Admin Panel
User and system management for administrators.
Admin Panel
Administrative functions for user management, plan administration, and system statistics.
User Management
List Users
curl -X GET "https://api.mondialspeech.com/api/v1/admin/users?skip=0&take=10" \
-H "Authorization: Bearer <ADMIN_TOKEN>"Get User Details
curl -X GET https://api.mondialspeech.com/api/v1/admin/users/{userId} \
-H "Authorization: Bearer <ADMIN_TOKEN>"Grant Tokens to User
curl -X POST https://api.mondialspeech.com/api/v1/admin/users/grant-tokens \
-H "Authorization: Bearer <ADMIN_TOKEN>" \
-H "Content-Type: application/json" \
-d '{"userId":"<USER_ID>","tokens":10000,"reason":"Support credit"}'Set Admin Role
curl -X POST https://api.mondialspeech.com/api/v1/admin/users/set-admin \
-H "Authorization: Bearer <ADMIN_TOKEN>" \
-H "Content-Type: application/json" \
-d '{"userId":"<USER_ID>","isAdmin":true}'Plan Management
List Plans
curl -X GET https://api.mondialspeech.com/api/v1/admin/plans \
-H "Authorization: Bearer <ADMIN_TOKEN>"Create Plan
curl -X POST https://api.mondialspeech.com/api/v1/admin/plans \
-H "Authorization: Bearer <ADMIN_TOKEN>" \
-H "Content-Type: application/json" \
-d '{"name":"Premium Plan","monthlyTokens":200000,"priceUsd":29.99,"stripePriceId":"price_123"}'Toggle Plan Status
curl -X PUT https://api.mondialspeech.com/api/v1/admin/plans/{id}/toggle \
-H "Authorization: Bearer <ADMIN_TOKEN>"System Statistics
Get System Stats
curl -X GET https://api.mondialspeech.com/api/v1/admin/stats \
-H "Authorization: Bearer <ADMIN_TOKEN>"Statistics Response
{
"total_users": 1250,
"active_subscriptions": 890,
"total_tokens_used": 5000000,
"total_revenue": 125000.50,
"usage_by_type": [
{
"type": "TTS",
"tokens_used": 3000000,
"percentage": 60
},
{
"type": "STT",
"tokens_used": 1500000,
"percentage": 30
},
{
"type": "Music",
"tokens_used": 500000,
"percentage": 10
}
]
}Admin Requirements
Required Role
- Admin role required for all endpoints
- JWT token with admin privileges
- Access control based on user permissions
Security Considerations
- Audit logging for all admin actions
- Rate limiting on admin endpoints
- IP restrictions for sensitive operations
- Two-factor authentication recommended
Error Handling
403 Forbidden
{ "error": "Admin access required" }404 Not Found
{ "error": "User not found" }400 Bad Request
{ "error": "Invalid admin operation" }Best Practices
User Management
- Verify user identity before granting tokens
- Document reasons for admin actions
- Monitor admin activity regularly
- Use least privilege principle
System Monitoring
- Track usage patterns and trends
- Monitor system performance
- Alert on anomalies
- Regular health checks
Security
- Rotate admin tokens regularly
- Use secure connections only
- Log all admin actions
- Review access permissions periodically