chore: bump

Author: polarhive

package-lock.json

@@ -45,6 +45,6 @@
     "eslint-config-next": "15.5.4",
     "ignore-loader": "^0.1.2",
     "tailwindcss": "^4",
-    "typescript": "^5"
+    "typescript": "5.9.3"
   }
 }

package.json

@@ -1,18 +1,34 @@
 import { NextResponse } from 'next/server';
-import { getToken } from 'next-auth/jwt';
+import { auth } from '@/lib/auth';
 
-export async function GET(req: Request) {
+export async function GET() {
   try {
-    const token = await getToken({ req, secret: process.env.NEXTAUTH_SECRET });
-    const role = token?.role as string | undefined;
-    if (!role || !(role === 'admin' || role === 'organizer')) {
-      return new NextResponse(JSON.stringify({ error: 'Forbidden' }), { status: 403 });
+    const session = await auth();
+    
+    // User must be logged in
+    if (!session?.user) {
+      return NextResponse.json(
+        { error: 'Authentication required' },
+        { status: 401 }
+      );
+    }
+    
+    // User must be admin or organizer
+    if (session.user.role !== 'admin' && session.user.role !== 'organizer') {
+      return NextResponse.json(
+        { error: 'Admin or organizer access required' },
+        { status: 403 }
+      );
     }
 
-  const csvMailerLink = process.env.CSV_MAILER_LINK ?? process.env.NEXT_PUBLIC_CSV_MAILER_LINK ?? '';
-  const csvMailerPrimary = process.env.CSV_MAILER_PRIMARY ?? process.env.NEXT_PUBLIC_CSV_MAILER_PRIMARY ?? '';
-  return NextResponse.json({ csvMailerLink, csvMailerPrimary });
-  } catch {
-    return new NextResponse(JSON.stringify({ error: 'Server error' }), { status: 500 });
+    const csvMailerLink = process.env.CSV_MAILER_LINK ?? '';
+    const csvMailerPrimary = process.env.CSV_MAILER_PRIMARY ?? '';
+    return NextResponse.json({ csvMailerLink, csvMailerPrimary });
+  } catch (error) {
+    console.error('Error in /api/env/csv:', error);
+    return NextResponse.json(
+      { error: 'Server error' },
+      { status: 500 }
+    );
   }
 }

src/app/api/env/csv/route.ts

@@ -55,8 +55,7 @@ export default function PendingRegistrationsPage({ params }: PageParams) {
   const [statusFilter, setStatusFilter] = useState<'all' | 'pending' | 'approved' | 'rejected' | 'checked-in'>('all');
   const [searchQuery, setSearchQuery] = useState<string>('');
   const [draftMessage, setDraftMessage] = useState<string>(`Hello!\nYou are invited to {EVENT_NAME}.\nPlease confirm your attendance by completing the payment and uploading the payment receipt using the payment confirmation form below.\n\nPayment confirmation form: https://forms.gle/\n\nPlease complete payment by the deadline.\n\nThanks,\nTeam`);
-  const defaultCsvUrl = process.env.NEXT_PUBLIC_CSV_MAILER_LINK ?? process.env.CSV_MAILER_LINK ?? '';
-  const [csvUrl, setCsvUrl] = useState<string>(defaultCsvUrl);
+  const [csvUrl, setCsvUrl] = useState<string>('');
   const [csvRows, setCsvRows] = useState<Array<Record<string, string>>>([]);
   const [csvIndex, setCsvIndex] = useState<Record<string, Record<string, string>>>({});
   const [csvKeyField, setCsvKeyField] = useState<string>('SRN');