T.ME/BIBIL_0DAY
CasperSecurity


Server : Apache/2
System : Linux server-15-235-50-60 5.15.0-164-generic #174-Ubuntu SMP Fri Nov 14 20:25:16 UTC 2025 x86_64
User : gositeme ( 1004)
PHP Version : 8.2.29
Disable Function : exec,system,passthru,shell_exec,proc_close,proc_open,dl,popen,show_source,posix_kill,posix_mkfifo,posix_getpwuid,posix_setpgid,posix_setsid,posix_setuid,posix_setgid,posix_seteuid,posix_setegid,posix_uname
Directory :  /home/gositeme/backups/lavocat.quebec/backup-20250730-021618/src/pages/api/admin/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Current File : /home/gositeme/backups/lavocat.quebec/backup-20250730-021618/src/pages/api/admin/export-csv.ts
import type { NextApiRequest, NextApiResponse } from 'next';
import { getServerSession } from 'next-auth';
import { authOptions } from '@/lib/auth';
import { prisma } from '@/lib/prisma';
import { format } from 'date-fns';
import { Parser } from 'json2csv';
import { getFacilityName } from '@/utils/facilities';

export default async function handler(req: NextApiRequest, res: NextApiResponse) {
  const session = await getServerSession(req, res, authOptions);

  if (!session || !['ADMIN', 'SUPERADMIN'].includes(session.user.role)) {
    return res.status(401).json({ error: 'Unauthorized' });
  }

  if (req.method === 'GET') {
    try {
      const registrations = await prisma.registration.findMany({
        include: {
          address: true,
          detaineeInfo: true,
        },
        orderBy: {
          createdAt: 'desc',
        },
      });

      // Transform data for CSV
      const csvData = registrations.map(reg => ({
        Date: format(new Date(reg.createdAt), 'MMM d, yyyy'),
        Name: `${reg.firstName} ${reg.lastName}`,
        Email: reg.email,
        Phone: reg.phone,
        Status: reg.status,
        Relationship: reg.relationship,
        Language: reg.preferredLanguage,
        ContactMethod: reg.preferredContactMethod,
        Street: reg.address?.street || '',
        City: reg.address?.city || '',
        State: reg.address?.state || '',
        PostalCode: reg.address?.postalCode || '',
        Country: reg.address?.country || '',
        DetaineeName: reg.detaineeInfo?.name || '',
        Facility: reg.detaineeInfo?.facility ? getFacilityName(reg.detaineeInfo.facility) : '',
        InmateID: reg.detaineeInfo?.inmateId || '',
        IncarcerationDate: reg.detaineeInfo?.incarcerationDate ? format(new Date(reg.detaineeInfo.incarcerationDate), 'MMM d, yyyy') : '',
        ExpectedReleaseDate: reg.detaineeInfo?.expectedReleaseDate ? format(new Date(reg.detaineeInfo.expectedReleaseDate), 'MMM d, yyyy') : '',
        Message: reg.message || '',
      }));

      const fields = [
        'Date',
        'Name',
        'Email',
        'Phone',
        'Status',
        'Relationship',
        'Language',
        'ContactMethod',
        'Street',
        'City',
        'State',
        'PostalCode',
        'Country',
        'DetaineeName',
        'Facility',
        'InmateID',
        'IncarcerationDate',
        'ExpectedReleaseDate',
        'Message',
      ];

      const json2csvParser = new Parser({ fields });
      const csv = json2csvParser.parse(csvData);

      res.setHeader('Content-Type', 'text/csv');
      res.setHeader('Content-Disposition', 'attachment; filename=registrations.csv');
      res.send(csv);
    } catch (error) {
      console.error('Error exporting CSV:', error);
      res.status(500).json({ error: 'Error exporting CSV' });
    }
  }

  return res.status(405).json({ error: 'Method not allowed' });
}

CasperSecurity Mini