immich/server/src/services/api-key.service.ts

import { BadRequestException, Inject, Injectable } from '@nestjs/common';
import { APIKeyCreateDto, APIKeyCreateResponseDto, APIKeyResponseDto } from 'src/dtos/api-key.dto';
import { AuthDto } from 'src/dtos/auth.dto';
import { APIKeyEntity } from 'src/entities/api-key.entity';
import { IKeyRepository } from 'src/interfaces/api-key.interface';
import { ICryptoRepository } from 'src/interfaces/crypto.interface';

@Injectable()
export class APIKeyService {
  constructor(
    @Inject(ICryptoRepository) private crypto: ICryptoRepository,
    @Inject(IKeyRepository) private repository: IKeyRepository,
  ) {}

  async create(auth: AuthDto, dto: APIKeyCreateDto): Promise<APIKeyCreateResponseDto> {
    const secret = this.crypto.newPassword(32);
    const entity = await this.repository.create({
      key: this.crypto.hashSha256(secret),
      name: dto.name || 'API Key',
      userId: auth.user.id,
    });

    return { secret, apiKey: this.map(entity) };
  }

  async update(auth: AuthDto, id: string, dto: APIKeyCreateDto): Promise<APIKeyResponseDto> {
    const exists = await this.repository.getById(auth.user.id, id);
    if (!exists) {
      throw new BadRequestException('API Key not found');
    }

    const key = await this.repository.update(auth.user.id, id, { name: dto.name });

    return this.map(key);
  }

  async delete(auth: AuthDto, id: string): Promise<void> {
    const exists = await this.repository.getById(auth.user.id, id);
    if (!exists) {
      throw new BadRequestException('API Key not found');
    }

    await this.repository.delete(auth.user.id, id);
  }

  async getById(auth: AuthDto, id: string): Promise<APIKeyResponseDto> {
    const key = await this.repository.getById(auth.user.id, id);
    if (!key) {
      throw new BadRequestException('API Key not found');
    }
    return this.map(key);
  }

  async getAll(auth: AuthDto): Promise<APIKeyResponseDto[]> {
    const keys = await this.repository.getByUserId(auth.user.id);
    return keys.map((key) => this.map(key));
  }

  private map(entity: APIKeyEntity): APIKeyResponseDto {
    return {
      id: entity.id,
      name: entity.name,
      createdAt: entity.createdAt,
      updatedAt: entity.updatedAt,
    };
  }
}
fix(server): auth strategies (#1459) * fix(server): auth strategies * chore: tests 2023-01-28 06:12:11 +01:00			`import { BadRequestException, Inject, Injectable } from '@nestjs/common';`
chore(server): move dtos (#8131) move dtos 2024-03-20 23:53:07 +01:00			`import { APIKeyCreateDto, APIKeyCreateResponseDto, APIKeyResponseDto } from 'src/dtos/api-key.dto';`
			`import { AuthDto } from 'src/dtos/auth.dto';`
chore: migrate database files (#8126) 2024-03-20 22:02:51 +01:00			`import { APIKeyEntity } from 'src/entities/api-key.entity';`
chore(server): rename domain `repositories` -> `interfaces` (#8147) rename domain repositories 2024-03-21 12:59:49 +01:00			`import { IKeyRepository } from 'src/interfaces/api-key.interface';`
			`import { ICryptoRepository } from 'src/interfaces/crypto.interface';`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00
			`@Injectable()`
			`export class APIKeyService {`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 15:40:15 +01:00			`constructor(`
			`@Inject(ICryptoRepository) private crypto: ICryptoRepository,`
			`@Inject(IKeyRepository) private repository: IKeyRepository,`
			`) {}`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00
refactor(server): auth dto (#5593) * refactor: AuthUserDto => AuthDto * refactor: reorganize auth-dto * refactor: AuthUser() => Auth() 2023-12-10 05:34:12 +01:00			`async create(auth: AuthDto, dto: APIKeyCreateDto): Promise<APIKeyCreateResponseDto> {`
refactor(server): new password repo method (#8208) 2024-03-23 19:33:25 +01:00			`const secret = this.crypto.newPassword(32);`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00			`const entity = await this.repository.create({`
feat(server): move authentication to tokens stored in the database (#1381) * chore: add typeorm commands to npm and set default database config values * feat: move to server side authentication tokens * fix: websocket should emit error and disconnect on error thrown by the server * refactor: rename cookie-auth-strategy to user-auth-strategy * feat: user tokens and API keys now use SHA256 hash for performance improvements * test: album e2e test remove unneeded module import * infra: truncate api key table as old keys will no longer work with new hash algorithm * fix(server): e2e tests (#1435) * fix: root module paths * chore: linting * chore: rename user-auth to strategy.ts and make validate return AuthUserDto * fix: we should always send HttpOnly for our auth cookies * chore: remove now unused crypto functions and jwt dependencies * fix: return the extra fields for AuthUserDto in auth service validate --------- Co-authored-by: Jason Rasmussen <jrasm91@gmail.com> 2023-01-27 21:50:07 +01:00			`key: this.crypto.hashSha256(secret),`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00			`name: dto.name \|\| 'API Key',`
refactor(server): auth dto (#5593) * refactor: AuthUserDto => AuthDto * refactor: reorganize auth-dto * refactor: AuthUser() => Auth() 2023-12-10 05:34:12 +01:00			`userId: auth.user.id,`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00			`});`

refactor(server): api key auth (#3054) 2023-07-01 03:49:30 +02:00			`return { secret, apiKey: this.map(entity) };`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00			`}`

refactor(server): auth dto (#5593) * refactor: AuthUserDto => AuthDto * refactor: reorganize auth-dto * refactor: AuthUser() => Auth() 2023-12-10 05:34:12 +01:00			`async update(auth: AuthDto, id: string, dto: APIKeyCreateDto): Promise<APIKeyResponseDto> {`
			`const exists = await this.repository.getById(auth.user.id, id);`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00			`if (!exists) {`
			`throw new BadRequestException('API Key not found');`
			`}`

refactor(server): auth dto (#5593) * refactor: AuthUserDto => AuthDto * refactor: reorganize auth-dto * refactor: AuthUser() => Auth() 2023-12-10 05:34:12 +01:00			`const key = await this.repository.update(auth.user.id, id, { name: dto.name });`
refactor(server): api key auth (#3054) 2023-07-01 03:49:30 +02:00
			`return this.map(key);`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00			`}`

refactor(server): auth dto (#5593) * refactor: AuthUserDto => AuthDto * refactor: reorganize auth-dto * refactor: AuthUser() => Auth() 2023-12-10 05:34:12 +01:00			`async delete(auth: AuthDto, id: string): Promise<void> {`
			`const exists = await this.repository.getById(auth.user.id, id);`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00			`if (!exists) {`
			`throw new BadRequestException('API Key not found');`
			`}`

refactor(server): auth dto (#5593) * refactor: AuthUserDto => AuthDto * refactor: reorganize auth-dto * refactor: AuthUser() => Auth() 2023-12-10 05:34:12 +01:00			`await this.repository.delete(auth.user.id, id);`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00			`}`

refactor(server): auth dto (#5593) * refactor: AuthUserDto => AuthDto * refactor: reorganize auth-dto * refactor: AuthUser() => Auth() 2023-12-10 05:34:12 +01:00			`async getById(auth: AuthDto, id: string): Promise<APIKeyResponseDto> {`
			`const key = await this.repository.getById(auth.user.id, id);`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00			`if (!key) {`
			`throw new BadRequestException('API Key not found');`
			`}`
refactor(server): api key auth (#3054) 2023-07-01 03:49:30 +02:00			`return this.map(key);`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00			`}`

refactor(server): auth dto (#5593) * refactor: AuthUserDto => AuthDto * refactor: reorganize auth-dto * refactor: AuthUser() => Auth() 2023-12-10 05:34:12 +01:00			`async getAll(auth: AuthDto): Promise<APIKeyResponseDto[]> {`
			`const keys = await this.repository.getByUserId(auth.user.id);`
refactor(server): api key auth (#3054) 2023-07-01 03:49:30 +02:00			`return keys.map((key) => this.map(key));`
			`}`

			`private map(entity: APIKeyEntity): APIKeyResponseDto {`
			`return {`
			`id: entity.id,`
			`name: entity.name,`
			`createdAt: entity.createdAt,`
			`updatedAt: entity.updatedAt,`
			`};`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00			`}`
			`}`