richard
/
wiki
mirror of https://github.com/Requarks/wiki.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1980 Commits
3 Branches
119 Tags
73 MiB
Tree: 97dd0637e9
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '97dd0637e9'
${ noResults }
wiki/server/models/apiKeys.js

71 lines
1.6 KiB
Raw Normal View History

feat: manage / create API keys (#1516) * fix: admin api UI update * feat: admin api - create dialog UI * feat: admin api - create + list keys * feat: admin api localization (wip) * feat: admin api localization * feat: admin api - toggle state * feat: process API keys + format gql request errors to json
4 years ago
  1. /* global WIKI */
  3. const Model = require('objection').Model
  4. const moment = require('moment')
  5. const ms = require('ms')
  6. const jwt = require('jsonwebtoken')
  8. /**
  9. * Users model
  10. */
  11. module.exports = class ApiKey extends Model {
  12. static get tableName() { return 'apiKeys' }
  14. static get jsonSchema () {
  15. return {
  16. type: 'object',
  17. required: ['name', 'key'],
  19. properties: {
  20. id: {type: 'integer'},
  21. name: {type: 'string'},
  22. key: {type: 'string'},
  23. expiration: {type: 'string'},
  24. isRevoked: {type: 'boolean'},
  25. createdAt: {type: 'string'},
  26. validUntil: {type: 'string'}
  27. }
  28. }
  29. }
  31. async $beforeUpdate(opt, context) {
  32. await super.$beforeUpdate(opt, context)
  34. this.updatedAt = moment.utc().toISOString()
  35. }
  36. async $beforeInsert(context) {
  37. await super.$beforeInsert(context)
  39. this.createdAt = moment.utc().toISOString()
  40. this.updatedAt = moment.utc().toISOString()
  41. }
  43. static async createNewKey ({ name, expiration, fullAccess, group }) {
  44. const entry = await WIKI.models.apiKeys.query().insert({
  45. name,
  46. key: 'pending',
  47. expiration: moment.utc().add(ms(expiration), 'ms').toISOString(),
  48. isRevoked: true
  49. })
  51. const key = jwt.sign({
  52. api: entry.id,
  53. grp: fullAccess ? 1 : group
  54. }, {
  55. key: WIKI.config.certs.private,
  56. passphrase: WIKI.config.sessionSecret
  57. }, {
  58. algorithm: 'RS256',
  59. expiresIn: expiration,
  60. audience: WIKI.config.auth.audience,
  61. issuer: 'urn:wiki.js'
  62. })
  64. await WIKI.models.apiKeys.query().findById(entry.id).patch({
  65. key,
  66. isRevoked: false
  67. })
  69. return key
  70. }
  71. }