Module admin 

Administrative API Endpoints

Handles user management, system configuration, and admin operations.

Security Model

Every handler in this module must independently verify the caller holds the admin role via [verify_admin_role]. There is no middleware-level admin guard on these routes — authorization is enforced per-handler so that non-admin error paths can still return proper 401/403 responses.

When adding new admin endpoints, always call verify_admin_role(&auth_token)? immediately after token validation.

Structs

ActivateUserRequest

PUT /admin/users/{user_id}/activate Activate/deactivate user (admin only)

AdminConfigUpdate

Request body for PUT /admin/config — all fields optional.

AdminConfigView

Response body for GET /admin/config.

AuditLogEntry

GET /admin/audit-logs Get audit logs (admin only)

AuditLogQuery

AuditLogResponse

AuditLogStats

Summary statistics returned by GET /admin/audit-logs/stats.

CreateUserRequest

Create user request

SystemStats

System stats response

UpdateUserRolesRequest

Update user roles request

UserListItem

User list item

UserListQuery

User list query parameters

UserListResponse

User list response

Functions

activate_user

create_user

POST /admin/users Create new user (admin only)

delete_user

DELETE /admin/users/{user_id} Delete user (admin only)

get_audit_log_stats

GET /admin/audit-logs/stats

get_audit_logs

get_config

GET /admin/config

get_system_stats

GET /admin/stats Get system statistics (admin only)

list_users

GET /admin/users List all users (admin only)

update_config

PUT /admin/config

update_user_roles

PUT /admin/users/{user_id}/roles Update user roles (admin only)