feat(#78): add SIS deep-link API route with audit logging

William-Hill · William-Hill · commit b70cdda96acb · 2026-04-02T09:40:40.000-04:00
diff --git a/codebenders-dashboard/app/api/students/[guid]/sis-link/route.ts b/codebenders-dashboard/app/api/students/[guid]/sis-link/route.ts
@@ -0,0 +1,68 @@
+import { type NextRequest, NextResponse } from "next/server"
+import { mkdir, appendFile } from "fs/promises"
+import path from "path"
+import { getPool } from "@/lib/db"
+import type { Role } from "@/lib/roles"
+
+const ALLOWED_ROLES: Role[] = ["admin", "advisor", "ir"]
+
+const LOGS_DIR = path.join(process.cwd(), "logs")
+const LOG_FILE = path.join(LOGS_DIR, "query-history.jsonl")
+
+export async function GET(
+  request: NextRequest,
+  { params }: { params: Promise<{ guid: string }> }
+) {
+  // Feature disabled if SIS_BASE_URL is not configured
+  const sisBaseUrl = process.env.SIS_BASE_URL
+  if (!sisBaseUrl) {
+    return NextResponse.json({ url: null }, { status: 404 })
+  }
+
+  // Role check
+  const role = request.headers.get("x-user-role") as Role | null
+  if (!role || !ALLOWED_ROLES.includes(role)) {
+    return NextResponse.json({ error: "Forbidden" }, { status: 403 })
+  }
+
+  const { guid } = await params
+  if (!guid) {
+    return NextResponse.json({ error: "Missing student GUID" }, { status: 400 })
+  }
+
+  try {
+    // Look up SIS ID from mapping table
+    const pool = getPool()
+    const result = await pool.query(
+      "SELECT sis_id FROM guid_sis_map WHERE student_guid = $1 LIMIT 1",
+      [guid]
+    )
+
+    if (result.rows.length === 0) {
+      return NextResponse.json({ url: null }, { status: 404 })
+    }
+
+    // Build URL server-side — SIS ID never reaches the client
+    const sisIdParam = process.env.SIS_ID_PARAM || "id"
+    const sisId = result.rows[0].sis_id
+    const url = `${sisBaseUrl}?${encodeURIComponent(sisIdParam)}=${encodeURIComponent(sisId)}`
+
+    // Audit log — GUID and role only, never the SIS ID
+    const logEntry = {
+      event: "sis_link_accessed",
+      guid,
+      role,
+      timestamp: new Date().toISOString(),
+    }
+    await mkdir(LOGS_DIR, { recursive: true })
+    await appendFile(LOG_FILE, JSON.stringify(logEntry) + "\n", "utf8")
+
+    return NextResponse.json({ url })
+  } catch (error) {
+    console.error("SIS link lookup error:", error)
+    return NextResponse.json(
+      { error: "Failed to look up SIS link" },
+      { status: 500 }
+    )
+  }
+}
