intaleq_v3_pure_php/Admin/v2/security/audit_logs.php

<?php
// Admin/v2/security/audit_logs.php

// ── سجل تتبع فوري — يكتب قبل أي شيء آخر ────────────────
$debugFile = __DIR__ . '/fetch_debug.txt';
file_put_contents($debugFile, "[" . date('Y-m-d H:i:s') . "] === REQUEST START ===\n", FILE_APPEND);

try {
    require_once __DIR__ . '/../../../connect.php';
    file_put_contents($debugFile, "  → connect.php loaded. user_id=$user_id | role=$role\n", FILE_APPEND);
} catch (Exception $e) {
    file_put_contents($debugFile, "  → connect.php FAILED: " . $e->getMessage() . "\n", FILE_APPEND);
    http_response_code(500);
    echo json_encode(['status' => 'failure', 'message' => 'connect failed: ' . $e->getMessage()]);
    exit;
}

// ── فحص الصلاحيات ────────────────────────────────────────
if ($role !== 'super_admin' && $role !== 'admin') {
    file_put_contents($debugFile, "  → BLOCKED: role=$role\n", FILE_APPEND);
    jsonError("Unauthorized. role=$role", 403);
}

try {
    $tableExists = $con->query("SHOW TABLES LIKE 'admin_audit_log'")->rowCount() > 0;

    if (!$tableExists) {
        file_put_contents($debugFile, "  → Table NOT FOUND\n", FILE_APPEND);
        jsonSuccess([], 'Audit log table not found');
    }

    $stmt = $con->prepare("
        SELECT 
            l.id, l.admin_id, e.name as admin_name, l.action, l.table_name, l.record_id, l.details, l.created_at
        FROM admin_audit_log l
        LEFT JOIN employee e ON l.admin_id = e.id
        ORDER BY l.created_at DESC
        LIMIT 100
    ");
    $stmt->execute();
    $logs = $stmt->fetchAll(PDO::FETCH_ASSOC);

    $count = count($logs);
    file_put_contents($debugFile, "  → SUCCESS: fetched $count logs\n", FILE_APPEND);

    jsonSuccess($logs);

} catch (Exception $e) {
    file_put_contents($debugFile, "  → QUERY ERROR: " . $e->getMessage() . "\n", FILE_APPEND);
    jsonError('Query failed: ' . $e->getMessage(), 500);
}
?>