immich/server/src/domain/api-key/api-key.service.ts

import { APIKeyEntity } from '@app/infra/entities';
import { BadRequestException, Inject, Injectable } from '@nestjs/common';
import { AuthUserDto } from '../auth';
import { ICryptoRepository } from '../crypto';
import { APIKeyCreateDto, APIKeyCreateResponseDto, APIKeyResponseDto } from './api-key.dto';
import { IKeyRepository } from './api-key.repository';

@Injectable()
export class APIKeyService {
  constructor(
    @Inject(ICryptoRepository) private crypto: ICryptoRepository,
    @Inject(IKeyRepository) private repository: IKeyRepository,
  ) {}

  async create(authUser: AuthUserDto, dto: APIKeyCreateDto): Promise<APIKeyCreateResponseDto> {
    const secret = this.crypto.randomBytes(32).toString('base64').replace(/\W/g, '');
    const entity = await this.repository.create({
      key: this.crypto.hashSha256(secret),
      name: dto.name || 'API Key',
      userId: authUser.id,
    });

    return { secret, apiKey: this.map(entity) };
  }

  async update(authUser: AuthUserDto, id: string, dto: APIKeyCreateDto): Promise<APIKeyResponseDto> {
    const exists = await this.repository.getById(authUser.id, id);
    if (!exists) {
      throw new BadRequestException('API Key not found');
    }

    const key = await this.repository.update(authUser.id, id, { name: dto.name });

    return this.map(key);
  }

  async delete(authUser: AuthUserDto, id: string): Promise<void> {
    const exists = await this.repository.getById(authUser.id, id);
    if (!exists) {
      throw new BadRequestException('API Key not found');
    }

    await this.repository.delete(authUser.id, id);
  }

  async getById(authUser: AuthUserDto, id: string): Promise<APIKeyResponseDto> {
    const key = await this.repository.getById(authUser.id, id);
    if (!key) {
      throw new BadRequestException('API Key not found');
    }
    return this.map(key);
  }

  async getAll(authUser: AuthUserDto): Promise<APIKeyResponseDto[]> {
    const keys = await this.repository.getByUserId(authUser.id);
    return keys.map((key) => this.map(key));
  }

  private map(entity: APIKeyEntity): APIKeyResponseDto {
    return {
      id: entity.id,
      name: entity.name,
      createdAt: entity.createdAt,
      updatedAt: entity.updatedAt,
    };
  }
}
refactor(server): api key auth (#3054) 2023-07-01 03:49:30 +02:00			`import { APIKeyEntity } from '@app/infra/entities';`
fix(server): auth strategies (#1459) * fix(server): auth strategies * chore: tests 2023-01-28 06:12:11 +01:00			`import { BadRequestException, Inject, Injectable } from '@nestjs/common';`
refactor(server): auth guard (#1472) * refactor: auth guard * chore: move auth guard to middleware * chore: tests * chore: remove unused code * fix: migration to uuid without dataloss * chore: e2e tests * chore: removed unused guards 2023-01-31 19:11:49 +01:00			`import { AuthUserDto } from '../auth';`
			`import { ICryptoRepository } from '../crypto';`
refactor(server): api key auth (#3054) 2023-07-01 03:49:30 +02:00			`import { APIKeyCreateDto, APIKeyCreateResponseDto, APIKeyResponseDto } from './api-key.dto';`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00			`import { IKeyRepository } from './api-key.repository';`

			`@Injectable()`
			`export class APIKeyService {`
refactor(server): api keys (#1339) * refactor: api keys * refactor: test module * chore: tests * chore: fix provider * refactor: test mock repos 2023-01-18 15:40:15 +01:00			`constructor(`
			`@Inject(ICryptoRepository) private crypto: ICryptoRepository,`
			`@Inject(IKeyRepository) private repository: IKeyRepository,`
			`) {}`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00
			`async create(authUser: AuthUserDto, dto: APIKeyCreateDto): Promise<APIKeyCreateResponseDto> {`
feat(server): move authentication to tokens stored in the database (#1381) * chore: add typeorm commands to npm and set default database config values * feat: move to server side authentication tokens * fix: websocket should emit error and disconnect on error thrown by the server * refactor: rename cookie-auth-strategy to user-auth-strategy * feat: user tokens and API keys now use SHA256 hash for performance improvements * test: album e2e test remove unneeded module import * infra: truncate api key table as old keys will no longer work with new hash algorithm * fix(server): e2e tests (#1435) * fix: root module paths * chore: linting * chore: rename user-auth to strategy.ts and make validate return AuthUserDto * fix: we should always send HttpOnly for our auth cookies * chore: remove now unused crypto functions and jwt dependencies * fix: return the extra fields for AuthUserDto in auth service validate --------- Co-authored-by: Jason Rasmussen <jrasm91@gmail.com> 2023-01-27 21:50:07 +01:00			`const secret = this.crypto.randomBytes(32).toString('base64').replace(/\W/g, '');`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00			`const entity = await this.repository.create({`
feat(server): move authentication to tokens stored in the database (#1381) * chore: add typeorm commands to npm and set default database config values * feat: move to server side authentication tokens * fix: websocket should emit error and disconnect on error thrown by the server * refactor: rename cookie-auth-strategy to user-auth-strategy * feat: user tokens and API keys now use SHA256 hash for performance improvements * test: album e2e test remove unneeded module import * infra: truncate api key table as old keys will no longer work with new hash algorithm * fix(server): e2e tests (#1435) * fix: root module paths * chore: linting * chore: rename user-auth to strategy.ts and make validate return AuthUserDto * fix: we should always send HttpOnly for our auth cookies * chore: remove now unused crypto functions and jwt dependencies * fix: return the extra fields for AuthUserDto in auth service validate --------- Co-authored-by: Jason Rasmussen <jrasm91@gmail.com> 2023-01-27 21:50:07 +01:00			`key: this.crypto.hashSha256(secret),`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00			`name: dto.name \|\| 'API Key',`
			`userId: authUser.id,`
			`});`

refactor(server): api key auth (#3054) 2023-07-01 03:49:30 +02:00			`return { secret, apiKey: this.map(entity) };`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00			`}`

infra(server): fix Album TypeORM relations and change ids to uuids (#1582) * infra: make api-key primary key column a UUID * infra: move ManyToMany relations in album entity, make ownerId ManyToOne --------- Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2023-02-18 21:58:55 +01:00			`async update(authUser: AuthUserDto, id: string, dto: APIKeyCreateDto): Promise<APIKeyResponseDto> {`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00			`const exists = await this.repository.getById(authUser.id, id);`
			`if (!exists) {`
			`throw new BadRequestException('API Key not found');`
			`}`

refactor(server): api key auth (#3054) 2023-07-01 03:49:30 +02:00			`const key = await this.repository.update(authUser.id, id, { name: dto.name });`

			`return this.map(key);`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00			`}`

infra(server): fix Album TypeORM relations and change ids to uuids (#1582) * infra: make api-key primary key column a UUID * infra: move ManyToMany relations in album entity, make ownerId ManyToOne --------- Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2023-02-18 21:58:55 +01:00			`async delete(authUser: AuthUserDto, id: string): Promise<void> {`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00			`const exists = await this.repository.getById(authUser.id, id);`
			`if (!exists) {`
			`throw new BadRequestException('API Key not found');`
			`}`

			`await this.repository.delete(authUser.id, id);`
			`}`

infra(server): fix Album TypeORM relations and change ids to uuids (#1582) * infra: make api-key primary key column a UUID * infra: move ManyToMany relations in album entity, make ownerId ManyToOne --------- Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2023-02-18 21:58:55 +01:00			`async getById(authUser: AuthUserDto, id: string): Promise<APIKeyResponseDto> {`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00			`const key = await this.repository.getById(authUser.id, id);`
			`if (!key) {`
			`throw new BadRequestException('API Key not found');`
			`}`
refactor(server): api key auth (#3054) 2023-07-01 03:49:30 +02:00			`return this.map(key);`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00			`}`

			`async getAll(authUser: AuthUserDto): Promise<APIKeyResponseDto[]> {`
			`const keys = await this.repository.getByUserId(authUser.id);`
refactor(server): api key auth (#3054) 2023-07-01 03:49:30 +02:00			`return keys.map((key) => this.map(key));`
			`}`

			`private map(entity: APIKeyEntity): APIKeyResponseDto {`
			`return {`
			`id: entity.id,`
			`name: entity.name,`
			`createdAt: entity.createdAt,`
			`updatedAt: entity.updatedAt,`
			`};`
feat(web,server): api keys (#1244) * feat(server): api keys * chore: open-api * feat(web): api keys * fix: remove keys when deleting a user 2023-01-02 21:22:33 +01:00			`}`
			`}`