Admin API and container deletion

[runleveldev]

This pull request introduces major improvements to the data model, authentication middleware, and database schema for the LXC container management application. The changes include a migration to a normalized node model, enhanced uniqueness constraints, new authentication middleware, and the addition of several dependencies for session and flash message support.

Database Model and Migration Overhaul:

• Added a new Node model and table, normalized container-to-node relationships by replacing the string node field in Container with a foreign key nodeId, and migrated all relevant data and constraints. This includes new migrations for creating the Nodes table, updating Containers, and seeding and converting data appropriately. (create-a-container/migrations/20251104184238-add-node-field-to-containers.js, create-a-container/migrations/20251104193601-create-node.js, create-a-container/migrations/20251104193722-convert-container-node-to-node-id.js, create-a-container/models/node.js, create-a-container/models/container.js) [1] [2] [3] [4] [5] [6] [7]

• Enforced service uniqueness at the database level by adding unique indexes for HTTP services on externalHostname and for TCP/UDP services on the tuple (type, externalPort). (create-a-container/migrations/20251104160710-add-service-uniqueness-constraints.js, create-a-container/models/service.js) [1] [2]

• Extended the Node model and table to store Proxmox API token credentials (tokenId, secret). (create-a-container/migrations/20251105145958-add-api-token-to-nodes.js, create-a-container/models/node.js) [1] [2]

Authentication and Session Management:

• Added new authentication middleware to distinguish between API and browser requests, returning appropriate responses or redirects, and introduced an admin-only middleware. (create-a-container/middlewares/index.js)

• Added a migration for a persistent Sessions table, supporting session storage for authentication. (create-a-container/migrations/20251105155228-create-sessions-table.js)

API and Documentation Updates:

• Updated the API documentation to include a new DELETE /containers/:id endpoint for authenticated container deletion with proper authorization and cleanup. (create-a-container/README.md)

• Documented the new data model with an ER diagram and key constraints in the README. (create-a-container/README.md)

Dependency Additions and Configuration:

• Added new dependencies for session storage (express-session-sequelize), flash messaging (connect-flash), and HTTP method override (method-override). (create-a-container/package.json, create-a-container/package-lock.json) [1] [2] [3] [4] [5]

• Disabled SQL logging in the production Sequelize configuration. (create-a-container/config/config.js)

[Copilot]

Copilot encountered an error and was unable to review this pull request. You can try again by re-requesting a review.

[Copilot]

Pull Request Overview

Copilot reviewed 20 out of 21 changed files in this pull request and generated 12 comments.

Files not reviewed (1)

• create-a-container/package-lock.json: Language not supported

[Copilot]

Pull Request Overview

Copilot reviewed 20 out of 21 changed files in this pull request and generated 11 comments.

Files not reviewed (1)

• create-a-container/package-lock.json: Language not supported

[cmyers-mieweb]

Looks good, we can work on getting this merged next week.