       # Examples:
       #   http://gitea.internal.lan:3000
       #   https://gitea-origin.yourdomain.local
-      GITEA_INTERNAL_URL: "https://git.tuffraid.net"
+      GITEA_INTERNAL_URL: "http://10.75.9.150:3100" #"https://git.tuffraid.net"
 
       # Internal/origin registry host. Usually same host as above, but without protocol.
       # Example:
       #   gitea.internal:3000
-      REGISTRY_HOST: "git.tuffraid.net"
+      REGISTRY_HOST:  "10.75.9.150:3100" #"git.tuffraid.net"
 
     steps:
       - name: Check out repository

.gitignore

@@ -9,8 +9,9 @@ downloads
 .scriptCreds
 node-v24.14.0-x64.msi
 postgresql-17.9-2-windows-x64.exe
-VSCodeUserSetup-x64-1.112.0.exe
+VSCodeSetup-x64-1.120.0.exe
 nssm.exe
+frontend/.tanstack
 
 # Logs
 logs

CHANGELOG.md

@@ -1,5 +1,234 @@
 # All Changes to LST can be found below.
 
+## [0.1.0-alpha.1](https://git.tuffraid.net/cowch/lst_v3/compare/v0.1.0-alpha.0...v0.1.0-alpha.1) (2026-05-19)
+
+
+### 🐛 Bug fixes
+
+* **notifications:** reprinting ([c8931c7](https://git.tuffraid.net/cowch/lst_v3/commits/c8931c7249b8f532b5dd37df3271da98f14ee710)), closes [#20](https://git.tuffraid.net/cowch/lst_v3/issues/20)
+* **settings:** failed build due it dormant import ([a7bb364](https://git.tuffraid.net/cowch/lst_v3/commits/a7bb364a2fd49d96b6195aca0cd58ba57c58f3a6))
+
+
+### 🛠️ Code Refactor
+
+* **servers:** changed activeity around and trying to make use of it ([514a44b](https://git.tuffraid.net/cowch/lst_v3/commits/514a44b6de3efe8dd8b308d98bdbc82e31ed8427))
+* **users:** lots of auth stuff added to make it more easy to manage users ([047cc7c](https://git.tuffraid.net/cowch/lst_v3/commits/047cc7cdf036c39a89a0b87ab59dda8328efe0c0))
+
+
+### 📈 Project changes
+
+* **app:** added in chokidar to monitor folders ([8dc4d70](https://git.tuffraid.net/cowch/lst_v3/commits/8dc4d70e2827f0a40d2f54886fd757c8a2dc5ac4))
+
+## [0.1.0-alpha.0](https://git.tuffraid.net/cowch/lst_v3/compare/v0.0.2-alpha.10...v0.1.0-alpha.0) (2026-05-14)
+
+
+### ⚠ BREAKING CHANGES
+
+* **app:** moved teh middleware to call the api hits to the main app and removed from
+everywhere else
+
+### 🌟 Enhancements
+
+* **notification:** migrated sql cleanup ([3e66c39](https://git.tuffraid.net/cowch/lst_v3/commits/3e66c3920d65cee7a0a788f3910c1ddf09a07805))
+* **scan users:** added in the place to add the new scanner users in ([ce9d8ea](https://git.tuffraid.net/cowch/lst_v3/commits/ce9d8eaaf5bcb8f53ea4bdc191347df8d589fdfa))
+
+
+### 🐛 Bug fixes
+
+* **anaylistics:** changes to the daily section so it populates correctly now ([f5bae2c](https://git.tuffraid.net/cowch/lst_v3/commits/f5bae2c0c24b85423c5c421164d94d58159ff70a))
+* **anaylitics:** unique values were missing causing a  weird crash ([13718fe](https://git.tuffraid.net/cowch/lst_v3/commits/13718fe70293c039bd1d9bf8cf395852e6ea6c21))
+* **app:** emit.maxlistener issue ([7c31b43](https://git.tuffraid.net/cowch/lst_v3/commits/7c31b43a4a313237fa63c0c9bbc3690b74f63a6f)), closes [#18](https://git.tuffraid.net/cowch/lst_v3/issues/18)
+* **app:** required auth was in wrong spot caused entire app to want you logged in ([d2a9e1d](https://git.tuffraid.net/cowch/lst_v3/commits/d2a9e1d1107ea05f13725e9528bc6ab1566c8efb))
+* **notification subs:** made it so only acitve show ([2616acf](https://git.tuffraid.net/cowch/lst_v3/commits/2616acf106530f5c5ee04d1b79033795cf06b42d)), closes [#14](https://git.tuffraid.net/cowch/lst_v3/issues/14)
+* **scanner:** changed to not crash on logging ([0de2579](https://git.tuffraid.net/cowch/lst_v3/commits/0de25799420f38a293ee9acc70eb36e3287145c4)), closes [#19](https://git.tuffraid.net/cowch/lst_v3/issues/19)
+* **scanner:** fixes to be more clear that you need to scan a command to start ([0575879](https://git.tuffraid.net/cowch/lst_v3/commits/05758791be7a50e90b5da05d4977e618c311f654)), closes [#16](https://git.tuffraid.net/cowch/lst_v3/issues/16)
+* **scanner:** logut out corrections ([85e96f5](https://git.tuffraid.net/cowch/lst_v3/commits/85e96f5ed13a81fd466c6bbff31c539244750838)), closes [#17](https://git.tuffraid.net/cowch/lst_v3/issues/17)
+* **table:** skelly table causing hydration error ([1bbf5c2](https://git.tuffraid.net/cowch/lst_v3/commits/1bbf5c2a4955107a36ace05595886d19cc8e64f4))
+
+
+### 📝 Chore
+
+* **mobile:** removed console log that shouldnt be there ([9631736](https://git.tuffraid.net/cowch/lst_v3/commits/9631736e263ed00189f8118f686690cab25f09d3))
+
+
+### 📚 Documentation
+
+* **scanner:** added in instructions on how to update the scanner ([b0c7277](https://git.tuffraid.net/cowch/lst_v3/commits/b0c7277a6cdb5becec3a994ea1d5cc2d7b0326aa))
+* **scanner:** added in westbend and dayton commands to scan for updates ([eb9d77c](https://git.tuffraid.net/cowch/lst_v3/commits/eb9d77c3d4767fd961759662ef44c3e09e00946b))
+
+
+### 🛠️ Code Refactor
+
+* **api:** changes to call a helper api to quit and redirect if needed ([c64392f](https://git.tuffraid.net/cowch/lst_v3/commits/c64392f45769108aa4134c7fd865f3d4bc664179))
+* **app:** changed ways we get data so we can have better reasons why app no worky ([30ff7b7](https://git.tuffraid.net/cowch/lst_v3/commits/30ff7b71d9d159ced263a5330d70d53b97393157))
+* **mobile:** scanner response ([a9c6925](https://git.tuffraid.net/cowch/lst_v3/commits/a9c69250bd3272ad682751e41b671c119cb678f1)), closes [#16](https://git.tuffraid.net/cowch/lst_v3/issues/16)
+* **scanner:** logging - version of app ([d61be61](https://git.tuffraid.net/cowch/lst_v3/commits/d61be61f4433a2be2678d724f4724301931614c9))
+* **scanner:** more scanner admin stuff ([eb950d2](https://git.tuffraid.net/cowch/lst_v3/commits/eb950d2c29f692b806d5cc4ab7014bd59a726a8d))
+* **scanner:** removed 69 as an option lol ([e7af3d1](https://git.tuffraid.net/cowch/lst_v3/commits/e7af3d11824b42915cf6789f9c508a727511d678))
+* **servers:** server name now links to the actual server:port ([ebf1060](https://git.tuffraid.net/cowch/lst_v3/commits/ebf1060475d37627b371bc6c79507cdde411600b))
+* **users:** some user refactoring and configuring ([342a97f](https://git.tuffraid.net/cowch/lst_v3/commits/342a97f6b1054443b9126186d2c7872fbd8586da))
+
+
+### 📈 Project changes
+
+* **mobile:** added in ehs config to make it more easy for users to update the scanner app on the fly ([dc95e50](https://git.tuffraid.net/cowch/lst_v3/commits/dc95e50a8412b4fbc629fd44fcb5c77295583ca8))
+* **notification:** removal of more console logs that shouldnt be here ([51026e3](https://git.tuffraid.net/cowch/lst_v3/commits/51026e3e2cce4d7f696d26aae305b3fd221f5bb1))
+* **servives:** helpers moved around ([e9e73c8](https://git.tuffraid.net/cowch/lst_v3/commits/e9e73c829c2e5726650c0ac7ffa6a9055dbc982b))
+* **updateserver:** changes to actually add the new env stuff ([bcb7773](https://git.tuffraid.net/cowch/lst_v3/commits/bcb7773007894ac2f85fe2a0b47faf14c7b474ad))
+
+## [0.0.2-alpha.10](https://git.tuffraid.net/cowch/lst_v3/compare/v0.0.2-alpha.9...v0.0.2-alpha.10) (2026-05-08)
+
+
+### 🌟 Enhancements
+
+* **analytics:** added in backend anaylitics ([9edafc9](https://git.tuffraid.net/cowch/lst_v3/commits/9edafc9d2810f339d197c10dfc6a037b3352d81f))
+* **api hits:** added in api hits for monitoring ([2721bb2](https://git.tuffraid.net/cowch/lst_v3/commits/2721bb2a3bf1f829591d26a0716f74c4f7fc0c79))
+* **scanner:** added in lanechecks ([87803ee](https://git.tuffraid.net/cowch/lst_v3/commits/87803eed43069b73de3f66e6524bb45da9c46334))
+
+
+### 🐛 Bug fixes
+
+* **scan user:** typo ([d8869b1](https://git.tuffraid.net/cowch/lst_v3/commits/d8869b103b80e4208b3928a370a9524ef33d25cd))
+* **schema:** typo in add_date ([7d7d991](https://git.tuffraid.net/cowch/lst_v3/commits/7d7d9911223905d6767b87d2471b6607a90f1ea7))
+* **spelling:** corrected the spelling on the file ([0459cd7](https://git.tuffraid.net/cowch/lst_v3/commits/0459cd788aaad6ac54a67e23f798ce5e5a437394))
+
+
+### 📝 Chore
+
+* **file:** name changes.. spelled wrong ([5fa70da](https://git.tuffraid.net/cowch/lst_v3/commits/5fa70da90ca290ee45088e9c8eb06ba48a6677af))
+* **server:** removed a console log that shouldnt be there ([1dba774](https://git.tuffraid.net/cowch/lst_v3/commits/1dba774abc54bf20850c3f26d49926e86d59712d))
+
+
+### 🛠️ Code Refactor
+
+* **analyitics:** finished analyitics as a base ([4424c74](https://git.tuffraid.net/cowch/lst_v3/commits/4424c742d24dc230b2bc1782e33535184c378cf0))
+* **scan:** bump in build and style update ([505d7ce](https://git.tuffraid.net/cowch/lst_v3/commits/505d7cea5d2f52fc4a3ec1edff1878be703c4034))
+* **scanner:** added toasts in to make it look better ([edb3668](https://git.tuffraid.net/cowch/lst_v3/commits/edb366854825f4c24ab5d77cf88759465d067f00))
+
+
+### 📝 Testing Code
+
+* **scanusers:** added in scan users as test ([1ff5e50](https://git.tuffraid.net/cowch/lst_v3/commits/1ff5e5032f9c8bf81f972dc99d6c86ba8d3936c6))
+
+
+### 📈 Project changes
+
+* **template:** bug in getting the template to work correctly ([e9b0101](https://git.tuffraid.net/cowch/lst_v3/commits/e9b01010954624aed738cd6e4b82fccbba195cc4))
+* **templates:** added in templates for the repo to make it more easy to manage and add in new ideas ([ca885fb](https://git.tuffraid.net/cowch/lst_v3/commits/ca885fb01a3c8bc22694c2e05269c43fcd4de70e))
+* **templates:** force useage ([6d8499b](https://git.tuffraid.net/cowch/lst_v3/commits/6d8499bfb85f7b9131b1ec7b31a17c4256d0f0cf))
+
+## [0.0.2-alpha.9](https://git.tuffraid.net/cowch/lst_v3/compare/v0.0.2-alpha.8...v0.0.2-alpha.9) (2026-05-06)
+
+
+### 🛠️ Code Refactor
+
+* **mobile:** valildation of server after each scan ([4ca74de](https://git.tuffraid.net/cowch/lst_v3/commits/4ca74de2795cea7244e38697d16afe2822164ed6))
+* **scanner:** added in running number ([a38e2e0](https://git.tuffraid.net/cowch/lst_v3/commits/a38e2e033977b725538e9a9046098d94194d549e))
+* **scanner:** finished login stuff for current routes ([1241253](https://git.tuffraid.net/cowch/lst_v3/commits/12412536d10981013053c39d156c6c9cb0babd11))
+
+
+### 📝 Testing Code
+
+* **scanner:** lane check ([d99449d](https://git.tuffraid.net/cowch/lst_v3/commits/d99449ddc4e2777c1b0fe9189ba0a7c01fe1dd8f))
+
+
+### 📈 Project Builds
+
+* **builds:** changed to ip as its on the same server ([3552ca3](https://git.tuffraid.net/cowch/lst_v3/commits/3552ca31f9f7b3bcbe557a145e7eb154bfdae79c))
+* **release:** bypass cloudflare upload limit ([b578f05](https://git.tuffraid.net/cowch/lst_v3/commits/b578f05d6482f9b6f30febeee6ab0b708a70f68b))
+
+## [0.0.2-alpha.8](https://git.tuffraid.net/cowch/lst_v3/compare/v0.0.2-alpha.7...v0.0.2-alpha.8) (2026-05-06)
+
+
+### 🌟 Enhancements
+
+* **mobile:** auth added in ([ba30281](https://git.tuffraid.net/cowch/lst_v3/commits/ba30281e59040513a036fb7413e372457d04a7c8))
+
+## [0.0.2-alpha.7](https://git.tuffraid.net/cowch/lst_v3/compare/v0.0.2-alpha.6...v0.0.2-alpha.7) (2026-05-06)
+
+
+### 🌟 Enhancements
+
+* **intial auth:** intial auth setup for the scanner ([cd13360](https://git.tuffraid.net/cowch/lst_v3/commits/cd13360cfb931daca50fd7b111e1c8f8ab09a909))
+* **mobile:** new route for the ehs launcher ([649ae1e](https://git.tuffraid.net/cowch/lst_v3/commits/649ae1ee9f245a9b5d308ea8a636357bf72b1e34))
+* **mobile:** shadcn like and tailwind added to make things look yummy ([7d2f048](https://git.tuffraid.net/cowch/lst_v3/commits/7d2f048932b77269568149de34351840b75486e2))
+* **mobile:** update notifications and more error handling added ([30ffd84](https://git.tuffraid.net/cowch/lst_v3/commits/30ffd843c725da79ed035e2d9564f60a6babcda8))
+* **scanner:** more work on the scanner and can now scan to prod no lst right now ([77b4533](https://git.tuffraid.net/cowch/lst_v3/commits/77b4533dea8314fd4fb81a597995cabd041fe188))
+* **servers:** added iowa ebm ([8446dbc](https://git.tuffraid.net/cowch/lst_v3/commits/8446dbc955462235b9df35c501354761661e4f6a))
+
+
+### 🐛 Bug fixes
+
+* **mobile:** typo for version checking ([0b7318f](https://git.tuffraid.net/cowch/lst_v3/commits/0b7318f8566d15414edd3cd67c89fa5346058ab0))
+
+
+### 🛠️ Code Refactor
+
+* **docker compose:** changed to have the correct url that will be used as this is for auth ([4e0cf8c](https://git.tuffraid.net/cowch/lst_v3/commits/4e0cf8c54c4dfd68edba7e733518846a47c55064))
+* **gp connection:** added in gp ip into env if not there use static name for dns ([36995e9](https://git.tuffraid.net/cowch/lst_v3/commits/36995e9fb42cfa1b72c096b8860866d70b86e70c))
+* **mobile:** more look and feel work ([bb6155c](https://git.tuffraid.net/cowch/lst_v3/commits/bb6155c9692220542a52664848abf0b9eee91a43))
+* **mobile:** moved the versioning lookup at at the mobile folder plus renamed ([bddc9ac](https://git.tuffraid.net/cowch/lst_v3/commits/bddc9aca0d2da2b2f53dec1250276d7a076a8601))
+* **scanner:** format changes ([518c0a8](https://git.tuffraid.net/cowch/lst_v3/commits/518c0a8c19a4bff0b757bbd06ca5460d3565d8bd))
+
+
+### 📈 Project Builds
+
+* **scripts:** changing how the relase works so it purposly builds before it trys to release ([83a542d](https://git.tuffraid.net/cowch/lst_v3/commits/83a542d1b7beafe394949c001917f2b25056fac2))
+
+## [0.0.2-alpha.6](https://git.tuffraid.net/cowch/lst_v3/compare/v0.0.2-alpha.1...v0.0.2-alpha.6) (2026-04-23)
+
+## [0.0.2-alpha.1](https://git.tuffraid.net/cowch/lst_v3/compare/v0.0.2-alpha.0...v0.0.2-alpha.1) (2026-04-23)
+
+## [0.0.2-alpha.0](https://git.tuffraid.net/cowch/lst_v3/compare/v0.0.1...v0.0.2-alpha.0) (2026-04-23)
+
+## [0.0.1](https://git.tuffraid.net/cowch/lst_v3/compare/v0.0.1-alpha.5...v0.0.1) (2026-04-23)
+
+
+### 🐛 Bug fixes
+
+* **frontend:** lingering import crashed us ([781025d](https://git.tuffraid.net/cowch/lst_v3/commits/781025dca00e9dd4b2ad9b283be944ed91bbc1e5))
+
+
+### 📝 Chore
+
+* **doc remove:** removed a doc and put it in the real area for docs ([a593bb2](https://git.tuffraid.net/cowch/lst_v3/commits/a593bb2baafd0166a178b80cd76dd8862f240e11))
+
+## [0.0.1-alpha.5](https://git.tuffraid.net/cowch/lst_v3/compare/v0.0.1-alpha.4...v0.0.1-alpha.5) (2026-04-23)
+
+
+### 🌟 Enhancements
+
+* **admin:** moved server build/update to full app ([cb00add](https://git.tuffraid.net/cowch/lst_v3/commits/cb00addee96b3ecccf2694f85cb7882cac9c7e3d))
+* **lstmobile:** intial scanner setup kinda working ([3734d9d](https://git.tuffraid.net/cowch/lst_v3/commits/3734d9daac143ad8fb4404c59990bc4f546f365b))
+* **oidc:** added in so we could use an oidc to login as well :D ([f7276ca](https://git.tuffraid.net/cowch/lst_v3/commits/f7276ca2d722e30da65bbead23dc9bd57df25aa7))
+* **servers:** added marked tree in to the mix ([4d53af0](https://git.tuffraid.net/cowch/lst_v3/commits/4d53af033876d81e0d38c148c15cb0af6f3d5bf0))
+
+
+### 🐛 Bug fixes
+
+* **datamart:** fixes to correct how we handle activations of new features and legacy queries ([b832d7a](https://git.tuffraid.net/cowch/lst_v3/commits/b832d7aa1ecd063be1bbb7e969617fc7a6376ffa))
+* **datamart:** if we do not have 2.0 warehousing activate we need to use legacy ([5b1c885](https://git.tuffraid.net/cowch/lst_v3/commits/5b1c88546ff9a42dc572450fe05ad68015edb627))
+* **gp:** weird issue with db username and password ([d6328ab](https://git.tuffraid.net/cowch/lst_v3/commits/d6328ab764c3626aef99727b873003384951d299))
+* **inventory:** changes to accruatly adjust the query and check the feature set ([32517d0](https://git.tuffraid.net/cowch/lst_v3/commits/32517d0c98c42a0f0f60135b4a9951c4090ccd58))
+* **logistics:** historical issue where it was being really weird ([cfbc156](https://git.tuffraid.net/cowch/lst_v3/commits/cfbc1565172f7c2e27f0a1593fe8e99b00d91bb7))
+* **logistics:** purchasing monitoring was going off every 5th min instead of every 5 min ([3639c1b](https://git.tuffraid.net/cowch/lst_v3/commits/3639c1b77c597a94816bfedd0892f0c8980c6403))
+* **ocp:** fixes to make sure we always hav printer.data as an array or dont do anything ([fb3cd85](https://git.tuffraid.net/cowch/lst_v3/commits/fb3cd85b411315cac0abd22d050ee88929754833))
+* **psi:** refactor psi queries ([a1eeade](https://git.tuffraid.net/cowch/lst_v3/commits/a1eeadeec438f7c5c6d31f190fee5c22f83dc6b0))
+
+
+### 📝 Chore
+
+* **clean:** removed bruno api a proper api doc will be added to lst later ([f716de1](https://git.tuffraid.net/cowch/lst_v3/commits/f716de1a58a4a4c02d9a0a375444ceecea4a018b))
+* **scripts:** added in a helper to remove old stuff ([de5df2b](https://git.tuffraid.net/cowch/lst_v3/commits/de5df2b00b1c6fe7c53d6ea075b4cf7e0fb845f9))
+
+
+### 🛠️ Code Refactor
+
+* **scanner:** more basic work to get the scanner just running ([82f8369](https://git.tuffraid.net/cowch/lst_v3/commits/82f8369640b2b0ff63dd640dc0aa0609a42c7dda))
+* **servers:** added mcd and stp1 ([88cef2a](https://git.tuffraid.net/cowch/lst_v3/commits/88cef2a56c390b692866658ce519e59ffeaf4c17))
+* **server:** server updates can now only be done from a dev pc ([7962463](https://git.tuffraid.net/cowch/lst_v3/commits/7962463927c4c5d2e12db9a0dd536b0f29fc65b2))
+* **sql:** changed sql connection to ip:port ([a6d53f0](https://git.tuffraid.net/cowch/lst_v3/commits/a6d53f0266f1edc3f3946cd1f07d893c8a98d9c7))
+
 ## [0.0.1-alpha.4](https://git.tuffraid.net/cowch/lst_v3/compare/v0.0.1-alpha.3...v0.0.1-alpha.4) (2026-04-15)
 
 

backend/admin/admin.routes.ts

@@ -1,12 +1,16 @@
 import type { Express } from "express";
 import { requireAuth } from "../middleware/auth.middleware.js";
+
 import build from "./admin.build.js";
 import update from "./admin.updateServer.js";
+import users from "./admin.users.js";
 
 export const setupAdminRoutes = (baseUrl: string, app: Express) => {
 	//stats will be like this as we dont need to change this
+
 	app.use(`${baseUrl}/api/admin/build`, requireAuth, build);
 	app.use(`${baseUrl}/api/admin/build`, requireAuth, update);
+	app.use(`${baseUrl}/api/admin/user`, requireAuth, users);
 
 	// all other system should be under /api/system/*
 };

backend/admin/admin.users.ts

@@ -0,0 +1,46 @@
+/**
+ * To be able to run this we need to set our dev pc in the .env.
+ * if its empty just ignore it. this will just be the double catch
+ */
+
+import { fromNodeHeaders } from "better-auth/node";
+import { Router } from "express";
+import { auth } from "../utils/auth.utils.js";
+import { apiReturn } from "../utils/returnHelper.utils.js";
+
+const r = Router();
+
+r.get("/", async (req, res) => {
+	const { users } = await auth.api.listUsers({
+		query: {
+			limit: 50,
+		},
+		headers: fromNodeHeaders(req.headers),
+	});
+
+	// console.log(error);
+
+	// if (error) {
+	// 	return apiReturn(res, {
+	// 		success: false,
+	// 		level: "info",
+	// 		module: "admin",
+	// 		subModule: "user",
+	// 		message: `There was an error getting the users.`,
+	// 		data: users,
+	// 		status: 400,
+	// 	});
+	// }
+
+	return apiReturn(res, {
+		success: true,
+		level: "info",
+		module: "admin",
+		subModule: "users",
+		message: `Current active users.`,
+		data: users,
+		status: 200,
+	});
+});
+
+export default r;

backend/app.ts

@@ -3,7 +3,9 @@ import { fileURLToPath } from "node:url";
 import { toNodeHandler } from "better-auth/node";
 import express from "express";
 import morgan from "morgan";
+import { umamiConfig } from "./configs/umami.config.js";
 import { createLogger } from "./logger/logger.controller.js";
+import { routeHitMiddleware } from "./middleware/routeHit.middleware.js";
 import { setupRoutes } from "./routeHandler.routes.js";
 import { auth } from "./utils/auth.utils.js";
 import { lstCors } from "./utils/cors.utils.js";
@@ -29,8 +31,26 @@ const createApp = async () => {
 	app.use(morgan("dev"));
 	app.set("trust proxy", true);
 	app.use(lstCors());
+	app.use(routeHitMiddleware);
 	app.all(`${baseUrl}/api/auth/*splat`, toNodeHandler(auth));
 	app.use(express.json());
+
+	app.get(`${baseUrl}/api/lst-config.js`, (_, res) => {
+		res.type("application/javascript");
+		res.setHeader("Cache-Control", "no-store");
+
+		res.send(`
+		window.LST_CONFIG = {
+			appName: ${JSON.stringify(umamiConfig.appName ?? "LST")},
+			site: ${JSON.stringify(umamiConfig.site ?? "unknown")},
+			server: ${JSON.stringify(umamiConfig.server ?? "unknown")},
+			appVersion: ${JSON.stringify(umamiConfig.appVersion ?? "dev")},
+			umamiHost: ${JSON.stringify(umamiConfig.umamiHost ?? "")},
+			umamiWebsiteId: ${JSON.stringify(umamiConfig.umamiWebsiteId ?? "")}
+		};
+	`);
+	});
+
 	setupRoutes(baseUrl, app);
 
 	app.use(

backend/auth/auth.routes.ts

@@ -1,9 +1,11 @@
 import type { Express } from "express";
+
 import login from "./login.route.js";
 import register from "./register.route.js";
 
 export const setupAuthRoutes = (baseUrl: string, app: Express) => {
 	//setup all the routes
+
 	app.use(`${baseUrl}/api/authentication/login`, login);
 	app.use(`${baseUrl}/api/authentication/register`, register);
 };

backend/configs/gpSql.config.ts

@@ -1,10 +1,16 @@
 import type sql from "mssql";
 
+// TODO : Remove this later and get it onto the env
 const username = "gpviewer";
 const password = "gp$$ViewOnly!";
 
+const port = process.env.SQL_PORT
+	? Number.parseInt(process.env.SQL_PORT, 10)
+	: undefined;
+
 export const gpSqlConfig: sql.config = {
-	server: `USMCD1VMS011`,
+	server: `${process.env.GP_SERVER ?? "USMCD1VMS011"}`,
+	port: port,
 	database: `ALPLA`,
 	user: username,
 	password: password,

backend/configs/prodSql.config.ts

@@ -1,7 +1,13 @@
 import type sql from "mssql";
+
+const port = process.env.SQL_PORT
+	? Number.parseInt(process.env.SQL_PORT, 10)
+	: undefined;
+
 export const prodSqlConfig: sql.config = {
 	server: `${process.env.PROD_SERVER}`,
 	database: `AlplaPROD_${process.env.PROD_PLANT_TOKEN}_cus`,
+	port: port,
 	user: process.env.PROD_USER,
 	password: process.env.PROD_PASSWORD,
 	options: {

backend/configs/umami.config.ts

@@ -0,0 +1,21 @@
+export type UmamiRuntimeConfig = {
+	appName: string;
+	site: string;
+	server: string;
+	appVersion: string;
+	umamiHost: string;
+	umamiWebsiteId: string;
+};
+
+export const umamiConfig: UmamiRuntimeConfig = {
+	appName: process.env.APP_NAME ?? "LST",
+	site: process.env.URL ?? "unknown",
+	server: process.env.PROD_PLANT_TOKEN ?? "unknown", // could also be server name based on our setup.
+	appVersion: process.env.NODE_ENV ?? "dev",
+	umamiHost: process.env.UMAMI_HOST ?? "",
+	umamiWebsiteId: process.env.UMAMI_WEBSITE_ID ?? "",
+};
+
+export function isUmamiEnabled() {
+	return Boolean(umamiConfig.umamiHost && umamiConfig.umamiWebsiteId);
+}

backend/db/db.controller.ts

@@ -1,6 +1,8 @@
 import { drizzle } from "drizzle-orm/postgres-js";
 import postgres from "postgres";
 
+import * as scanUserSchema from "./schema/scanUsers.js";
+
 const dbURL = `postgres://${process.env.DATABASE_USER}:${process.env.DATABASE_PASSWORD}@${process.env.DATABASE_HOST}:${process.env.DATABASE_PORT}/${process.env.DATABASE_DB}`;
 
 const queryClient = postgres(dbURL, {
@@ -13,4 +15,10 @@ const queryClient = postgres(dbURL, {
 	},
 });
 
-export const db = drizzle({ client: queryClient });
+//export const db = drizzle({ client: queryClient });
+
+export const db = drizzle(queryClient, {
+	schema: {
+		...scanUserSchema,
+	},
+});

backend/db/schema/analytics.schema.ts

@@ -0,0 +1,21 @@
+import { integer, pgTable, text, timestamp, uuid } from "drizzle-orm/pg-core";
+
+export const analytics = pgTable("analytics", {
+	id: uuid("id").defaultRandom().primaryKey(),
+
+	createdAt: timestamp("created_at").defaultNow().notNull(),
+
+	method: text("method").notNull(),
+	routePattern: text("route_pattern").notNull(),
+	actualPath: text("actual_path").notNull(),
+
+	statusCode: integer("status_code").notNull(),
+	durationMs: integer("duration_ms").notNull(),
+
+	module: text("module"),
+	userId: text("user_id"),
+	userEmail: text("user_email"),
+
+	ipAddress: text("ip_address"),
+	userAgent: text("user_agent"),
+});

backend/db/schema/dailyAnalytics.schema.ts

@@ -0,0 +1,45 @@
+import {
+	date,
+	integer,
+	pgTable,
+	text,
+	timestamp,
+	unique,
+	uuid,
+} from "drizzle-orm/pg-core";
+
+export const analyticsDaily = pgTable(
+	"analytics_daily",
+	{
+		id: uuid("id").defaultRandom().primaryKey(),
+
+		businessDate: date("business_date", { mode: "string" }).notNull(),
+
+		method: text("method").notNull(),
+		routePattern: text("route_pattern").notNull(),
+		module: text("module").notNull(),
+
+		totalHits: integer("total_hits").notNull(),
+		uniqueUsers: integer("unique_users").notNull(),
+
+		successCount: integer("success_count").notNull(),
+		errorCount: integer("error_count").notNull(),
+
+		avgDurationMs: integer("avg_duration_ms").notNull(),
+		maxDurationMs: integer("max_duration_ms").notNull(),
+
+		firstHitAt: timestamp("first_hit_at").notNull(),
+		lastHitAt: timestamp("last_hit_at").notNull(),
+
+		createdAt: timestamp("created_at").defaultNow().notNull(),
+		updatedAt: timestamp("updated_at").defaultNow().notNull(),
+	},
+	(table) => [
+		unique("analytics_daily_business_route_unique").on(
+			table.businessDate,
+			table.method,
+			table.routePattern,
+			table.module,
+		),
+	],
+);

backend/db/schema/scanUsers.ts

@@ -0,0 +1,48 @@
+import {
+	boolean,
+	jsonb,
+	pgEnum,
+	pgTable,
+	text,
+	timestamp,
+	unique,
+	uuid,
+} from "drizzle-orm/pg-core";
+import { createInsertSchema, createSelectSchema } from "drizzle-zod";
+import type z from "zod";
+
+export const mobileRoleEnum = pgEnum("mobile_role", [
+	"user",
+	"lead",
+	"manager",
+	"admin",
+]);
+
+export const scanUser = pgTable(
+	"scan_users",
+	{
+		id: uuid("id").defaultRandom().primaryKey(),
+		name: text("name").notNull(), // the user that will be using the scanner
+		scannerId: text("scanner_id").unique().notNull(),
+		pinNumber: text("pin_number").unique().notNull(),
+		pinHash: text("pin_hash").notNull(),
+		excludedCommand: jsonb("excluded_commands").default([]),
+		role: mobileRoleEnum("role").notNull().default("user"),
+		active: boolean("active").default(true),
+		lastScan: timestamp("last_scan").defaultNow(),
+		add_Date: timestamp("add_Date").defaultNow(),
+		upd_date: timestamp("upd_date").defaultNow(),
+	},
+	(table) => ({
+		userNotificationUnique: unique("scan_user_unique").on(
+			table.scannerId,
+			table.pinNumber,
+		),
+	}),
+);
+
+export const scanUserSchema = createSelectSchema(scanUser);
+export const newsSanUserSchema = createInsertSchema(scanUser);
+
+export type ScanUser = z.infer<typeof scanUserSchema>;
+export type NewScanUser = z.infer<typeof newsSanUserSchema>;

backend/db/schema/scanlog.schema.ts

@@ -0,0 +1,23 @@
+import { jsonb, pgTable, text, timestamp, uuid } from "drizzle-orm/pg-core";
+import { createInsertSchema, createSelectSchema } from "drizzle-zod";
+import type z from "zod";
+
+export const scanLog = pgTable("scan_log", {
+	id: uuid("id").defaultRandom().primaryKey(),
+	user: text("user"),
+	scannerId: text("scanner_id"),
+	message: text("message").notNull(),
+	prompt: text("prompt"),
+	commandDescription: text("command_description"),
+	runningNumber: text("running_number").default("0"),
+	status: text("status"),
+	scannerVersion: text("scanner_version").default("0"),
+	lines: jsonb("lines").default([]),
+	add_Date: timestamp("add_date").defaultNow(),
+});
+
+export const scanLogSchema = createSelectSchema(scanLog);
+export const newScanLogSchema = createInsertSchema(scanLog);
+
+export type Printer = z.infer<typeof scanLogSchema>;
+export type NewPrinter = z.infer<typeof newScanLogSchema>;

backend/gpSql/gpSql.routes.ts

@@ -1,5 +1,6 @@
 import { type Express, Router } from "express";
 import { requireAuth } from "../middleware/auth.middleware.js";
+
 import restart from "./gpSqlRestart.route.js";
 import start from "./gpSqlStart.route.js";
 import stop from "./gpSqlStop.route.js";
@@ -7,11 +8,10 @@ export const setupGPSqlRoutes = (baseUrl: string, app: Express) => {
 	//setup all the routes
 	// Apply auth to entire router
 	const router = Router();
-	router.use(requireAuth);
 
 	router.use(start);
 	router.use(stop);
 	router.use(restart);
 
-	app.use(`${baseUrl}/api/system/gpSql`, router);
+	app.use(`${baseUrl}/api/system/gpSql`, requireAuth, router);
 };

backend/gpSql/gpSqlConnection.controller.ts

@@ -13,7 +13,9 @@ let attempt = 0;
 const maxAttempts = 10;
 
 export const connectGPSql = async () => {
-	const serverUp = await checkHostnamePort(`USMCD1VMS011:1433`);
+	const serverUp = await checkHostnamePort(
+		`${process.env.GP_SERVER ?? "usmcd1vms011"}:1433`,
+	);
 	if (!serverUp) {
 		// we will try to reconnect
 		connected = false;
@@ -53,13 +55,14 @@ export const connectGPSql = async () => {
 			notify: false,
 		});
 	} catch (error) {
+		console.log(error);
 		reconnectToSql;
 		return returnFunc({
 			success: false,
 			level: "error",
 			module: "system",
 			subModule: "db",
-			message: "Failed to connect to the prod sql server.",
+			message: "Failed to connect to the gp sql server.",
 			data: [error],
 			notify: false,
 		});
@@ -118,7 +121,9 @@ export const reconnectToSql = async () => {
 
 		await new Promise((res) => setTimeout(res, delayStart));
 
-		const serverUp = await checkHostnamePort(`${process.env.PROD_SERVER}:1433`);
+		const serverUp = await checkHostnamePort(
+			`${process.env.GP_SERVER ?? "usmcd1vms011"}:1433`,
+		);
 
 		if (!serverUp) {
 			delayStart = Math.min(delayStart * 2, 30000); // exponential backoff until up to 30000

backend/middleware/routeHit.middleware.ts

@@ -0,0 +1,83 @@
+// routeHit.middleware.ts
+
+import type { NextFunction, Request, Response } from "express";
+import {
+	createRouteHit,
+	shouldIgnoreRoute,
+} from "../utils/analyticRouteHits.utils.js";
+
+export function routeHitMiddleware(
+	req: Request,
+	res: Response,
+	next: NextFunction,
+) {
+	const start = performance.now();
+
+	res.on("finish", () => {
+		const actualPath = getActualPath(req);
+
+		if (shouldIgnoreRoute(actualPath)) {
+			return;
+		}
+
+		const durationMs = Math.round(performance.now() - start);
+
+		const routePattern = getRoutePattern(req) as string;
+		const module = getModuleName(req);
+
+		void createRouteHit({
+			method: req.method,
+			routePattern,
+			actualPath,
+			statusCode: res.statusCode,
+			durationMs,
+			module,
+
+			// adjust these names to your Better Auth/session shape
+			userId: req.user?.id ?? null,
+			userEmail: req.user?.email ?? null,
+
+			ipAddress: req.ip ?? null,
+			userAgent: req.get("user-agent") ?? null,
+		}).catch((err) => {
+			console.error("Failed to save route hit", err);
+		});
+	});
+
+	next();
+}
+
+function getActualPath(req: Request) {
+	return req.originalUrl.split("?")[0] ?? req.path ?? "unknown";
+}
+
+function getRoutePattern(req: Request) {
+	const baseUrl = req.baseUrl || "";
+	const routePath = req.route?.path;
+
+	if (typeof routePath === "string") {
+		return `${baseUrl}${routePath}`;
+	}
+
+	return getActualPath(req);
+}
+
+function getModuleName(req: Request) {
+	const path = req.originalUrl.split("?")[0];
+
+	if (path?.includes("/printers")) return "printers";
+	if (path?.includes("/releases")) return "releases";
+	if (path?.includes("/quality")) return "quality";
+	if (path?.includes("/scanner")) return "scanner";
+	if (path?.includes("/settings")) return "settings";
+	if (path?.includes("/users")) return "users";
+	if (path?.includes("/mobile")) return "mobile";
+	if (path?.includes("/servers")) return "servers";
+	if (path?.includes("/logistics")) return "servers";
+	if (path?.includes("/ocp")) return "ocp";
+	if (path?.includes("/auth")) return "auth";
+	if (path?.includes("/datamart")) return "datamart";
+	if (path?.includes("/opendock")) return "opendock";
+
+	return "unknown";
+}

backend/mobile/availableScanIds.route.ts

@@ -0,0 +1,54 @@
+import { eq } from "drizzle-orm";
+import { Router } from "express";
+import { db } from "../db/db.controller.js";
+import { scanUser } from "../db/schema/scanUsers.js";
+import { settings } from "../db/schema/settings.schema.js";
+import { apiReturn } from "../utils/returnHelper.utils.js";
+
+const r = Router();
+
+// scanners that are dedicated to specific users.
+const SPECIAL_SCANNERS = [98];
+
+const buildAllowedScannerIds = (scannerCount: number) => {
+	const generatedIds = Array.from({ length: scannerCount }, (_, i) => i + 1);
+
+	return Array.from(new Set([...generatedIds, ...SPECIAL_SCANNERS])).sort(
+		(a, b) => a - b,
+	);
+};
+
+r.get("/", async (_, res) => {
+	// get the scan users and setting
+	const scanusers = await db.select().from(scanUser);
+	const scannerIdSetting = await db
+		.select()
+		.from(settings)
+		.where(eq(settings.name, "scannerIds"));
+
+	const usedScannerIds = scanusers.map((x) => Number(x.scannerId));
+	const allowedScannerIds = buildAllowedScannerIds(
+		Number(scannerIdSetting[0]?.value ?? 0),
+	);
+
+	const availableScannerIds = allowedScannerIds.filter(
+		(id) => !usedScannerIds.includes(id),
+	);
+
+	const data = availableScannerIds.map((id) => ({
+		label: `${id}`,
+		value: id,
+	}));
+
+	return apiReturn(res, {
+		success: true,
+		level: "info",
+		module: "mobile",
+		subModule: "scanner",
+		message: `There are ${availableScannerIds.length} scanner id's`,
+		data,
+		status: 200,
+	});
+});
+
+export default r;

backend/mobile/downloadApps.route.ts

@@ -0,0 +1,105 @@
+import fs from "node:fs";
+import { Router } from "express";
+import path from "path";
+import { fileURLToPath } from "url";
+
+const router = Router();
+
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);
+
+const downloadDir = path.resolve(__dirname, "../../downloads/mobile");
+
+const currentApk = {
+	fileName: "lst-mobile.apk",
+};
+
+router.get("/latest", (_, res) => {
+	const apkPath = path.join(downloadDir, currentApk.fileName);
+
+	if (!fs.existsSync(apkPath)) {
+		return res.status(404).json({ success: false, message: "APK not found" });
+	}
+
+	res.setHeader("Content-Type", "application/vnd.android.package-archive");
+	res.setHeader(
+		"Content-Disposition",
+		`attachment; filename="${currentApk.fileName}"`,
+	);
+
+	return res.sendFile(apkPath);
+});
+
+router.get("/ehs", (_, res) => {
+	const apkPath = path.join(downloadDir, "EHS.apk");
+
+	if (!fs.existsSync(apkPath)) {
+		return res.status(404).json({ success: false, message: "APK not found" });
+	}
+
+	res.setHeader("Content-Type", "application/vnd.android.package-archive");
+	res.setHeader("Content-Disposition", `attachment; filename="EHS.apk"`);
+
+	return res.sendFile(apkPath);
+});
+
+router.get("/ehs/xml", (_, res) => {
+	const xmlPath = path.join(downloadDir, "enterprisehomescreen.xml");
+
+	if (!fs.existsSync(xmlPath)) {
+		return res.status(404).json({
+			success: false,
+			message: "EHS XML not found",
+		});
+	}
+
+	res.setHeader("Content-Type", "application/xml");
+	res.setHeader(
+		"Content-Disposition",
+		`attachment; filename="enterprisehomescreen.xml"`,
+	);
+
+	return res.sendFile(xmlPath);
+});
+
+router.get("/upgrade/android/13", (_, res) => {
+	const apkPath = path.join(
+		downloadDir,
+		"HE_FULL_UPDATE_13-51-16.00-TG-U00-STD-HEL-04.zip",
+	);
+
+	if (!fs.existsSync(apkPath)) {
+		return res.status(404).json({ success: false, message: "APK not found" });
+	}
+
+	//res.setHeader("Content-Type", "application/vnd.android.package-archive");
+	res.setHeader("Content-Type", "application/zip");
+	res.setHeader(
+		"Content-Disposition",
+		`attachment; filename="HE_FULL_UPDATE_13.zip"`,
+	);
+
+	return res.sendFile(apkPath);
+});
+
+router.get("/upgrade/android/14", (_, res) => {
+	const apkPath = path.join(
+		downloadDir,
+		"HE_FULL_UPDATE_14-38-04.00-UG-U15-STD-HEL-04.zip",
+	);
+
+	if (!fs.existsSync(apkPath)) {
+		return res.status(404).json({ success: false, message: "APK not found" });
+	}
+
+	//res.setHeader("Content-Type", "application/vnd.android.package-archive");
+	res.setHeader("Content-Type", "application/zip");
+	res.setHeader(
+		"Content-Disposition",
+		`attachment; filename="HE_FULL_UPDATE_14.zip"`,
+	);
+
+	return res.sendFile(apkPath);
+});
+
+export default router;

backend/mobile/laneCheck.ts

@@ -0,0 +1,60 @@
+import { Router } from "express";
+import { prodQuery } from "../prodSql/prodSqlQuery.controller.js";
+import {
+	type SqlQuery,
+	sqlQuerySelector,
+} from "../prodSql/prodSqlQuerySelector.utils.js";
+import { runProdApi } from "../utils/prodEndpoint.utils.js";
+import { apiReturn, returnFunc } from "../utils/returnHelper.utils.js";
+import { tryCatch } from "../utils/trycatch.utils.js";
+
+const router = Router();
+
+router.post("/", async (req, res) => {
+	const body = req.body;
+
+	const lane = body.lane.split("#");
+
+	// check if the plant has warehousing activated
+	const featureQ = sqlQuerySelector(`featureCheck`) as SqlQuery;
+
+	const { data: fd, error: fe } = await tryCatch(
+		prodQuery(featureQ.query, `Running feature check`),
+	);
+
+	if (fe) {
+		return returnFunc({
+			success: false,
+			level: "error",
+			module: "datamart",
+			subModule: "query",
+			message: `feature check failed`,
+			data: fe as any,
+			notify: false,
+		});
+	}
+
+	console.log(fd);
+
+	const laneData = await runProdApi({
+		method: "post",
+		endpoint: "/public/v1.1/Warehousing/GetWarehouseUnits",
+		data: [
+			{
+				laneIds: [lane[2]],
+			},
+		],
+	});
+
+	return apiReturn(res, {
+		success: true,
+		level: "info",
+		module: "mobile",
+		subModule: "lane check",
+		message: `all data for lane Id: ${lane}`,
+		data: laneData?.data ?? [],
+		status: 200,
+	});
+});
+
+export default router;

backend/mobile/mobile.routes.ts

@@ -0,0 +1,23 @@
+import type { Express } from "express";
+import { featureCheck } from "../middleware/featureActive.middleware.js";
+import available from "./availableScanIds.route.js";
+import downloads from "./downloadApps.route.js";
+import lanes from "./laneCheck.js";
+import authPin from "./mobileAuth.route.js";
+import newPin from "./mobilePin.route.js";
+import logs from "./scanLogs.route.js";
+import version from "./version.route.js";
+
+export const setupMobileRoutes = (baseUrl: string, app: Express) => {
+	//stats will be like this as we dont need to change this
+
+	app.use(`${baseUrl}/api/mobile/version`, featureCheck("mobile"), version);
+	app.use(`${baseUrl}/api/mobile/apk`, featureCheck("mobile"), downloads);
+	app.use(`${baseUrl}/api/mobile/logs`, featureCheck("mobile"), logs);
+	app.use(`${baseUrl}/api/mobile/auth`, featureCheck("mobile"), authPin);
+	app.use(`${baseUrl}/api/mobile/pin`, featureCheck("mobile"), newPin);
+	app.use(`${baseUrl}/api/mobile/laneCheck`, featureCheck("mobile"), lanes);
+	app.use(`${baseUrl}/api/mobile/available`, featureCheck("mobile"), available);
+
+	// all other system should be under /api/system/*
+};

backend/mobile/mobileAuth.route.ts

@@ -0,0 +1,343 @@
+import bcrypt from "bcryptjs";
+import { eq, sql } from "drizzle-orm";
+import { Router } from "express";
+import z from "zod";
+import { db } from "../db/db.controller.js";
+import {
+	type NewScanUser,
+	type ScanUser,
+	scanUser,
+} from "../db/schema/scanUsers.js";
+import { requireAuth } from "../middleware/auth.middleware.js";
+import { apiReturn, returnFunc } from "../utils/returnHelper.utils.js";
+import { tryCatch } from "../utils/trycatch.utils.js";
+
+const r = Router();
+
+export async function hashPin(pin: string) {
+	//   if (!/^\d{6}$/.test(pin)) {
+	//     throw new Error("PIN must be exactly 6 digits");
+	//   }
+
+	return bcrypt.hashSync(pin, 12);
+}
+
+const registerSchema = z.object({
+	name: z.string().min(2).max(100),
+	pinNumber: z.string(),
+	scannerId: z
+		.string()
+		.min(1)
+		.max(500)
+		.optional()
+		.describe("if you leave blank it will be the same as your username"),
+	role: z
+		.enum(["user", "lead", "manager", "admin"])
+		.optional()
+		.describe("What roles are available to use."),
+	pinHash: z.string().optional(),
+});
+
+r.post("/pin", async (req, res) => {
+	const { pin } = req.body;
+
+	if (!pin || pin.length !== 6) {
+		return apiReturn(res, {
+			success: false,
+			level: "error",
+			module: "mobile",
+			subModule: "auth",
+			message: `Pin number must be a min of 6 digits`,
+			data: [],
+			status: 401,
+		});
+	}
+
+	// const user = await db
+	// 	.select()
+	// 	.from(scanUser)
+	// 	.where(eq(scanUser.pinNumber, parseInt(pin, 10)));
+
+	const user = await db.query.scanUser.findFirst({
+		where: (u, { eq }) => eq(u.pinNumber, pin),
+	});
+
+	if (!user) {
+		return apiReturn(res, {
+			success: false,
+			level: "error",
+			module: "mobile",
+			subModule: "auth",
+			message: `Invalid login please try again.`,
+			data: [],
+			status: 401,
+		});
+	}
+
+	const validPin = bcrypt.compareSync(pin, user.pinHash);
+
+	if (!validPin) {
+		return apiReturn(res, {
+			success: false,
+			level: "error",
+			module: "mobile",
+			subModule: "auth",
+			message: `Invalid pin please try again.`,
+			data: [],
+			status: 401,
+		});
+	}
+
+	return apiReturn(res, {
+		success: true,
+		level: "info",
+		module: "mobile",
+		subModule: "auth",
+		message: `Welcome back ${user.name}`,
+		data: user as ScanUser | any,
+		status: 200,
+	});
+});
+
+r.post("/user", async (req, res) => {
+	try {
+		// validate the body is correct before accepting it
+		let validated = registerSchema.parse(req.body);
+
+		validated = {
+			...validated,
+			pinHash: await hashPin(validated.pinNumber.toString()),
+		};
+
+		const values: NewScanUser = {
+			name: validated.name,
+			pinNumber: validated.pinNumber,
+			pinHash: validated.pinHash ?? "",
+			scannerId: validated.scannerId ?? "",
+		};
+
+		const newUser = await db.insert(scanUser).values(values).returning();
+
+		apiReturn(res, {
+			success: true,
+			level: "info", //connect.success ? "info" : "error",
+			module: "mobile",
+			subModule: "auth",
+			message: `${validated.name} was just created`,
+			data: newUser as any,
+			status: 200, //connect.success ? 200 : 400,
+		});
+	} catch (err) {
+		if (err instanceof z.ZodError) {
+			const flattened = z.flattenError(err);
+			// return res.status(400).json({
+			// 	error: "Validation failed",
+			// 	details: flattened,
+			// });
+
+			return apiReturn(res, {
+				success: false,
+				level: "error", //connect.success ? "info" : "error",
+				module: "mobile",
+				subModule: "auth",
+				message: "Validation failed",
+				data: [flattened.fieldErrors],
+				status: 400, //connect.success ? 200 : 400,
+			});
+		}
+
+		return apiReturn(res, {
+			success: false,
+			level: "error", //connect.success ? "info" : "error",
+			module: "mobile",
+			subModule: "auth",
+			message:
+				"This User already exist with this pin or scanner id please try again",
+			data: [err],
+			status: 400, //connect.success ? 200 : 400,
+		});
+	}
+});
+
+r.get("/user", requireAuth, async (_, res) => {
+	const { data, error } = await tryCatch(db.select().from(scanUser));
+
+	// await trackLstEvent({
+	// 	eventName: "mobile_get_users",
+	// 	url: "/mobile/users",
+	// 	eventData: {
+	// 		module: "mobile",
+	// 	},
+	// });
+
+	if (error) {
+		return apiReturn(res, {
+			success: false,
+			level: "error",
+			module: "mobile",
+			subModule: "auth",
+			message: `There was an error getting the user`,
+			data: error as any,
+			status: 400,
+		});
+	}
+
+	if (!data) {
+		return apiReturn(res, {
+			success: true,
+			level: "info",
+			module: "mobile",
+			subModule: "auth",
+			message: `There are no users you should add one . `,
+			data: [],
+			status: 200,
+		});
+	}
+
+	return apiReturn(res, {
+		success: true,
+		level: "info",
+		module: "mobile",
+		subModule: "auth",
+		message: `All users. `,
+		data,
+		status: 200,
+	});
+});
+
+r.patch("/user/:id", requireAuth, async (req, res) => {
+	const updates: Record<string, unknown | null> = {};
+	const { id } = req.params;
+
+	const { data, error } = await tryCatch(
+		db.query.scanUser.findFirst({
+			where: (u, { eq }) => eq(u.id, `${id}`),
+		}),
+	);
+
+	if (error) {
+		return apiReturn(res, {
+			success: false,
+			level: "error",
+			module: "mobile",
+			subModule: "auth",
+			message: `There was an error getting the user`,
+			data: error as any,
+			status: 400,
+		});
+	}
+
+	if (!data) {
+		return apiReturn(res, {
+			success: false,
+			level: "error",
+			module: "mobile",
+			subModule: "auth",
+			message: `Invalid user id was passed over. `,
+			data: [],
+			status: 400,
+		});
+	}
+
+	if (req.body?.name !== undefined) {
+		updates.name = req.body.name;
+	}
+
+	if (req.body?.pinNumber !== undefined) {
+		const existing = await db.query.scanUser.findFirst({
+			where: (u, { eq }) => eq(u.pinHash, req.body.pinNumber),
+		});
+
+		if (existing)
+			return returnFunc({
+				success: false,
+				level: "error",
+				module: "mobile",
+				subModule: "auth",
+				message: `${req.body.pinNumber} already exists please try again`,
+				data: [],
+				notify: false,
+				room: "",
+			});
+		updates.pinNumber = req.body.pinNumber;
+		updates.pinHash = await hashPin(req.body.pinNumber);
+	}
+
+	if (req.body?.scannerId !== undefined) {
+		updates.scannerId = req.body.scannerId;
+	}
+
+	if (req.body?.active !== undefined) {
+		updates.active = req.body.active;
+	}
+
+	if (req.body?.excludedCommand !== undefined) {
+		updates.excludedCommand = req.body.excludedCommand;
+	}
+
+	if (req.body?.role !== undefined) {
+		updates.role = req.body.role;
+	}
+
+	updates.upd_date = sql`NOW()`;
+
+	const updatedSetting = await db
+		.update(scanUser)
+		.set(updates)
+		.where(eq(scanUser.id, `${id}`))
+		.returning();
+
+	return apiReturn(res, {
+		success: true,
+		level: "info",
+		module: "mobile",
+		subModule: "user",
+		message: `User ${data.name} was updated. `,
+		data: updatedSetting,
+		status: 200,
+	});
+});
+
+r.delete("/user/:id", requireAuth, async (req, res) => {
+	const { id } = req.params;
+
+	const { data, error } = await tryCatch(
+		db.delete(scanUser).where(eq(scanUser.id, `${id}`)),
+	);
+
+	if (error) {
+		return apiReturn(res, {
+			success: false,
+			level: "error",
+			module: "mobile",
+			subModule: "auth",
+			message: `There was an error deleting the user`,
+			data: error as any,
+			status: 400,
+		});
+	}
+
+	if (!data) {
+		return apiReturn(res, {
+			success: false,
+			level: "error",
+			module: "mobile",
+			subModule: "auth",
+			message: `There was no user to delete. `,
+			data: [],
+			status: 400,
+		});
+	}
+
+	return apiReturn(res, {
+		success: true,
+		level: "info",
+		module: "mobile",
+		subModule: "user",
+		message: `User was deleted. `,
+		data: data ?? [],
+		status: 200,
+	});
+});
+
+export default r;

backend/mobile/mobilePin.route.ts

@@ -0,0 +1,21 @@
+import { Router } from "express";
+import { generateUniquePin } from "../utils/generateScannerPin.utils.js";
+import { apiReturn } from "../utils/returnHelper.utils.js";
+
+const r = Router();
+
+r.get("/new", async (_, res) => {
+	const getPin = await generateUniquePin();
+
+	return apiReturn(res, {
+		success: getPin.success,
+		level: getPin.level,
+		module: "mobile",
+		subModule: "auth",
+		message: getPin.message,
+		data: getPin.data,
+		status: getPin.success ? 200 : 400,
+	});
+});
+
+export default r;

backend/mobile/scanLogs.route.ts

@@ -0,0 +1,46 @@
+import { eq, sql } from "drizzle-orm";
+import { Router } from "express";
+import { db } from "../db/db.controller.js";
+import { scanLog } from "../db/schema/scanlog.schema.js";
+import { scanUser } from "../db/schema/scanUsers.js";
+import { apiReturn } from "../utils/returnHelper.utils.js";
+
+const router = Router();
+
+router.post("/", async (req, res) => {
+	const body = req.body;
+	try {
+		await db
+			.update(scanUser)
+			.set({ lastScan: sql`NOW()` })
+			.where(eq(scanUser.name, body.name));
+	} catch (error) {
+		console.log(error);
+	}
+	const newLog = await db
+		.insert(scanLog)
+		.values({
+			scannerId: body.scannerId ?? "",
+			message: body.message ?? "",
+			prompt: body.prompt ?? "",
+			commandDescription: body.commandDescription ?? "",
+			status: body.status ?? "",
+			lines: body.lines ?? "",
+			user: body.user ?? "",
+			runningNumber: body.runningNumber ?? "",
+			scannerVersion: body.scannerVersion ?? "0",
+		})
+		.returning();
+
+	return apiReturn(res, {
+		success: true,
+		level: "info",
+		module: "mobile",
+		subModule: "scan logs",
+		message: `New log from ${body.scannerId}`,
+		data: newLog,
+		status: 200,
+	});
+});
+
+export default router;

backend/mobile/version.route.ts

@@ -0,0 +1,40 @@
+import fs from "node:fs";
+import { and, eq } from "drizzle-orm";
+import { Router } from "express";
+import path from "path";
+import { db } from "../db/db.controller.js";
+import { settings } from "../db/schema/settings.schema.js";
+
+const router = Router();
+
+const projectRoot = path.resolve("./lstMobile"); // adjust as needed
+const appJsonPath = path.join(projectRoot, "app.json");
+
+router.get("/", async (req, res) => {
+	const baseUrl = `${req.protocol}://${req.get("host")}`;
+	const mobileSettings = await db
+		.select()
+		.from(settings)
+		.where(
+			and(
+				eq(settings.moduleName, "mobile"),
+				eq(settings.settingType, "standard"),
+			),
+		);
+
+	const raw = fs.readFileSync(appJsonPath, "utf-8");
+	const config = JSON.parse(raw);
+
+	const exp = config.expo;
+
+	res.json({
+		packageName: exp.android?.package,
+		versionName: exp.version,
+		versionCode: exp.android?.versionCode,
+		minSupportedVersionCode: exp?.android?.minSupportedVersionCode ?? 0,
+		downloadUrl: `${baseUrl}/lst/api/mobile/apk/latest`,
+		settings: mobileSettings,
+	});
+});
+
+export default router;

backend/notification/notification.SqlJobCleanUp.ts

@@ -0,0 +1,80 @@
+import { prodQuery } from "../prodSql/prodSqlQuery.controller.js";
+import {
+	type SqlQuery,
+	sqlQuerySelector,
+} from "../prodSql/prodSqlQuerySelector.utils.js";
+import { tryCatch } from "../utils/trycatch.utils.js";
+
+// disable the jobs
+const jobNames: string[] = [
+	"monitor_$_lots",
+	"monitor_$_lots_2",
+	"monitor$lots",
+	"Monitor_APO", //listen for people to cry this is no longer a thing
+	"Monitor_APO2",
+	"Monitor_AutoConsumeMaterials", // TODO: migrate to lst
+	"Monitor_AutoConsumeMaterials_iow1",
+	"Monitor_AutoConsumeMaterials_iow2",
+	"Monitor_BlockedINV_Loc",
+	"monitor_inv_cycle",
+	"monitor_inv_cycle_1",
+	"monitor_inv_cycle_2",
+	"monitor_edi_import", // TODO: migrate to lst -- for the query select count(*) from AlplaPROD_test3.dbo.T_EDIDokumente (nolock) where /* IdLieferant > 1  and */ add_date > DATEADD(MINUTE, -30, getdate())
+	"Monitor_Lot_Progression",
+	"Monitor_Lots", // TODO: migrate to lst -- this should be the one where we monitor the when a lot is assigned if its missing some data.
+	"Monitor_MinMax", // TODO:Migrate to lst
+	"Monitor_MinMax_iow2",
+	"Monitor_PM",
+	"Monitor_Purity",
+	"monitor_wastebookings", // TODO: Migrate
+	"LastPriceUpdate", // not even sure what this is
+	"GETLabelsCount", // seems like an old jc job
+	"jobforpuritycount", // was not even working correctly
+	"Monitor_EmptyAutoConsumLocations", // not sure who uses this one
+	"monitor_labelreprint", // Migrated but need to find out who really wants this
+	"test", // not even sure why this is active
+	"UpdateLastMoldUsed", // old jc inserts data into a table but not sure what its used for not linked to any other alert
+	"UpdateWhsePositions3", // old jc inserts data into a table but not sure what its used for not linked to any other alert
+	"UpdateWhsePositions4",
+	"delete_print", // i think this was in here for when we was having lag prints in iowa1
+	"INV_WHSE_1", // something random i wrote long time ago looks like an inv thing to see aged stuff
+	"INV_WHSE_2",
+	"laneAgeCheck", // another strange one thats been since moved to lst
+	"monitor_blocking_2",
+	"monitor_blocking", // already in lst
+	"monitor_min_inv", // do we still want this one? it has a description of: this checks m-f the min inventory of materials based on the min level set in stock
+	"Monitor_MixedLocations",
+	"Monitor_PM",
+	"Monitor_PM2",
+	"wrong_lots_1",
+	"wrong_lots_2",
+	"invenotry check", // spelling error one of my stupids
+	"monitor_hold_monitor",
+	"Monitor_Silo_adjustments",
+	"monitor_qualityLocMonitor", // validating with lima this is still needed
+	"Monitor_Stock_Change",
+];
+
+export const sqlJobCleanUp = async () => {
+	// running a query to disable jobs that are moved to lst to be better maintained
+	const sqlQuery = sqlQuerySelector("disableJob") as SqlQuery;
+
+	if (!sqlQuery.success) {
+		console.error("Failed to load the query: ", sqlQuery.message);
+		return;
+	}
+	for (const job of jobNames) {
+		const { error } = await tryCatch(
+			prodQuery(
+				sqlQuery.query.replace("[jobName]", `${job}`),
+				`Disabling job: ${job}`,
+			),
+		);
+
+		if (error) {
+			console.error(error);
+		}
+
+		//console.log(data);
+	}
+};

backend/notification/notification.minLevel.ts

@@ -0,0 +1,113 @@
+import { eq } from "drizzle-orm";
+import { db } from "../db/db.controller.js";
+import { notifications } from "../db/schema/notifications.schema.js";
+import { prodQuery } from "../prodSql/prodSqlQuery.controller.js";
+import {
+	type SqlQuery,
+	sqlQuerySelector,
+} from "../prodSql/prodSqlQuerySelector.utils.js";
+import { returnFunc } from "../utils/returnHelper.utils.js";
+import { sendEmail } from "../utils/sendEmail.utils.js";
+import { tryCatch } from "../utils/trycatch.utils.js";
+
+/**
+ *
+ */
+const func = async (data: any, emails: string) => {
+	// get the actual notification as items will be updated between intervals if no one touches
+	const { data: l, error: le } = (await tryCatch(
+		db.select().from(notifications).where(eq(notifications.id, data.id)),
+	)) as any;
+
+	if (le) {
+		return returnFunc({
+			success: false,
+			level: "error",
+			module: "notification",
+			subModule: "query",
+			message: `${data.name} encountered an error while trying to get initial info`,
+			data: [le],
+			notify: true,
+		});
+	}
+
+	// search the query db for the query by name
+	const sqlQuery = sqlQuerySelector(`${data.name}`) as SqlQuery;
+	// create the ignore audit logs ids
+	const ignoreIds = l[0].options[0]?.auditId
+		? `${l[0].options[0]?.auditId}`
+		: "0";
+
+	// run the check
+	const { data: queryRun, error } = await tryCatch(
+		prodQuery(
+			sqlQuery.query
+				.replace("[intervalCheck]", l[0].interval)
+				.replace("[ignoreList]", ignoreIds),
+			`Running notification query: ${l[0].name}`,
+		),
+	);
+
+	if (error) {
+		return returnFunc({
+			success: false,
+			level: "error",
+			module: "notification",
+			subModule: "query",
+			message: `Data for: ${l[0].name} encountered an error while trying to get it`,
+			data: [error],
+			notify: true,
+		});
+	}
+
+	if (queryRun.data.length > 0) {
+		// update the latest audit id
+		const { error: dbe } = await tryCatch(
+			db
+				.update(notifications)
+				.set({ options: [{ auditId: `${queryRun.data[0].id}` }] })
+				.where(eq(notifications.id, data.id)),
+		);
+
+		if (dbe) {
+			return returnFunc({
+				success: false,
+				level: "error",
+				module: "notification",
+				subModule: "query",
+				message: `Data for: ${l[0].name} encountered an error while trying to get it`,
+				data: [dbe],
+				notify: true,
+			});
+		}
+
+		// send the email
+
+		const sentEmail = await sendEmail({
+			email: emails,
+			subject: "Alert! Label Reprinted",
+			template: "reprintLabels",
+			context: {
+				items: queryRun.data,
+			},
+		});
+
+		if (!sentEmail?.success) {
+			return returnFunc({
+				success: false,
+				level: "error",
+				module: "email",
+				subModule: "notification",
+				message: `${l[0].name} failed to send the email`,
+				data: [sentEmail],
+				notify: true,
+			});
+		}
+	} else {
+		console.log("doing nothing as there is nothing to do.");
+	}
+	// TODO send the error to systemAdmin users so they do not always need to be on the notifications.
+	// these errors are defined per notification.
+};
+
+export default func;

backend/notification/notification.routes.ts

@@ -1,5 +1,6 @@
 import type { Express } from "express";
 import { requireAuth } from "../middleware/auth.middleware.js";
+
 import manual from "./notification.manualTrigger.js";
 import getNotifications from "./notification.route.js";
 import updateNote from "./notification.update.route.js";
@@ -10,13 +11,48 @@ import updateSub from "./notificationSub.update.route.js";
 
 export const setupNotificationRoutes = (baseUrl: string, app: Express) => {
 	//stats will be like this as we dont need to change this
-	app.use(`${baseUrl}/api/notification`, requireAuth, getNotifications);
+	app.use(
-	app.use(`${baseUrl}/api/notification`, requireAuth, updateNote);
+		`${baseUrl}/api/notification`,
-	app.use(`${baseUrl}/api/notification/manual`, requireAuth, manual);
+		requireAuth,
-	app.use(`${baseUrl}/api/notification/sub`, requireAuth, subs);
+
-	app.use(`${baseUrl}/api/notification/sub`, requireAuth, newSub);
+		getNotifications,
-	app.use(`${baseUrl}/api/notification/sub`, requireAuth, updateSub);
+	);
-	app.use(`${baseUrl}/api/notification/sub`, requireAuth, deleteSub);
+	app.use(
+		`${baseUrl}/api/notification`,
+		requireAuth,
+
+		updateNote,
+	);
+	app.use(
+		`${baseUrl}/api/notification/manual`,
+		requireAuth,
+
+		manual,
+	);
+	app.use(
+		`${baseUrl}/api/notification/sub`,
+		requireAuth,
+
+		subs,
+	);
+	app.use(
+		`${baseUrl}/api/notification/sub`,
+		requireAuth,
+
+		newSub,
+	);
+	app.use(
+		`${baseUrl}/api/notification/sub`,
+		requireAuth,
+
+		updateSub,
+	);
+	app.use(
+		`${baseUrl}/api/notification/sub`,
+		requireAuth,
+
+		deleteSub,
+	);
 
 	// all other system should be under /api/system/*
 };

backend/ocp/ocp.printer.listener.ts

@@ -43,7 +43,7 @@ const parseZebraAlert = (body: any): PrinterEvent => {
 	};
 };
 
-r.post("/printer/listener/:printer", upload.any(), async (req, res) => {
+r.post("/:printer", upload.any(), async (req, res) => {
 	const { printer: printerName } = req.params;
 	const event: PrinterEvent = parseZebraAlert(req.body);
 

backend/ocp/ocp.printer.update.ts

@@ -21,7 +21,7 @@ import { printerSync } from "./ocp.printer.manage.js";
 
 const r = Router();
 
-r.post("/printer/update", async (_, res) => {
+r.post("/update", async (_, res) => {
 	printerSync();
 	return apiReturn(res, {
 		success: true,

backend/ocp/ocp.routes.ts

@@ -1,24 +1,16 @@
-import { type Express, Router } from "express";
+import type { Express } from "express";
 import { requireAuth } from "../middleware/auth.middleware.js";
 import { featureCheck } from "../middleware/featureActive.middleware.js";
+
 import listener from "./ocp.printer.listener.js";
 import update from "./ocp.printer.update.js";
 
 export const setupOCPRoutes = (baseUrl: string, app: Express) => {
-	//setup all the routes
+	app.use(`${baseUrl}/api/ocp/printer/listener`, featureCheck("ocp"), listener);
-	const router = Router();
+	app.use(
-
+		`${baseUrl}/api/ocp/printer`,
-	// is the feature even on?
+		featureCheck("ocp"),
-	router.use(featureCheck("ocp"));
+		requireAuth,
-
+		update,
-	// non auth routes up here
+	);
-	router.use(listener);
-
-	// auth routes below here
-	router.use(requireAuth);
-
-	router.use(update);
-	//router.use("");
-
-	app.use(`${baseUrl}/api/ocp`, router);
 };

backend/opendock/opendock.routes.ts

@@ -1,19 +1,16 @@
-import { type Express, Router } from "express";
+import type { Express } from "express";
 import { requireAuth } from "../middleware/auth.middleware.js";
 import { featureCheck } from "../middleware/featureActive.middleware.js";
+
 import getApt from "./opendockGetRelease.route.js";
 
 export const setupOpendockRoutes = (baseUrl: string, app: Express) => {
 	//setup all the routes
-	// Apply auth to entire router
-	const router = Router();
 
-	// is the feature even on?
+	app.use(
-	router.use(featureCheck("opendock_sync"));
+		`${baseUrl}/api/opendock`,
-
+		featureCheck("opendock_sync"),
-	// we need to make sure we are authenticated to see the releases
+		requireAuth,
-	router.use(requireAuth);
+		getApt,
-
+	);
-	router.use(getApt);
-	app.use(`${baseUrl}/api/opendock`, router);
 };

backend/prodSql/prodSql.routes.ts

@@ -1,5 +1,6 @@
 import { type Express, Router } from "express";
 import { requireAuth } from "../middleware/auth.middleware.js";
+
 import restart from "./prodSqlRestart.route.js";
 import start from "./prodSqlStart.route.js";
 import stop from "./prodSqlStop.route.js";
@@ -9,9 +10,7 @@ export const setupProdSqlRoutes = (baseUrl: string, app: Express) => {
 	const router = Router();
 	router.use(requireAuth);
 
-	router.use(start);
+	app.use(`${baseUrl}/api/system/prodSql/start`, requireAuth, start);
-	router.use(stop);
+	app.use(`${baseUrl}/api/system/prodSql/stop`, requireAuth, stop);
-	router.use(restart);
+	app.use(`${baseUrl}/api/system/prodSql/restart`, requireAuth, restart);
-
-	app.use(`${baseUrl}/api/system/prodSql`, router);
 };

backend/prodSql/prodSqlRestart.route.ts

@@ -4,7 +4,7 @@ import { closePool, connectProdSql } from "./prodSqlConnection.controller.js";
 
 const r = Router();
 
-r.post("/restart", async (_, res) => {
+r.post("/", async (_, res) => {
 	await closePool();
 
 	await new Promise((r) => setTimeout(r, 2000));

backend/prodSql/prodSqlStart.route.ts

@@ -4,7 +4,7 @@ import { connectProdSql } from "./prodSqlConnection.controller.js";
 
 const r = Router();
 
-r.post("/start", async (_, res) => {
+r.post("/", async (_, res) => {
 	const connect = await connectProdSql();
 	apiReturn(res, {
 		success: connect.success,

backend/prodSql/prodSqlStop.route.ts

@@ -4,7 +4,7 @@ import { closePool } from "./prodSqlConnection.controller.js";
 
 const r = Router();
 
-r.post("/stop", async (_, res) => {
+r.post("/", async (_, res) => {
 	const connect = await closePool();
 	apiReturn(res, {
 		success: connect.success,

backend/prodSql/queries/disableJob.sql

@@ -0,0 +1,8 @@
+/*
+disables sql jobs.
+*/
+EXEC msdb.dbo.sp_update_job @job_name = N'[jobName]', @enabled = 0;
+-- DECLARE @JobName varchar(max) = '[jobName]'
+-- UPDATE msdb.dbo.sysjobs
+-- SET enabled = 0
+-- WHERE name = @JobName;

backend/prodSql/queries/reprintLabels.sql

@@ -1,16 +1,17 @@
 use [test1_AlplaPROD2.0_Read]
 
 SELECT
-	--JSON_VALUE(content, '$.EntityId') as labelId
+	JSON_VALUE(content, '$.EntityId') as labelId,
 	a.id
 	,ActorName
-	,FORMAT(PrintDate, 'yyyy-MM-dd HH:mm') as printDate
+	--,FORMAT(l.PrintDate, 'yyyy-MM-dd HH:mm') as printDate
+	,Format(COALESCE(l.PrintDate, e.ProductionDate), 'yyyy-MM-dd HH:mm') as printDate
 	,FORMAT(CreatedDateTime, 'yyyy-MM-dd HH:mm') createdDateTime
-    ,l.ArticleHumanReadableId as av
+    ,COALESCE(l.ArticleHumanReadableId,e.ArticleHumanReadableId) as av
-	,l.ArticleDescription as alias
+	,COALESCE(l.ArticleDescription, av.Name) as alias
-	,PrintedCopies
+	,COALESCE(l.PrintedCopies, 0) as PrintedCopies
-	,p.name as printerName
+	,COALESCE(p.name,'External Label not tracked') as printerName
-	,RunningNumber
+	,COALESCE(l.RunningNumber, e.RunningNumber) as runningNumber
 	--,*
 FROM [support].[AuditLog] (nolock) as a
 
@@ -18,10 +19,20 @@ left join
 	[labelling].[InternalLabel] (nolock)  as l on 
 	l.id = JSON_VALUE(content, '$.EntityId')
 
+OUTER APPLY (
+    SELECT TOP 1 *
+    FROM labelling.ExternalLabel e
+    WHERE e.id = JSON_VALUE(a.content, '$.EntityId')
+    ORDER BY e.Id DESC
+) e
+
 left join
 	[masterData].[printer] (nolock) as p on
 	p.id = l.PrinterId
 
+left join
+	[masterData].[article] (nolock) as av on
+	av.HumanReadableId = e.ArticleHumanReadableId
 where message like '%reprint%'
 	and CreatedDateTime > DATEADD(minute, -[intervalCheck], SYSDATETIMEOFFSET())
 	and a.id > [ignoreList]

backend/routeHandler.routes.ts

@@ -5,6 +5,7 @@ import { setupAuthRoutes } from "./auth/auth.routes.js";
 import { setupApiDocsRoutes } from "./configs/scaler.config.js";
 import { setupDatamartRoutes } from "./datamart/datamart.routes.js";
 import { setupGPSqlRoutes } from "./gpSql/gpSql.routes.js";
+import { setupMobileRoutes } from "./mobile/mobile.routes.js";
 import { setupNotificationRoutes } from "./notification/notification.routes.js";
 import { setupOCPRoutes } from "./ocp/ocp.routes.js";
 import { setupOpendockRoutes } from "./opendock/opendock.routes.js";
@@ -15,6 +16,7 @@ import { setupUtilsRoutes } from "./utils/utils.routes.js";
 
 export const setupRoutes = (baseUrl: string, app: Express) => {
 	//routes that are on by default
+	setupMobileRoutes(baseUrl, app);
 	setupSystemRoutes(baseUrl, app);
 	setupAdminRoutes(baseUrl, app);
 	setupApiDocsRoutes(baseUrl, app);

backend/server.ts

@@ -8,6 +8,7 @@ import { connectGPSql } from "./gpSql/gpSqlConnection.controller.js";
 import { createLogger } from "./logger/logger.controller.js";
 import { historicalSchedule } from "./logistics/logistics.historicalInv.js";
 import { startNotifications } from "./notification/notification.controller.js";
+import { sqlJobCleanUp } from "./notification/notification.SqlJobCleanUp.js";
 import { createNotifications } from "./notification/notifications.master.js";
 import { printerSync } from "./ocp/ocp.printer.manage.js";
 import { monitorReleaseChanges } from "./opendock/openDockRreleaseMonitor.utils.js";
@@ -18,6 +19,11 @@ import { setupSocketIORoutes } from "./socket.io/serverSetup.js";
 import { serversChecks } from "./system/serverData.controller.js";
 import { baseSettingValidationCheck } from "./system/settingsBase.controller.js";
 import { startTCPServer } from "./tcpServer/tcp.server.js";
+import {
+	aggregateRouteHitsForBusinessDay,
+	cleanupOldRouteHits,
+	runRouteHitAnalyticsCron,
+} from "./utils/analyticRouteHits.utils.js";
 import { createCronJob } from "./utils/croner.utils.js";
 import { sendEmail } from "./utils/sendEmail.utils.js";
 
@@ -68,10 +74,19 @@ const start = async () => {
 		createCronJob("logsCleanup", "0 15 5 * * *", () => dbCleanup("logs", 120));
 		historicalSchedule();
 
+		createCronJob("aggregateHits", "0 0 7 * * *", async () =>
+			runRouteHitAnalyticsCron(),
+		);
+
+		createCronJob("cleanHitsUp", "0 0 7 * * *", () => cleanupOldRouteHits());
 		// one shots only needed to run on server startups
 		createNotifications();
 		startNotifications();
 		serversChecks();
+		aggregateRouteHitsForBusinessDay();
+
+		// can be removed at a later date
+		sqlJobCleanUp();
 	}, 5 * 1000);
 
 	process.on("uncaughtException", async (err) => {

backend/system/serverData.controller.ts

@@ -34,7 +34,7 @@ const servers: NewServerData[] = [
 		name: "Lima",
 		server: "USLIM1VMS006",
 		plantToken: "uslim1",
-		idAddress: "10.53.0.26",
+		idAddress: "10.53.0.26", // port opened 3000 2222
 		greatPlainsPlantCode: "50",
 		contactEmail: "",
 		contactPhone: "",
@@ -56,7 +56,7 @@ const servers: NewServerData[] = [
 		name: "Dayton",
 		server: "usday1VMS006",
 		plantToken: "usday1",
-		idAddress: "10.44.0.56",
+		idAddress: "10.44.0.56", // ports opened 3000 and 2222
 		greatPlainsPlantCode: "80",
 		contactEmail: "",
 		contactPhone: "",
@@ -105,11 +105,11 @@ const servers: NewServerData[] = [
 		contactEmail: "",
 		contactPhone: "",
 		serverLoc: "D$\\LST_V3",
-		buildNumber: 82,
+		buildNumber: 1,
 	},
 	{
 		name: "St. Peters",
-		server: "USTP1VMS006",
+		server: "USSTP1VMS006",
 		plantToken: "usstp1",
 		idAddress: "10.37.0.26",
 		greatPlainsPlantCode: "45",
@@ -118,8 +118,53 @@ const servers: NewServerData[] = [
 		serverLoc: "D$\\LST_V3",
 		buildNumber: 1,
 	},
+	{
+		name: "Marked Tree",
+		server: "USMAR1VMS006",
+		plantToken: "usmar1",
+		idAddress: "10.206.9.26", // 3000,2222 requested REQ0236838
+		greatPlainsPlantCode: "90",
+		contactEmail: "",
+		contactPhone: "",
+		serverLoc: "D$\\LST_V3",
+		buildNumber: 1,
+	},
+	{
+		name: "Iowa City EBM",
+		server: "USIOW1VMS006",
+		plantToken: "usiow1",
+		idAddress: "10.75.0.26",
+		greatPlainsPlantCode: "30",
+		contactEmail: "",
+		contactPhone: "",
+		serverLoc: "D$\\LST_V3",
+		buildNumber: 1,
+	},
+	{
+		name: "Bowling Green 1",
+		server: "USBOW1VMS006",
+		plantToken: "usbow1",
+		idAddress: "10.25.0.26", //  3000 is open REQ0236527 2222 already open
+		greatPlainsPlantCode: "55",
+		contactEmail: "",
+		contactPhone: "",
+		serverLoc: "D$\\LST_V3",
+		buildNumber: 1,
+	},
+	{
+		name: "Bethlehem",
+		server: "USBET1VMS006",
+		plantToken: "usbet1",
+		idAddress: "10.25.0.26",
+		greatPlainsPlantCode: "75",
+		contactEmail: "",
+		contactPhone: "",
+		serverLoc: "D$\\LST_V3",
+		buildNumber: 1,
+	},
 ];
 
+// notes here for when it comes time to pull in all the server address info [test1_AlplaPROD2.0_Read].[masterData].[Plant] has everything from every server :D
 export const serversChecks = async () => {
 	const log = createLogger({ module: "system", subModule: "serverData" });
 	const { data, error } = await tryCatch(
@@ -152,3 +197,9 @@ export const serversChecks = async () => {
 		log.info({}, "All Servers were added/updated");
 	}
 };
+
+// Communication from logistic network to logisticsSupportTool (for printers and scanners)
+
+// network justification
+
+// scanners and printers are on dhcp

backend/system/settingsBase.controller.ts

@@ -76,6 +76,16 @@ const newSettings: NewSetting[] = [
 		roles: ["admin"],
 		seedVersion: 1,
 	},
+	{
+		name: "mobile",
+		value: "0",
+		active: false,
+		description: "LST Android Mobile app",
+		moduleName: "mobile",
+		settingType: "feature",
+		roles: ["admin"],
+		seedVersion: 1,
+	},
 
 	// standard settings
 	{
@@ -304,6 +314,49 @@ const newSettings: NewSetting[] = [
 		roles: ["admin"],
 		seedVersion: 1,
 	},
+	{
+		name: "laneCheck",
+		value: "0",
+		active: false,
+		description:
+			"Allows the driver to scan a lane and see what is in the lane and details about each pallet.",
+		moduleName: "mobile",
+		settingType: "standard",
+		roles: ["admin"],
+		seedVersion: 1,
+	},
+	{
+		name: "dockScan",
+		value: "0",
+		active: false,
+		description:
+			"Enables dock door scanning, must have a dock scanner setup for this to work.",
+		moduleName: "mobile",
+		settingType: "standard",
+		roles: ["admin"],
+		seedVersion: 1,
+	},
+	{
+		name: "cycleCounting",
+		value: "0",
+		active: false,
+		description: "Enables a cycle count to be triggered from the scanner.",
+		moduleName: "mobile",
+		settingType: "standard",
+		roles: ["admin"],
+		seedVersion: 1,
+	},
+	{
+		name: "scannerIds",
+		value: "10",
+		active: false,
+		description:
+			"How many scanners ids are setup for this, there should be a lst_scanner instance created.",
+		moduleName: "mobile",
+		settingType: "standard",
+		roles: ["admin"],
+		seedVersion: 1,
+	},
 ];
 
 export const baseSettingValidationCheck = async () => {

backend/system/system.mobileApp.ts

@@ -1,49 +0,0 @@
-import fs from "node:fs";
-import { Router } from "express";
-import path from "path";
-import { fileURLToPath } from "url";
-
-const router = Router();
-
-const __filename = fileURLToPath(import.meta.url);
-const __dirname = path.dirname(__filename);
-
-const downloadDir = path.resolve(__dirname, "../../downloads/mobile");
-
-const currentApk = {
-	packageName: "net.alpla.lst.mobile",
-	versionName: "0.0.1-alpha",
-	versionCode: 1,
-	minSupportedVersionCode: 1,
-	fileName: "lst-mobile.apk",
-};
-
-router.get("/version", async (req, res) => {
-	const baseUrl = `${req.protocol}://${req.get("host")}`;
-
-	res.json({
-		packageName: currentApk.packageName,
-		versionName: currentApk.versionName,
-		versionCode: currentApk.versionCode,
-		minSupportedVersionCode: currentApk.minSupportedVersionCode,
-		downloadUrl: `${baseUrl}/lst/api/mobile/apk/latest`,
-	});
-});
-
-router.get("/apk/latest", (_, res) => {
-	const apkPath = path.join(downloadDir, currentApk.fileName);
-
-	if (!fs.existsSync(apkPath)) {
-		return res.status(404).json({ success: false, message: "APK not found" });
-	}
-
-	res.setHeader("Content-Type", "application/vnd.android.package-archive");
-	res.setHeader(
-		"Content-Disposition",
-		`attachment; filename="${currentApk.fileName}"`,
-	);
-
-	return res.sendFile(apkPath);
-});
-
-export default router;

backend/system/system.routes.ts

@@ -1,15 +1,14 @@
 import type { Express } from "express";
 import { requireAuth } from "../middleware/auth.middleware.js";
+
 import getServers from "./serverData.route.js";
 import getSettings from "./settings.route.js";
 import updSetting from "./settingsUpdate.route.js";
 import stats from "./stats.route.js";
-import mobile from "./system.mobileApp.js";
 
 export const setupSystemRoutes = (baseUrl: string, app: Express) => {
 	//stats will be like this as we dont need to change this
 	app.use(`${baseUrl}/api/stats`, stats);
-	app.use(`${baseUrl}/api/mobile`, mobile);
 	app.use(`${baseUrl}/api/settings`, getSettings);
 	app.use(`${baseUrl}/api/servers`, getServers);
 	app.use(`${baseUrl}/api/settings`, requireAuth, updSetting);

backend/tcpServer/tcp.routes.ts

@@ -1,14 +1,21 @@
 import type { Express } from "express";
 import { requireAuth } from "../middleware/auth.middleware.js";
+
 import restart from "./tcpRestart.route.js";
 import start from "./tcpStart.route.js";
 import stop from "./tcpStop.route.js";
 
 export const setupTCPRoutes = (baseUrl: string, app: Express) => {
 	//stats will be like this as we dont need to change this
+
 	app.use(`${baseUrl}/api/tcp/start`, requireAuth, start);
 	app.use(`${baseUrl}/api/tcp/stop`, requireAuth, stop);
-	app.use(`${baseUrl}/api/tcp/restart`, requireAuth, restart);
+	app.use(
+		`${baseUrl}/api/tcp/restart`,
+		requireAuth,
+
+		restart,
+	);
 
 	// all other system should be under /api/system/*
 };

backend/utils/analyticRouteHits.utils.ts

@@ -0,0 +1,148 @@
+import { and, count, countDistinct, gte, lt, sql } from "drizzle-orm";
+import { db } from "../db/db.controller.js";
+import { analytics } from "../db/schema/analytics.schema.js";
+import { analyticsDaily } from "../db/schema/dailyAnalytics.schema.js";
+
+export const ignoredRoutePrefixes = [
+	"/health",
+	"/favicon.ico",
+	"/socket.io",
+	"/lst/api/ws",
+	"/lst-config.js",
+];
+
+export function shouldIgnoreRoute(path: string) {
+	return ignoredRoutePrefixes.some((prefix) => path.startsWith(prefix));
+}
+
+type CreateRouteHitInput = {
+	method: string;
+	routePattern: string;
+	actualPath: string;
+	statusCode: number;
+	durationMs: number;
+	module?: string | null;
+	userId?: string | null;
+	userEmail?: string | null;
+	ipAddress?: string | null;
+	userAgent?: string | null;
+};
+
+export async function createRouteHit(input: CreateRouteHitInput) {
+	await db.insert(analytics).values(input);
+}
+
+function getPreviousBusinessDayWindow(date = new Date()) {
+	const end = new Date(date);
+	end.setHours(7, 0, 0, 0);
+
+	const start = new Date(end);
+	start.setDate(start.getDate() - 1);
+
+	const businessDate = start.toISOString().slice(0, 10);
+
+	return {
+		start,
+		end,
+		businessDate,
+	};
+}
+
+export async function runRouteHitAnalyticsCron(): Promise<void> {
+	const result = await aggregateRouteHitsForBusinessDay();
+
+	await cleanupOldRouteHits();
+
+	console.log("Route hit analytics aggregated", result);
+}
+
+export async function aggregateRouteHitsForBusinessDay() {
+	const { start, end, businessDate } = getPreviousBusinessDayWindow();
+
+	const rows = await db
+		.select({
+			businessDate: sql<string>`CAST(${businessDate} AS date)`,
+			method: analytics.method,
+			routePattern: analytics.routePattern,
+			module: sql<string>`COALESCE(${analytics.module}, 'unknown')`,
+
+			totalHits: count(),
+			uniqueUsers: countDistinct(analytics.userId),
+
+			successCount: sql<number>`
+			COUNT(*) FILTER (WHERE ${analytics.statusCode} < 400)
+		`,
+			errorCount: sql<number>`
+			COUNT(*) FILTER (WHERE ${analytics.statusCode} >= 400)
+		`,
+
+			avgDurationMs: sql<number>`
+			COALESCE(ROUND(AVG(${analytics.durationMs})), 0)
+		`,
+			maxDurationMs: sql<number>`
+			COALESCE(MAX(${analytics.durationMs}), 0)
+		`,
+
+			firstHitAt: sql<Date>`
+			COALESCE(MIN(${analytics.createdAt}), NOW())
+		`,
+			lastHitAt: sql<Date>`
+			COALESCE(MAX(${analytics.createdAt}), NOW())
+		`,
+		})
+		.from(analytics)
+		.where(and(gte(analytics.createdAt, start), lt(analytics.createdAt, end)))
+		.groupBy(
+			analytics.method,
+			analytics.routePattern,
+			sql`COALESCE(${analytics.module}, 'unknown')`,
+		);
+
+	if (rows.length === 0) {
+		return {
+			businessDate,
+			inserted: 0,
+		};
+	}
+
+	const values = rows.map((row) => ({
+		...row,
+		businessDate: row.businessDate,
+		firstHitAt: new Date(row.firstHitAt),
+		lastHitAt: new Date(row.lastHitAt),
+	}));
+
+	await db
+		.insert(analyticsDaily)
+		.values(values)
+		.onConflictDoUpdate({
+			target: [
+				analyticsDaily.businessDate,
+				analyticsDaily.method,
+				analyticsDaily.routePattern,
+				analyticsDaily.module,
+			],
+			set: {
+				totalHits: sql`excluded.total_hits`,
+				uniqueUsers: sql`excluded.unique_users`,
+				successCount: sql`excluded.success_count`,
+				errorCount: sql`excluded.error_count`,
+				avgDurationMs: sql`excluded.avg_duration_ms`,
+				maxDurationMs: sql`excluded.max_duration_ms`,
+				firstHitAt: sql`excluded.first_hit_at`,
+				lastHitAt: sql`excluded.last_hit_at`,
+				updatedAt: sql`now()`,
+			},
+		});
+
+	return {
+		businessDate,
+		inserted: rows.length,
+	};
+}
+
+export async function cleanupOldRouteHits() {
+	await db
+		.delete(analytics)
+		.where(lt(analytics.createdAt, sql`now() - interval '4 days'`));
+}

backend/utils/auth.permissions.ts

@@ -1,9 +1,12 @@
 import { createAccessControl } from "better-auth/plugins/access";
+import { adminAc, defaultStatements } from "better-auth/plugins/admin/access";
 
 export const statement = {
+	...defaultStatements,
 	app: ["read", "create", "share", "update", "delete", "readAll"],
-	user: ["ban"],
 	quality: ["read", "create", "share", "update", "delete", "readAll"],
+	logistics: ["read", "create", "share", "update", "delete", "readAll"],
+	mobile: ["read", "create", "share", "update", "delete", "readAll"],
 	notifications: ["read", "create", "share", "update", "delete", "readAll"],
 } as const;
 
@@ -14,13 +17,22 @@ export const user = ac.newRole({
 	notifications: ["read", "create"],
 });
 
+export const manager = ac.newRole({
+	app: ["read", "create", "update"],
+	mobile: ["read", "create", "update"],
+});
+
 export const admin = ac.newRole({
 	app: ["read", "create", "update"],
+	mobile: ["read", "create", "update"],
+	user: ["create", "update"],
 });
 
 export const systemAdmin = ac.newRole({
+	...adminAc.statements,
 	app: ["read", "create", "share", "update", "delete", "readAll"],
-	user: ["ban"],
 	quality: ["read", "create", "share", "update", "delete", "readAll"],
+	mobile: ["read", "create", "share", "update", "delete", "readAll"],
+	logistics: ["read", "create", "share", "update", "delete", "readAll"],
 	notifications: ["read", "create", "share", "update", "delete", "readAll"],
 });

backend/utils/auth.utils.ts

@@ -2,6 +2,7 @@ import { betterAuth } from "better-auth";
 import { drizzleAdapter } from "better-auth/adapters/drizzle";
 import {
 	admin as adminPlugin,
+	genericOAuth,
 	// apiKey,
 	// createAuthMiddleware,
 	//customSession,
@@ -12,10 +13,50 @@ import {
 //import { eq } from "drizzle-orm";
 import { db } from "../db/db.controller.js";
 import * as rawSchema from "../db/schema/auth.schema.js";
-import { ac, admin, systemAdmin, user } from "./auth.permissions.js";
+import { ac, admin, manager, systemAdmin, user } from "./auth.permissions.js";
 import { allowedOrigins } from "./cors.utils.js";
 import { sendEmail } from "./sendEmail.utils.js";
 
+function decodeJwtPayload<T = Record<string, unknown>>(jwt: string): T {
+	const parts = jwt.split(".");
+	if (parts.length < 2) {
+		throw new Error("Invalid JWT");
+	}
+
+	const payload = parts[1]?.replace(/-/g, "+").replace(/_/g, "/");
+
+	const padded = payload?.padEnd(
+		payload.length + ((4 - (payload.length % 4)) % 4),
+		"=",
+	);
+
+	const json = Buffer.from(padded ?? "", "base64").toString("utf8");
+	return JSON.parse(json) as T;
+}
+
+function normalizeGroups(groups?: unknown): string[] {
+	if (!Array.isArray(groups)) return [];
+
+	return groups
+		.filter((g): g is string => typeof g === "string")
+		.map((g) => g.trim().toLowerCase())
+		.filter((g) => g.length > 0);
+}
+
+type VoidAuthClaims = {
+	sub: string;
+	name?: string;
+	preferred_username?: string;
+	email?: string;
+	email_verified?: boolean;
+	groups?: string[];
+	picture?: string;
+	iss?: string;
+	aud?: string;
+	exp?: number;
+	iat?: number;
+};
+
 export const schema = {
 	user: rawSchema.user,
 	session: rawSchema.session,
@@ -25,9 +66,73 @@ export const schema = {
 	apiKey: rawSchema.apikey, // 🔑 rename to apiKey
 };
 
+const hasOAuth =
+	Boolean(process.env.PROVIDER) &&
+	Boolean(process.env.CLIENT_ID) &&
+	Boolean(process.env.CLIENT_SECRET) &&
+	Boolean(process.env.DISCOVERY_URL);
+
+if (!hasOAuth) {
+	console.warn("Missing oauth data.");
+}
+
+const oauthPlugins = hasOAuth
+	? [
+			genericOAuth({
+				config: [
+					{
+						providerId: process.env.PROVIDER!,
+						clientId: process.env.CLIENT_ID!,
+						clientSecret: process.env.CLIENT_SECRET!,
+						discoveryUrl: process.env.DISCOVERY_URL!,
+						scopes: (process.env.CLIENT_SCOPES ?? "")
+							.split(/[,\s]+/)
+							.filter(Boolean),
+						pkce: true,
+						requireIssuerValidation: true,
+						redirectURI: `${process.env.URL}/lst/api/auth/oauth2/callback/${process.env.PROVIDER!}`,
+						getUserInfo: async (tokens) => {
+							if (!tokens.idToken) {
+								throw new Error("VoidAuth did not return an idToken");
+							}
+
+							const claims = decodeJwtPayload<VoidAuthClaims>(tokens.idToken);
+							const groups = normalizeGroups(claims.groups);
+
+							return {
+								id: claims.sub,
+								email: claims.email ?? "",
+								name:
+									claims.name ??
+									claims.preferred_username ??
+									claims.email ??
+									"Unknown User",
+								image: claims.picture ?? null,
+								emailVerified: Boolean(claims.email_verified),
+								groups,
+								username: claims.preferred_username ?? null,
+							} as any;
+						},
+
+						mapProfileToUser: async (profile) => {
+							return {
+								name: profile.name,
+								role: profile.groups?.includes("lst_admins")
+									? "systemAdmin"
+									: profile.groups?.includes("admins")
+										? "admin"
+										: "user",
+							};
+						},
+					},
+				],
+			}),
+		]
+	: [];
+
 export const auth = betterAuth({
 	appName: "lst",
-	baseURL: process.env.URL,
+	baseURL: `${process.env.URL}/lst/api/auth`,
 	database: drizzleAdapter(db, {
 		provider: "pg",
 		schema,
@@ -42,6 +147,14 @@ export const auth = betterAuth({
 			},
 		},
 	},
+	account: {
+		encryptOAuthTokens: true,
+		updateAccountOnSignIn: true,
+		accountLinking: {
+			enabled: true,
+			trustedProviders: ["voidauth"],
+		},
+	},
 	plugins: [
 		jwt({ jwt: { expirationTime: "1h" } }),
 		//apiKey(),
@@ -50,6 +163,7 @@ export const auth = betterAuth({
 			roles: {
 				admin,
 				user,
+				manager,
 				systemAdmin,
 			},
 		}),
@@ -63,6 +177,7 @@ export const auth = betterAuth({
 				return true;
 			},
 		}),
+		...oauthPlugins,
 
 		// customSession(async ({ user, session }) => {
 		// 	const roles = await db
@@ -121,7 +236,7 @@ export const auth = betterAuth({
 		},
 	},
 	cookie: {
-		path: "/lst/app",
+		path: "/lst",
 		sameSite: "lax",
 		secure: false,
 		httpOnly: true,

backend/utils/generateScannerPin.utils.ts

@@ -0,0 +1,49 @@
+import { db } from "../db/db.controller.js";
+import { returnFunc } from "./returnHelper.utils.js";
+
+export function generateSixDigitPin() {
+	return Math.floor(100000 + Math.random() * 900000).toString();
+}
+
+export async function generateUniquePin() {
+	for (let i = 0; i < 10; i++) {
+		const pin = generateSixDigitPin();
+
+		const existing = await db.query.scanUser.findFirst({
+			where: (u, { eq }) => eq(u.pinHash, pin),
+		});
+
+		if (!existing)
+			return returnFunc({
+				success: true,
+				level: "info",
+				module: "utils",
+				subModule: "genPin",
+				message: "New pin generated",
+				data: [{ pin: pin }],
+				notify: false,
+				room: "",
+			});
+	}
+
+	return returnFunc({
+		success: false,
+		level: "error",
+		module: "utils",
+		subModule: "genPin",
+		message: "Failed to generate unique PIN after 10 attempts",
+		data: [],
+		notify: true,
+		room: "",
+	});
+}
+
+// export const pinExists = async (pin: string | number) => {
+// 	const existing = await db.query.scanUser.findFirst({
+// 		where: (u, { eq }) => eq(u.pinHash, pin),
+// 	});
+
+// 	if (!existing) return true;
+
+// 	return false;
+// };

backend/utils/returnHelper.utils.ts

@@ -15,7 +15,8 @@ export interface ReturnHelper<T = unknown[]> {
 		| "purchase"
 		| "tcp"
 		| "logistics"
-		| "admin";
+		| "admin"
+		| "mobile";
 	subModule: string;
 
 	level: "info" | "error" | "debug" | "fatal" | "warn";

backend/utils/umami.utils.ts

@@ -0,0 +1,61 @@
+import { isUmamiEnabled, umamiConfig } from "../configs/umami.config.js";
+
+type TrackLstEventInput = {
+	eventName: string;
+	eventData?: Record<string, unknown>;
+	url?: string;
+	hostname?: string;
+};
+
+export async function trackLstEvent({
+	eventName,
+	eventData,
+	url = "/backend",
+	hostname = umamiConfig.server,
+}: TrackLstEventInput): Promise<void> {
+	if (!isUmamiEnabled()) return;
+
+	try {
+		await fetch(`${umamiConfig.umamiHost}/api/send`, {
+			method: "POST",
+			headers: {
+				"Content-Type": "application/json",
+				"User-Agent": "LST-Backend",
+			},
+			body: JSON.stringify({
+				type: "event",
+				payload: {
+					website: umamiConfig.umamiWebsiteId,
+					name: eventName,
+					url,
+					hostname,
+					language: "en-US",
+					screen: "backend",
+					data: {
+						app: umamiConfig.appName,
+						site: umamiConfig.site,
+						server: umamiConfig.server,
+						appVersion: umamiConfig.appVersion,
+						source: "backend",
+						...eventData,
+					},
+				},
+			}),
+		});
+	} catch (err) {
+		console.error("Failed to send Umami backend event", err);
+	}
+}
+
+/*
+await trackLstEvent({
+	eventName: "label_print_completed",
+	url: "/backend/printers",
+	eventData: {
+		module: "printers",
+		printerName,
+		labelType,
+	},
+});
+
+*/

backend/utils/utils.routes.ts

@@ -1,4 +1,5 @@
 import type { Express } from "express";
+
 import getActiveJobs from "./cronerActiveJobs.route.js";
 import jobStatusChange from "./cronerStatusChange.route.js";
 export const setupUtilsRoutes = (baseUrl: string, app: Express) => {

docker-compose.yml

@@ -12,48 +12,39 @@ services:
             #- "${VITE_PORT:-4200}:4200"
             - "3600:3000"
         dns:
-            - 10.193.9.250
+            - 10.44.9.250
-            - 10.193.9.251   # your internal DNS server
+            - 10.44.9.251   # your internal DNS server
-        dns_search:
+            - 1.1.1.1
-            - alpla.net      # or your internal search suffix
         environment:
             - NODE_ENV=production
             - LOG_LEVEL=info
-            - EXTERNAL_URL=http://192.168.8.222:3600
+            - URL=http://localhost:3600
-            - DATABASE_HOST=host.docker.internal # if running on the same docker then do this
+            - DATABASE_HOST=postgres # if running on the same docker then do this
-            - DATABASE_PORT=5433
+            - DATABASE_PORT=5432
             - DATABASE_USER=${DATABASE_USER}
             - DATABASE_PASSWORD=${DATABASE_PASSWORD}
             - DATABASE_DB=${DATABASE_DB}
-            - PROD_SERVER=${PROD_SERVER}
+            - PROD_SERVER=10.75.9.56 #${PROD_SERVER}
             - PROD_PLANT_TOKEN=${PROD_PLANT_TOKEN}
             - PROD_USER=${PROD_USER}
             - PROD_PASSWORD=${PROD_PASSWORD}
+            - GP_SERVER=10.193.9.31
+            - SQL_PORT=1433
             - BETTER_AUTH_SECRET=${BETTER_AUTH_SECRET}
             - BETTER_AUTH_URL=${URL}
-        # for all host including prod servers, plc's, printers, or other de
+            - OPENDOCK_URL=${OPENDOCK_URL}
-#         extra_hosts:
+            - OPENDOCK_PASSWORD=${OPENDOCK_PASSWORD}
-#             - "${PROD_SERVER}:${PROD_IP}"
+            - DEFAULT_DOCK=${DEFAULT_DOCK}
+            - DEFAULT_LOAD_TYPE=${DEFAULT_LOAD_TYPE}
+            - DEFAULT_CARRIER=${DEFAULT_CARRIER}
 
-#         networks:
+        #for all host including prod servers, plc's, printers, or other de
-#             - default
+        networks:
-#             - logisticsNetwork
+            - docker-network 
-#             #- mlan1
+            - pgNetwork
-# networks:
-#     logisticsNetwork:
-#         driver: macvlan
-#         driver_opts:
-#             parent: eth0
-#         ipam:
-#             config:
-#                 - subnet: ${LOGISTICS_NETWORK}
-#                   gateway: ${LOGISTICS_GATEWAY}
 
-#     mlan1:
+networks:
-#         driver: macvlan
+  docker-network:
-#         driver_opts:
+    external: true
-#             parent: eth0
+  pgNetwork:
-#         ipam:
+    external: true
-#             config:
-#                 - subnet: ${MLAN1_NETWORK}
-#                   gateway: ${MLAN1_GATEWAY}

frontend/index.html

@@ -7,7 +7,16 @@
     <title>Logistics Support Tool</title>
   </head>
   <body>
+
+<script>
+	const configScript = document.createElement("script");
+	configScript.src = `${window.location.origin}/lst/api/lst-config.js`;
+	configScript.defer = false;
+	document.head.appendChild(configScript);
+</script>
     <div id="root"></div>
+    <script defer src="https://stats.tuffraid.net/script.js" data-website-id="49bc2489-3930-4358-a13d-1cc609336572"></script>
+    
     <script type="module" src="/src/main.tsx"></script>
   </body>
 </html>

frontend/src/components/Header.tsx

@@ -19,11 +19,14 @@ export default function Header() {
 	const { data: session } = useSession();
 	const { signOut } = authClient;
 	const router = useRouterState();
+
 	const navigate = useNavigate();
 	const currentPath = router.location.href;
 
 	return (
-		<header className="sticky top-0 z-50 flex w-full items-center border-b bg-background">
+		<header
+			className={`sticky top-0 z-50 flex w-full items-center border-b ${session?.session.impersonatedBy ? "bg-amber-600" : "bg-background"} `}
+		>
 			<div className="flex justify-between w-full">
 				<div className="flex items-center gap-2 px-4">
 					<div className="flex flex-row">
@@ -48,6 +51,20 @@ export default function Header() {
 					<span className="font-semibold text-2xl">Logistics Support Tool</span>
 				</div>
 				<div className="m-1 flex gap-1">
+					<div>
+						{session?.session.impersonatedBy && (
+							<Button
+								onClick={async () => {
+									await authClient.admin.stopImpersonating();
+									await authClient.getSession();
+
+									window.location.assign("/lst/app/admin/users");
+								}}
+							>
+								Stop Impersonating
+							</Button>
+						)}
+					</div>
 					<div>
 						<ModeToggle />
 					</div>

frontend/src/components/NotFound.tsx

@@ -0,0 +1,51 @@
+import { useRouter } from "@tanstack/react-router";
+
+import { Card, CardContent, CardHeader } from "./ui/card";
+
+export default function NotFound() {
+	const router = useRouter();
+
+	let url: string;
+	if (window.location.origin.includes("localhost")) {
+		url = `https://www.youtube.com/watch?v=dQw4w9WgXcQ`;
+	} else if (window.location.origin.includes("vms006")) {
+		url = `https://${window.location.hostname.replace("vms006", "prod.alpla.net/")}lst/app/old`;
+	} else {
+		url = "https://www.youtube.com/watch?v=dQw4w9WgXcQ";
+	}
+	return (
+		<div className="flex items-center justify-center bg-background text-foreground">
+			<Card>
+				<CardHeader>
+					<p className="text-2xl">
+						Oops, Looks like you hit a link you shouldn't have
+					</p>
+				</CardHeader>
+				<CardContent>
+					<p className="mt-3 text-muted-foreground">
+						Your have tried to go to a page that you are not authorized to be
+						at.
+					</p>
+					<div className="flex justify-center">
+						<div>
+							<a href={`${url}`} target="_blank" rel="noopener">
+								<b>
+									<strong>OLD - LST Home</strong>
+								</b>
+							</a>
+						</div>
+						<div>
+							<button
+								type="button"
+								className="w-64"
+								onClick={() => router.navigate({ to: "/", replace: true })}
+							>
+								<strong>Home</strong>
+							</button>
+						</div>
+					</div>
+				</CardContent>
+			</Card>
+		</div>
+	);
+}

frontend/src/components/Sidebar/AdminBar.tsx

@@ -1,6 +1,7 @@
+import { useSuspenseQuery } from "@tanstack/react-query";
 import { Link } from "@tanstack/react-router";
-import { Bell, Logs, Server, Settings } from "lucide-react";
+import { Bell, Logs, Server, Settings, UsersRound } from "lucide-react";
-
+import { getSettings } from "../../lib/queries/getSettings";
 import {
 	SidebarGroup,
 	SidebarGroupContent,
@@ -23,6 +24,7 @@ import {
 
 export default function AdminSidebar({ session }: any) {
 	const { setOpen } = useSidebar();
+	const { data: settings, isLoading } = useSuspenseQuery(getSettings());
 	const items = [
 		{
 			title: "Notifications",
@@ -56,22 +58,24 @@ export default function AdminSidebar({ session }: any) {
 			module: "admin",
 			active: true,
 		},
-		// {
+		{
-		// 	title: "Modules",
+			title: "Users",
-		// 	url: "/admin/modules",
+			url: "/admin/users",
-		// 	icon: Settings,
+			icon: UsersRound,
-		// 	role: ["systemAdmin", "admin"],
+			role: ["systemAdmin", "admin"],
-		// 	module: "admin",
+			module: "admin",
-		// 	active: true,
+			active: true,
-		// },
+		},
-		// {
+		{
-		// 	title: "Servers",
+			title: "Scan users",
-		// 	url: "/admin/servers",
+			url: "/admin/scanUsers",
-		// 	icon: Server,
+			icon: UsersRound,
-		// 	role: ["systemAdmin", "admin"],
+			role: ["systemAdmin", "admin", "manager"],
-		// 	module: "admin",
+			module: "admin",
-		// 	active: true,
+			active:
-		// },
+				!isLoading &&
+				settings.filter((n: any) => n.name === "mobile")[0].active,
+		},
 	];
 	return (
 		<SidebarGroup>
@@ -79,9 +83,9 @@ export default function AdminSidebar({ session }: any) {
 			<SidebarGroupContent>
 				<SidebarMenu>
 					{items.map((item) => (
-						<>
+						<div key={item.title}>
-							{item.role.includes(session.user.role) && (
+							{item.role.includes(session.user.role) && item.active && (
-								<SidebarMenuItem key={item.title}>
+								<SidebarMenuItem>
 									<SidebarMenuButton asChild>
 										<Link to={item.url} onClick={() => setOpen(false)}>
 											<item.icon />
@@ -90,7 +94,7 @@ export default function AdminSidebar({ session }: any) {
 									</SidebarMenuButton>
 								</SidebarMenuItem>
 							)}
-						</>
+						</div>
 					))}
 				</SidebarMenu>
 			</SidebarGroupContent>

frontend/src/components/Sidebar/DocBar.tsx

@@ -1,11 +1,12 @@
+import { useSuspenseQuery } from "@tanstack/react-query";
 import { Link, useRouterState } from "@tanstack/react-router";
-import { ChevronRight } from "lucide-react";
+import { ChevronRight, ScrollText } from "lucide-react";
+import { getSettings } from "../../lib/queries/getSettings";
 import {
 	Collapsible,
 	CollapsibleContent,
 	CollapsibleTrigger,
 } from "../ui/collapsible";
-
 import {
 	SidebarGroup,
 	SidebarGroupContent,
@@ -19,32 +20,55 @@ import {
 	useSidebar,
 } from "../ui/sidebar";
 
-const docs = [
-	{
-		title: "Notifications",
-		url: "/intro",
-		//icon,
-		isActive: window.location.pathname.includes("notifications") ?? false,
-		items: [
-			{
-				title: "Reprints",
-				url: "/reprints",
-			},
-			{
-				title: "New Blocking order",
-				url: "/qualityBlocking",
-			},
-		],
-	},
-];
 export default function DocBar() {
 	const { setOpen } = useSidebar();
+	const { data: settings, isLoading } = useSuspenseQuery(getSettings());
 	const pathname = useRouterState({
 		select: (s) => s.location.pathname,
 	});
 
 	const isNotifications = pathname.includes("notifications");
 
+	const docs = [
+		{
+			title: "Notifications",
+			url: "notifications/intro",
+			//icon,
+			isActive: true,
+			items: [
+				{
+					title: "Reprints",
+					icon: ScrollText,
+					url: "notifications/reprints",
+				},
+				{
+					title: "New Blocking order",
+					icon: ScrollText,
+					url: "notifications/qualityBlocking",
+				},
+			],
+		},
+		{
+			title: "Mobile",
+			url: "mobile/updateInstructions",
+			isActive:
+				!isLoading &&
+				settings.filter((n: any) => n.name === "mobile")[0].active,
+			items: [
+				{
+					title: "Update Instructions",
+					icon: ScrollText,
+					url: "mobile/updateInstructions",
+				},
+				// {
+				// 	title: "Settings",
+				// 	icon: ScrollText,
+				// 	url: "mobile/mobile-settings",
+				// },
+			],
+		},
+	];
+
 	return (
 		<SidebarGroup>
 			<SidebarGroupLabel>Docs</SidebarGroupLabel>
@@ -61,42 +85,44 @@ export default function DocBar() {
 				</SidebarMenu>
 				<SidebarMenu>
 					{docs.map((item) => (
-						<Collapsible
+						<div key={item.title}>
-							key={item.title}
+							{item.isActive && (
-							asChild
+								<Collapsible
-							defaultOpen={isNotifications}
+									asChild
-							className="group/collapsible"
+									defaultOpen={isNotifications}
-						>
+									className="group/collapsible"
-							<SidebarMenuItem>
+								>
-								<CollapsibleTrigger asChild>
+									<SidebarMenuItem>
-									<SidebarMenuButton tooltip={item.title}>
+										<CollapsibleTrigger asChild>
-										<Link
+											<SidebarMenuButton tooltip={item.title}>
-											to={"/docs/$"}
+												<Link to={"/docs/$"} params={{ _splat: `${item.url}` }}>
-											params={{ _splat: `notifications${item.url}` }}
+													{item.title}
-										>
+												</Link>
-											{item.title}
+												<ChevronRight className="ml-auto transition-transform duration-200 group-data-[state=open]/collapsible:rotate-90" />
-										</Link>
+											</SidebarMenuButton>
-										<ChevronRight className="ml-auto transition-transform duration-200 group-data-[state=open]/collapsible:rotate-90" />
+										</CollapsibleTrigger>
-									</SidebarMenuButton>
+										<CollapsibleContent>
-								</CollapsibleTrigger>
+											<SidebarMenuSub>
-								<CollapsibleContent>
+												{item.items?.map((subItem) => (
-									<SidebarMenuSub>
+													<SidebarMenuSubItem key={subItem.title}>
-										{item.items?.map((subItem) => (
+														<SidebarMenuSubButton asChild>
-											<SidebarMenuSubItem key={subItem.title}>
+															<Link
-												<SidebarMenuSubButton asChild>
+																to={"/docs/$"}
-													<Link
+																params={{ _splat: `${subItem.url}` }}
-														to={"/docs/$"}
+																onClick={() => setOpen(false)}
-														params={{ _splat: `notifications${subItem.url}` }}
+															>
-													>
+																<subItem.icon />
-														{subItem.title}
+																<span>{subItem.title}</span>
-													</Link>
+															</Link>
-												</SidebarMenuSubButton>
+														</SidebarMenuSubButton>
-											</SidebarMenuSubItem>
+													</SidebarMenuSubItem>
-										))}
+												))}
-									</SidebarMenuSub>
+											</SidebarMenuSub>
-								</CollapsibleContent>
+										</CollapsibleContent>
-							</SidebarMenuItem>
+									</SidebarMenuItem>
-						</Collapsible>
+								</Collapsible>
+							)}
+						</div>
 					))}
 				</SidebarMenu>
 			</SidebarGroupContent>

frontend/src/components/Sidebar/MobileBar.tsx

@@ -0,0 +1,47 @@
+import { Link } from "@tanstack/react-router";
+import { ScanText } from "lucide-react";
+import {
+	SidebarGroup,
+	SidebarGroupContent,
+	SidebarGroupLabel,
+	SidebarMenu,
+	SidebarMenuButton,
+	SidebarMenuItem,
+	useSidebar,
+} from "../ui/sidebar";
+
+export default function MobileBar() {
+	const { setOpen } = useSidebar();
+	const items = [
+		// {
+		// 	title: "Update Instructions",
+		// 	url: "/",
+		// 	icon: ScrollText,
+		// },
+		{
+			title: "Scan Log",
+			url: "/",
+			icon: ScanText,
+		},
+	];
+
+	return (
+		<SidebarGroup>
+			<SidebarGroupLabel>Mobile</SidebarGroupLabel>
+			<SidebarGroupContent>
+				<SidebarMenu>
+					{items.map((item) => (
+						<SidebarMenuItem key={item.title}>
+							<SidebarMenuButton asChild>
+								<Link to={item.url} onClick={() => setOpen(false)}>
+									<item.icon />
+									<span>{item.title}</span>
+								</Link>
+							</SidebarMenuButton>
+						</SidebarMenuItem>
+					))}
+				</SidebarMenu>
+			</SidebarGroupContent>
+		</SidebarGroup>
+	);
+}

frontend/src/components/Sidebar/sidebar.tsx

@@ -1,3 +1,4 @@
+import { useSuspenseQuery } from "@tanstack/react-query";
 import {
 	Sidebar,
 	SidebarContent,
@@ -6,11 +7,14 @@ import {
 	SidebarMenuItem,
 } from "@/components/ui/sidebar";
 import { useSession } from "@/lib/auth-client";
+import { getSettings } from "../../lib/queries/getSettings";
 import AdminSidebar from "./AdminBar";
 import DocBar from "./DocBar";
+import MobileBar from "./MobileBar";
 
 export function AppSidebar() {
 	const { data: session } = useSession();
+	const { data: settings, isLoading } = useSuspenseQuery(getSettings());
 
 	return (
 		<Sidebar
@@ -22,10 +26,16 @@ export function AppSidebar() {
 				<SidebarMenu>
 					<SidebarMenuItem>
 						<SidebarContent>
-							<DocBar/>
+							<DocBar />
+							{!isLoading &&
+								settings.filter((n: any) => n.name === "mobile")[0].active && (
+									<MobileBar />
+								)}
+
 							{session &&
 								(session.user.role === "admin" ||
-									session.user.role === "systemAdmin") && (
+									session.user.role === "systemAdmin" ||
+									session.user.role === "manager") && (
 									<AdminSidebar session={session} />
 								)}
 						</SidebarContent>

frontend/src/components/ui/button.tsx

@@ -1,64 +1,67 @@
-import { cva, type VariantProps } from "class-variance-authority";
+import * as React from "react"
-import { Slot } from "radix-ui";
+import { cva, type VariantProps } from "class-variance-authority"
-import type * as React from "react";
+import { Slot } from "radix-ui"
 
-import { cn } from "@/lib/utils";
+import { cn } from "@/lib/utils"
 
 const buttonVariants = cva(
-	"inline-flex shrink-0 items-center justify-center gap-2 rounded-md text-sm font-medium whitespace-nowrap transition-all outline-none focus-visible:border-ring focus-visible:ring-[3px] focus-visible:ring-ring/50 disabled:pointer-events-none disabled:opacity-50 aria-invalid:border-destructive aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 [&_svg]:pointer-events-none [&_svg]:shrink-0 [&_svg:not([class*='size-'])]:size-4",
+  "group/button inline-flex shrink-0 items-center justify-center rounded-lg border border-transparent bg-clip-padding text-sm font-medium whitespace-nowrap transition-all outline-none select-none focus-visible:border-ring focus-visible:ring-3 focus-visible:ring-ring/50 active:not-aria-[haspopup]:translate-y-px disabled:pointer-events-none disabled:opacity-50 aria-invalid:border-destructive aria-invalid:ring-3 aria-invalid:ring-destructive/20 dark:aria-invalid:border-destructive/50 dark:aria-invalid:ring-destructive/40 [&_svg]:pointer-events-none [&_svg]:shrink-0 [&_svg:not([class*='size-'])]:size-4",
-	{
+  {
-		variants: {
+    variants: {
-			variant: {
+      variant: {
-				default: "bg-primary text-primary-foreground hover:bg-primary/90",
+        default: "bg-primary text-primary-foreground [a]:hover:bg-primary/80",
-				destructive:
+        outline:
-					"bg-destructive text-white hover:bg-destructive/90 focus-visible:ring-destructive/20 dark:bg-destructive/60 dark:focus-visible:ring-destructive/40",
+          "border-border bg-background hover:bg-muted hover:text-foreground aria-expanded:bg-muted aria-expanded:text-foreground dark:border-input dark:bg-input/30 dark:hover:bg-input/50",
-				outline:
+        secondary:
-					"border bg-background shadow-xs hover:bg-accent hover:text-accent-foreground dark:border-input dark:bg-input/30 dark:hover:bg-input/50",
+          "bg-secondary text-secondary-foreground hover:bg-secondary/80 aria-expanded:bg-secondary aria-expanded:text-secondary-foreground",
-				secondary:
+        ghost:
-					"bg-secondary text-secondary-foreground hover:bg-secondary/80",
+          "hover:bg-muted hover:text-foreground aria-expanded:bg-muted aria-expanded:text-foreground dark:hover:bg-muted/50",
-				ghost:
+        destructive:
-					"hover:bg-accent hover:text-accent-foreground dark:hover:bg-accent/50",
+          "bg-destructive/10 text-destructive hover:bg-destructive/20 focus-visible:border-destructive/40 focus-visible:ring-destructive/20 dark:bg-destructive/20 dark:hover:bg-destructive/30 dark:focus-visible:ring-destructive/40",
-				link: "text-primary underline-offset-4 hover:underline",
+        link: "text-primary underline-offset-4 hover:underline",
-			},
+      },
-			size: {
+      size: {
-				default: "h-9 px-4 py-2 has-[>svg]:px-3",
+        default:
-				xs: "h-6 gap-1 rounded-md px-2 text-xs has-[>svg]:px-1.5 [&_svg:not([class*='size-'])]:size-3",
+          "h-8 gap-1.5 px-2.5 has-data-[icon=inline-end]:pr-2 has-data-[icon=inline-start]:pl-2",
-				sm: "h-8 gap-1.5 rounded-md px-3 has-[>svg]:px-2.5",
+        xs: "h-6 gap-1 rounded-[min(var(--radius-md),10px)] px-2 text-xs in-data-[slot=button-group]:rounded-lg has-data-[icon=inline-end]:pr-1.5 has-data-[icon=inline-start]:pl-1.5 [&_svg:not([class*='size-'])]:size-3",
-				lg: "h-10 rounded-md px-6 has-[>svg]:px-4",
+        sm: "h-7 gap-1 rounded-[min(var(--radius-md),12px)] px-2.5 text-[0.8rem] in-data-[slot=button-group]:rounded-lg has-data-[icon=inline-end]:pr-1.5 has-data-[icon=inline-start]:pl-1.5 [&_svg:not([class*='size-'])]:size-3.5",
-				icon: "size-9",
+        lg: "h-9 gap-1.5 px-2.5 has-data-[icon=inline-end]:pr-2 has-data-[icon=inline-start]:pl-2",
-				"icon-xs": "size-6 rounded-md [&_svg:not([class*='size-'])]:size-3",
+        icon: "size-8",
-				"icon-sm": "size-8",
+        "icon-xs":
-				"icon-lg": "size-10",
+          "size-6 rounded-[min(var(--radius-md),10px)] in-data-[slot=button-group]:rounded-lg [&_svg:not([class*='size-'])]:size-3",
-			},
+        "icon-sm":
-		},
+          "size-7 rounded-[min(var(--radius-md),12px)] in-data-[slot=button-group]:rounded-lg",
-		defaultVariants: {
+        "icon-lg": "size-9",
-			variant: "default",
+      },
-			size: "default",
+    },
-		},
+    defaultVariants: {
-	},
+      variant: "default",
-);
+      size: "default",
+    },
+  }
+)
 
 function Button({
-	className,
+  className,
-	variant = "default",
+  variant = "default",
-	size = "default",
+  size = "default",
-	asChild = false,
+  asChild = false,
-	...props
+  ...props
 }: React.ComponentProps<"button"> &
-	VariantProps<typeof buttonVariants> & {
+  VariantProps<typeof buttonVariants> & {
-		asChild?: boolean;
+    asChild?: boolean
-	}) {
+  }) {
-	const Comp = asChild ? Slot.Root : "button";
+  const Comp = asChild ? Slot.Root : "button"
 
-	return (
+  return (
-		<Comp
+    <Comp
-			data-slot="button"
+      data-slot="button"
-			data-variant={variant}
+      data-variant={variant}
-			data-size={size}
+      data-size={size}
-			className={cn(buttonVariants({ variant, size, className }))}
+      className={cn(buttonVariants({ variant, size, className }))}
-			{...props}
+      {...props}
-		/>
+    />
-	);
+  )
 }
 
-export { Button, buttonVariants };
+export { Button, buttonVariants }

frontend/src/components/ui/dialog.tsx

@@ -0,0 +1,166 @@
+import * as React from "react"
+import { Dialog as DialogPrimitive } from "radix-ui"
+
+import { cn } from "@/lib/utils"
+import { Button } from "@/components/ui/button"
+import { XIcon } from "lucide-react"
+
+function Dialog({
+  ...props
+}: React.ComponentProps<typeof DialogPrimitive.Root>) {
+  return <DialogPrimitive.Root data-slot="dialog" {...props} />
+}
+
+function DialogTrigger({
+  ...props
+}: React.ComponentProps<typeof DialogPrimitive.Trigger>) {
+  return <DialogPrimitive.Trigger data-slot="dialog-trigger" {...props} />
+}
+
+function DialogPortal({
+  ...props
+}: React.ComponentProps<typeof DialogPrimitive.Portal>) {
+  return <DialogPrimitive.Portal data-slot="dialog-portal" {...props} />
+}
+
+function DialogClose({
+  ...props
+}: React.ComponentProps<typeof DialogPrimitive.Close>) {
+  return <DialogPrimitive.Close data-slot="dialog-close" {...props} />
+}
+
+function DialogOverlay({
+  className,
+  ...props
+}: React.ComponentProps<typeof DialogPrimitive.Overlay>) {
+  return (
+    <DialogPrimitive.Overlay
+      data-slot="dialog-overlay"
+      className={cn(
+        "fixed inset-0 isolate z-50 bg-black/10 duration-100 supports-backdrop-filter:backdrop-blur-xs data-open:animate-in data-open:fade-in-0 data-closed:animate-out data-closed:fade-out-0",
+        className
+      )}
+      {...props}
+    />
+  )
+}
+
+function DialogContent({
+  className,
+  children,
+  showCloseButton = true,
+  ...props
+}: React.ComponentProps<typeof DialogPrimitive.Content> & {
+  showCloseButton?: boolean
+}) {
+  return (
+    <DialogPortal>
+      <DialogOverlay />
+      <DialogPrimitive.Content
+        data-slot="dialog-content"
+        className={cn(
+          "fixed top-1/2 left-1/2 z-50 grid w-full max-w-[calc(100%-2rem)] -translate-x-1/2 -translate-y-1/2 gap-4 rounded-xl bg-popover p-4 text-sm text-popover-foreground ring-1 ring-foreground/10 duration-100 outline-none sm:max-w-sm data-open:animate-in data-open:fade-in-0 data-open:zoom-in-95 data-closed:animate-out data-closed:fade-out-0 data-closed:zoom-out-95",
+          className
+        )}
+        {...props}
+      >
+        {children}
+        {showCloseButton && (
+          <DialogPrimitive.Close data-slot="dialog-close" asChild>
+            <Button
+              variant="ghost"
+              className="absolute top-2 right-2"
+              size="icon-sm"
+            >
+              <XIcon
+              />
+              <span className="sr-only">Close</span>
+            </Button>
+          </DialogPrimitive.Close>
+        )}
+      </DialogPrimitive.Content>
+    </DialogPortal>
+  )
+}
+
+function DialogHeader({ className, ...props }: React.ComponentProps<"div">) {
+  return (
+    <div
+      data-slot="dialog-header"
+      className={cn("flex flex-col gap-2", className)}
+      {...props}
+    />
+  )
+}
+
+function DialogFooter({
+  className,
+  showCloseButton = false,
+  children,
+  ...props
+}: React.ComponentProps<"div"> & {
+  showCloseButton?: boolean
+}) {
+  return (
+    <div
+      data-slot="dialog-footer"
+      className={cn(
+        "-mx-4 -mb-4 flex flex-col-reverse gap-2 rounded-b-xl border-t bg-muted/50 p-4 sm:flex-row sm:justify-end",
+        className
+      )}
+      {...props}
+    >
+      {children}
+      {showCloseButton && (
+        <DialogPrimitive.Close asChild>
+          <Button variant="outline">Close</Button>
+        </DialogPrimitive.Close>
+      )}
+    </div>
+  )
+}
+
+function DialogTitle({
+  className,
+  ...props
+}: React.ComponentProps<typeof DialogPrimitive.Title>) {
+  return (
+    <DialogPrimitive.Title
+      data-slot="dialog-title"
+      className={cn(
+        "text-base leading-none font-medium",
+        className
+      )}
+      {...props}
+    />
+  )
+}
+
+function DialogDescription({
+  className,
+  ...props
+}: React.ComponentProps<typeof DialogPrimitive.Description>) {
+  return (
+    <DialogPrimitive.Description
+      data-slot="dialog-description"
+      className={cn(
+        "text-sm text-muted-foreground *:[a]:underline *:[a]:underline-offset-3 *:[a]:hover:text-foreground",
+        className
+      )}
+      {...props}
+    />
+  )
+}
+
+export {
+  Dialog,
+  DialogClose,
+  DialogContent,
+  DialogDescription,
+  DialogFooter,
+  DialogHeader,
+  DialogOverlay,
+  DialogPortal,
+  DialogTitle,
+  DialogTrigger,
+}

frontend/src/components/ui/tooltip.tsx

@@ -1,5 +1,4 @@
 import { Tooltip as TooltipPrimitive } from "radix-ui";
-import type * as React from "react";
 
 import { cn } from "@/lib/utils";
 
@@ -40,7 +39,7 @@ function TooltipContent({
 				data-slot="tooltip-content"
 				sideOffset={sideOffset}
 				className={cn(
-					"z-50 w-fit origin-(--radix-tooltip-content-transform-origin) animate-in rounded-md bg-foreground px-3 py-1.5 text-xs text-balance text-background fade-in-0 zoom-in-95 data-[side=bottom]:slide-in-from-top-2 data-[side=left]:slide-in-from-right-2 data-[side=right]:slide-in-from-left-2 data-[side=top]:slide-in-from-bottom-2 data-[state=closed]:animate-out data-[state=closed]:fade-out-0 data-[state=closed]:zoom-out-95",
+					"z-50 inline-flex w-fit max-w-xs origin-(--radix-tooltip-content-transform-origin) items-center gap-1.5 rounded-md bg-foreground px-3 py-1.5 text-xs text-background has-data-[slot=kbd]:pr-1.5 data-[side=bottom]:slide-in-from-top-2 data-[side=left]:slide-in-from-right-2 data-[side=right]:slide-in-from-left-2 data-[side=top]:slide-in-from-bottom-2 **:data-[slot=kbd]:relative **:data-[slot=kbd]:isolate **:data-[slot=kbd]:z-50 **:data-[slot=kbd]:rounded-sm data-[state=delayed-open]:animate-in data-[state=delayed-open]:fade-in-0 data-[state=delayed-open]:zoom-in-95 data-open:animate-in data-open:fade-in-0 data-open:zoom-in-95 data-closed:animate-out data-closed:fade-out-0 data-closed:zoom-out-95",
 					className,
 				)}
 				{...props}
@@ -52,4 +51,4 @@ function TooltipContent({
 	);
 }
 
-export { Tooltip, TooltipTrigger, TooltipContent, TooltipProvider };
+export { Tooltip, TooltipContent, TooltipProvider, TooltipTrigger };

frontend/src/docs/mobile/updateInstructions.tsx

@@ -0,0 +1,137 @@
+import { useMutation } from "@tanstack/react-query";
+import { Button } from "../../components/ui/button";
+import { Separator } from "../../components/ui/separator";
+
+export default function UpdateInstructions() {
+	const getFile = useMutation({
+		mutationFn: async () => {
+			// 1. Fetch the file from the public folder
+			const response = await fetch(
+				`/lst/app/stage-now/${window.LST_CONFIG?.server}-stageNow.pdf`,
+			);
+			if (!response.ok) throw new Error("Network response was not ok");
+
+			// 2. Convert to blob
+			return await response.blob();
+		},
+		onSuccess: (blob) => {
+			// 3. Create a temporary anchor element to trigger download
+			const url = window.URL.createObjectURL(blob);
+			const a = document.createElement("a");
+			a.href = url;
+			a.download = `${window.LST_CONFIG?.server}-stageNow.pdf`; // Desired filename
+			document.body.appendChild(a);
+			a.click();
+
+			// 4. Cleanup
+			window.URL.revokeObjectURL(url);
+			document.body.removeChild(a);
+		},
+	});
+
+	return (
+		<div className="flex flex-row gap-2">
+			<div className="w-1/2">
+				<div className="flex flex-col gap-1 justify-center">
+					<div>
+						<p className="text-center text-3xl">
+							Updating the lst mobile scanner app
+						</p>
+						<p className="text-center text-sm">
+							NOTE: LST Mobile only works on TC8300
+						</p>
+					</div>
+					<div className="flex justify-center">
+						<Button
+							onClick={() => getFile.mutate()}
+							disabled={getFile.isPending}
+						>
+							{getFile.isPending ? "Downloading..." : "Get StageNow Codes"}
+						</Button>
+					</div>
+				</div>
+				<Separator className="m-3" />
+				<div>
+					<p className="text-2xl text-center">
+						How to know the scanner has an update?
+					</p>
+					<p>
+						The bottom part of the scanner will show a red or orange bar
+						indicating there is an update. As shown below
+					</p>
+					<div className="flex flex-row gap-2 justify-center">
+						<div className="w-1/2">
+							<img
+								src="/lst/app/imgs/docs/mobile/critical_update.png"
+								alt="Home"
+								className="max-w-[50%] h-auto"
+							/>
+						</div>
+
+						<div className="w-1/2">
+							<img
+								src="/lst/app/imgs/docs/mobile/update.png"
+								alt="Home"
+								className="max-w-[50%] h-auto"
+							/>
+						</div>
+					</div>
+				</div>
+
+				<Separator className="m-3" />
+				<div>
+					<p className="text-2xl text-center">
+						To update the scanner follow the below steps.
+					</p>
+					<p>Step 1) Tap the 3 dots top right of the home screen</p>
+					<img
+						src="/lst/app/imgs/docs/mobile/ehs_homeScreen.png"
+						alt="Home"
+						className="max-w-[25%] h-auto m-3"
+					/>
+					<p>Step 2) Tap tools</p>
+					<img
+						src="/lst/app/imgs/docs/mobile/ehs_menu.png"
+						alt="Home"
+						className="max-w-[25%] h-auto m-3"
+					/>
+					<p>Step 3) Tap Stage Now</p>
+					<img
+						src="/lst/app/imgs/docs/mobile/tools.png"
+						alt="Home"
+						className="max-w-[25%] h-auto m-3"
+					/>
+					<p>
+						Step 4) Scan the 3 barcode's to the right or from the printed sheet
+					</p>
+					<img
+						src="/lst/app/imgs/docs/mobile/stagenow.png"
+						alt="Home"
+						className="max-w-[25%] h-auto m-3"
+					/>
+				</div>
+			</div>
+			<div className="w-1/2">
+				<p>Scan Commands</p>
+				<Separator className="m-3" />
+				<div className="flex flex-col justify-center">
+					<img
+						src={`/lst/app/imgs/docs/mobile/${window.LST_CONFIG?.server}-1.png`}
+						alt="Home"
+						className="m-3"
+					/>
+					<img
+						src={`/lst/app/imgs/docs/mobile/${window.LST_CONFIG?.server}-2.png`}
+						alt="Home"
+						className="m-3"
+					/>
+					<img
+						src={`/lst/app/imgs/docs/mobile/${window.LST_CONFIG?.server}-3.png`}
+						alt="Home"
+						className="m-3"
+					/>
+				</div>
+			</div>
+		</div>
+	);
+}

frontend/src/lib/apiHelper.ts

@@ -0,0 +1,47 @@
+import type { Router } from "@tanstack/react-router";
+import axios from "axios";
+import { toast } from "sonner";
+
+let appRouter: Router<any, any> | null = null;
+
+export function setApiRouter(router: Router<any, any>) {
+	appRouter = router;
+}
+
+export const api = axios.create({
+	baseURL: "/lst/api",
+	withCredentials: true,
+	timeout: 15000,
+});
+
+api.interceptors.response.use(
+	(response) => response,
+	(error) => {
+		const isNetworkError =
+			error.code === "ERR_NETWORK" ||
+			error.code === "ECONNABORTED" ||
+			error.message === "Network Error" ||
+			error.message === "Failed to fetch" ||
+			!error.response;
+
+		if (error.response?.status === 403) {
+			// redirect, toast, or show forbidden page
+			toast.error("Unauthorized to be here");
+
+			appRouter?.navigate({ to: "/forbidden", replace: true });
+		}
+
+		if (error.response?.status === 401) {
+			// redirect, toast, or show forbidden page
+			toast.error("Unauthorized to be here");
+
+			appRouter?.navigate({ to: "/login", replace: true });
+		}
+
+		if (isNetworkError) {
+			appRouter?.navigate({ to: "/app-down", replace: true });
+		}
+
+		return Promise.reject(error);
+	},
+);

frontend/src/lib/auth-client.ts

@@ -1,6 +1,12 @@
-import { adminClient } from "better-auth/client/plugins";
+import { redirect } from "@tanstack/react-router";
+import {
+	adminClient,
+	genericOAuthClient,
+	usernameClient,
+} from "better-auth/client/plugins";
+
 import { createAuthClient } from "better-auth/react";
-import { ac, admin, systemAdmin, user } from "./auth-permissions";
+import { ac, admin, manager, systemAdmin, user } from "./auth-permissions";
 
 export const authClient = createAuthClient({
 	baseURL: `${window.location.origin}/lst/api/auth`,
@@ -10,10 +16,21 @@ export const authClient = createAuthClient({
 			roles: {
 				admin,
 				user,
+				manager,
 				systemAdmin,
 			},
 		}),
+		genericOAuthClient(),
+		usernameClient(),
 	],
+	fetchOptions: {
+		onError() {
+			redirect({
+				to: "/app-down",
+				replace: true,
+			});
+		},
+	},
 });
 
 export const { useSession, signUp, signIn, signOut } = authClient;

frontend/src/lib/auth-permissions.ts

@@ -1,21 +1,71 @@
 import { createAccessControl } from "better-auth/plugins/access";
+import { adminAc, defaultStatements } from "better-auth/plugins/admin/access";
+
+/*
+When new perms are added based on there criteria make sure they are added here as well
+*/
+
+type SelectableRole = {
+	label: string;
+	value: string;
+};
+
+export const selectableRoles: SelectableRole[] = [
+	{ label: "User", value: "user" },
+	{ label: "Manager", value: "manager" },
+	{ label: "Admin", value: "admin" },
+	{ label: "System Admin", value: "systemAdmin" },
+];
 
 export const statement = {
-	project: ["create", "share", "update", "delete"],
+	...defaultStatements,
-	user: ["ban"],
+	app: ["read", "create", "share", "update", "delete", "readAll"],
+	quality: ["read", "create", "share", "update", "delete", "readAll"],
+	logistics: ["read", "create", "share", "update", "delete", "readAll"],
+	mobile: ["read", "create", "share", "update", "delete", "readAll"],
+	notifications: ["read", "create", "share", "update", "delete", "readAll"],
 } as const;
 
 export const ac = createAccessControl(statement);
 
 export const user = ac.newRole({
-	project: ["create"],
+	app: ["read", "create"],
+	notifications: ["read", "create"],
+});
+
+export const manager = ac.newRole({
+	app: ["read", "create", "update"],
+	mobile: ["read", "create", "update"],
 });
 
 export const admin = ac.newRole({
-	project: ["create", "update"],
+	app: ["read", "create", "update"],
+	mobile: ["read", "create", "update"],
+	user: ["create", "update"],
 });
 
 export const systemAdmin = ac.newRole({
-	project: ["create", "update", "delete"],
+	...adminAc.statements,
-	user: ["ban"],
+	app: ["read", "create", "share", "update", "delete", "readAll"],
+	quality: ["read", "create", "share", "update", "delete", "readAll"],
+	mobile: ["read", "create", "share", "update", "delete", "readAll"],
+	logistics: ["read", "create", "share", "update", "delete", "readAll"],
+	notifications: ["read", "create", "share", "update", "delete", "readAll"],
 });
+
+/* example usage
+const canCreateProject = await authClient.admin.hasPermission({
+  permissions: {
+    project: ["create"],
+  },
+});
+// You can also check multiple resource permissions at the same time
+const canCreateProjectAndCreateSale = await authClient.admin.hasPermission({
+  permissions: {
+    project: ["create"],
+    sale: ["create"]
+  },
+});
+
+
+*/

frontend/src/lib/docs.ts

@@ -13,9 +13,7 @@ const docsMap: Record<string, ComponentType> = {};
 for (const path in modules) {
 	const mod = modules[path] as DocModule;
 
-	const slug = path
+	const slug = path.replace("../docs/", "").replace(".tsx", "");
-		.replace("../docs/", "")
-		.replace(".tsx", "");
 
 	// "notifications/intro"
 	docsMap[slug] = mod.default;
@@ -23,4 +21,4 @@ for (const path in modules) {
 
 export function getDoc(slug: string) {
 	return docsMap[slug];
-}
+}

frontend/src/lib/queries/getScanUsers.ts

@@ -0,0 +1,25 @@
+import { keepPreviousData, queryOptions } from "@tanstack/react-query";
+import { api } from "../apiHelper";
+
+export function getScanUsers() {
+	return queryOptions({
+		queryKey: ["getScanUsers"],
+		queryFn: () => dataFetch(),
+		staleTime: 5000,
+		refetchOnWindowFocus: true,
+		placeholderData: keepPreviousData,
+	});
+}
+
+const dataFetch = async () => {
+	if (window.location.hostname === "localhost") {
+		await new Promise((res) => setTimeout(res, 1500));
+	}
+
+	const { data } = await api.get("/mobile/auth/user");
+	if (!data.success) {
+		throw new Error(data.message ?? "Failed to load scan users");
+	}
+
+	return data.data ?? [];
+};

frontend/src/lib/queries/getScannerIds.ts

@@ -0,0 +1,23 @@
+import { keepPreviousData, queryOptions } from "@tanstack/react-query";
+
+import { api } from "../apiHelper";
+
+export function getScannerIds() {
+	return queryOptions({
+		queryKey: ["getScannerIds"],
+		queryFn: () => fetch(),
+		staleTime: 5000,
+		refetchOnWindowFocus: true,
+		placeholderData: keepPreviousData,
+	});
+}
+
+const fetch = async () => {
+	if (window.location.hostname === "localhost") {
+		await new Promise((res) => setTimeout(res, 1500));
+	}
+
+	const { data } = await api.get("/mobile/available");
+
+	return data.data;
+};

frontend/src/lib/queries/getSettings.ts

@@ -1,5 +1,6 @@
 import { keepPreviousData, queryOptions } from "@tanstack/react-query";
-import axios from "axios";
+
+import { api } from "../apiHelper";
 
 export function getSettings() {
 	return queryOptions({
@@ -16,7 +17,7 @@ const fetch = async () => {
 		await new Promise((res) => setTimeout(res, 1500));
 	}
 
-	const { data } = await axios.get("/lst/api/settings");
+	const { data } = await api.get("/settings");
 
 	return data.data;
 };

frontend/src/lib/queries/getUsers.ts

@@ -0,0 +1,40 @@
+import { keepPreviousData, queryOptions } from "@tanstack/react-query";
+
+import { authClient } from "../auth-client";
+
+export function getUsers() {
+	return queryOptions({
+		queryKey: ["getUsers"],
+		queryFn: () => fetch(),
+		staleTime: 5000,
+		refetchOnWindowFocus: true,
+		placeholderData: keepPreviousData,
+	});
+}
+
+const fetch = async () => {
+	if (window.location.hostname === "localhost") {
+		await new Promise((res) => setTimeout(res, 1500));
+	}
+
+	const { data, error } = await authClient.admin.listUsers({
+		query: {
+			// searchValue: "some name",
+			// searchField: "name",
+			// searchOperator: "contains",
+			limit: 100,
+			offset: 0,
+			sortBy: "name",
+			// sortDirection: "desc",
+			// filterField: "email",
+			// filterValue: "hello@example.com",
+			// filterOperator: "eq",
+		},
+	});
+
+	if (error) {
+		return error;
+	}
+
+	return data.users;
+};

frontend/src/lib/queries/notificationSubs.ts

@@ -1,5 +1,6 @@
 import { keepPreviousData, queryOptions } from "@tanstack/react-query";
-import axios from "axios";
+
+import { api } from "../apiHelper";
 
 export function notificationSubs(userId?: string) {
 	return queryOptions({
@@ -16,8 +17,8 @@ const fetch = async (userId?: string) => {
 		await new Promise((res) => setTimeout(res, 1500));
 	}
 
-	const { data } = await axios.get(
+	const { data } = await api.get(
-		`/lst/api/notification/sub${userId ? `?userId=${userId}` : ""}`,
+		`/notification/sub${userId ? `?userId=${userId}` : ""}`,
 	);
 
 	return data.data;

frontend/src/lib/queries/notifications.ts

@@ -1,5 +1,6 @@
 import { keepPreviousData, queryOptions } from "@tanstack/react-query";
-import axios from "axios";
+
+import { api } from "../apiHelper";
 
 export function notifications() {
 	return queryOptions({
@@ -16,7 +17,7 @@ const fetch = async () => {
 		await new Promise((res) => setTimeout(res, 1500));
 	}
 
-	const { data } = await axios.get("/lst/api/notification");
+	const { data } = await api.get("/notification");
 
 	return data.data;
 };

frontend/src/lib/queries/permsCheck.ts

@@ -0,0 +1,16 @@
+import { queryOptions } from "@tanstack/react-query";
+import { authClient } from "@/lib/auth-client";
+
+export function permissionQuery(permissions: Record<string, string[]>) {
+	return queryOptions({
+		queryKey: ["permission", permissions],
+		queryFn: async () => {
+			const result = await authClient.admin.hasPermission({
+				permissions,
+			});
+
+			return result.data?.success ?? false;
+		},
+		staleTime: 30_000,
+	});
+}