Feature session management

server/routers/external.ts

@@ -14,6 +14,7 @@ import * as accessToken from "./accessToken";
 import * as idp from "./idp";
 import * as license from "./license";
 import * as apiKeys from "./apiKeys";
+import * as session from "./session";
 import HttpCode from "@server/types/HttpCode";
 import {
     verifyAccessTokenAccess,
@@ -784,6 +785,14 @@ authenticated.delete(
     domain.deleteAccountDomain
 );
 
+// Session management routes (admin only)
+authenticated.get("/sessions/users", verifyUserIsServerAdmin, session.listUserSessions);
+authenticated.get("/sessions/resources", verifyUserIsServerAdmin, session.listResourceSessions);
+authenticated.delete("/session/user/:sessionId", verifyUserIsServerAdmin, session.invalidateUserSession);
+authenticated.delete("/session/resource/:sessionId", verifyUserIsServerAdmin, session.invalidateResourceSession);
+authenticated.delete("/sessions/user/:userId", verifyUserIsServerAdmin, session.invalidateAllUserSessions);
+authenticated.get("/sessions/stats", verifyUserIsServerAdmin, session.getSessionStats);
+
 // Auth routes
 export const authRouter = Router();
 unauthenticated.use("/auth", authRouter);

server/routers/session/getSessionStats.ts

@@ -0,0 +1,70 @@
+import { Request, Response, NextFunction } from "express";
+import createHttpError from "http-errors";
+import HttpCode from "@server/types/HttpCode";
+import { response } from "@server/lib";
+import { db, sessions, resourceSessions } from "@server/db";
+import { count, lt } from "drizzle-orm";
+import logger from "@server/logger";
+
+export type GetSessionStatsResponse = {
+    stats: {
+        totalUserSessions: number;
+        totalResourceSessions: number;
+        userSessionsExpiringSoon: number;
+        resourceSessionsExpiringSoon: number;
+    };
+};
+
+export async function getSessionStats(
+    req: Request,
+    res: Response,
+    next: NextFunction,
+): Promise<any> {
+    try {
+        const now = Date.now();
+        const oneHourFromNow = now + (60 * 60 * 1000); // 1 hour in milliseconds
+
+        // Get user session counts
+        const [userSessionsResult] = await db
+            .select({ count: count() })
+            .from(sessions);
+
+        const [userSessionsExpiringSoonResult] = await db
+            .select({ count: count() })
+            .from(sessions)
+            .where(lt(sessions.expiresAt, oneHourFromNow));
+
+        // Get resource session counts
+        const [resourceSessionsResult] = await db
+            .select({ count: count() })
+            .from(resourceSessions);
+
+        const [resourceSessionsExpiringSoonResult] = await db
+            .select({ count: count() })
+            .from(resourceSessions)
+            .where(lt(resourceSessions.expiresAt, oneHourFromNow));
+
+        const stats = {
+            totalUserSessions: userSessionsResult?.count || 0,
+            totalResourceSessions: resourceSessionsResult?.count || 0,
+            userSessionsExpiringSoon: userSessionsExpiringSoonResult?.count || 0,
+            resourceSessionsExpiringSoon: resourceSessionsExpiringSoonResult?.count || 0,
+        };
+
+        return response<GetSessionStatsResponse>(res, {
+            data: { stats },
+            success: true,
+            error: false,
+            message: "Session statistics retrieved successfully",
+            status: HttpCode.OK,
+        });
+    } catch (e) {
+        logger.error("Failed to get session statistics", e);
+        return next(
+            createHttpError(
+                HttpCode.INTERNAL_SERVER_ERROR,
+                "Failed to get session statistics",
+            ),
+        );
+    }
+}

server/routers/session/index.ts

@@ -0,0 +1,6 @@
+export * from "./listUserSessions";
+export * from "./listResourceSessions";
+export * from "./invalidateUserSession";
+export * from "./invalidateResourceSession";
+export * from "./invalidateAllUserSessions";
+export * from "./getSessionStats";