gib/GibSend
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add API authentication

Browse Source
This commit is contained in:
KMKoushik
2024-04-09 17:05:47 +10:00
parent 4d0441791b
commit c34d219561
4 changed files with 62 additions and 20 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
apps/web/src/server/public-api/get_domains.ts → apps/web/src/server/public-api/api/get_domains.ts
View File

@@ -1,11 +1,12 @@
import { createRoute, z } from "@hono/zod-openapi"; import { createRoute, z } from "@hono/zod-openapi";
import { DomainSchema } from "~/lib/zod/domain-schema"; import { DomainSchema } from "~/lib/zod/domain-schema";
import { PublicAPIApp } from "./hono"; import { PublicAPIApp } from "../hono";
import { db } from "../db"; import { db } from "../../db";
import { getTeamFromToken } from "../auth";
const route = createRoute({ const route = createRoute({
method: "get", method: "get",
path: "/domains", path: "/v1/domains",
responses: { responses: {
200: { 200: {
content: { content: {
@@ -20,7 +21,9 @@ const route = createRoute({
function getDomains(app: PublicAPIApp) { function getDomains(app: PublicAPIApp) {
app.openapi(route, async (c) => { app.openapi(route, async (c) => {
const domains = await db.domain.findMany({}); const team = await getTeamFromToken(c);
const domains = await db.domain.findMany({ where: { teamId: team.id } });
return c.json(domains); return c.json(domains);
}); });

33
apps/web/src/server/public-api/auth.ts Normal file
View File

@@ -0,0 +1,33 @@
import { Context } from "hono";
import { bearerAuth } from "hono/bearer-auth";
import { hashToken } from "../auth";
import { db } from "../db";
export const getTeamFromToken = async (c: Context) => {
const authHeader = c.req.header("Authorization");
if (!authHeader) {
throw new Error("No Authorization header provided");
}
const token = authHeader.split(" ")[1]; // Assuming the Authorization header is in the format "Bearer <token>"
if (!token) {
throw new Error("No bearer token provided");
}
const hashedToken = hashToken(token);
const team = await db.team.findFirst({
where: {
apiKeys: {
some: {
tokenHash: hashedToken,
},
},
},
});
if (!team) {
throw new Error("No team found for this token");
}
return team;
};

22
apps/web/src/server/public-api/hono.ts
View File

@@ -1,7 +1,27 @@
import { OpenAPIHono } from "@hono/zod-openapi"; import { OpenAPIHono } from "@hono/zod-openapi";
import { swaggerUI } from "@hono/swagger-ui";
export function getApp() { export function getApp() {
return new OpenAPIHono().basePath("/api/v1"); const app = new OpenAPIHono().basePath("/api");
// The OpenAPI documentation will be available at /doc
app.doc("/v1/doc", (c) => ({
openapi: "3.0.0",
info: {
version: "1.0.0",
title: "Unsend API",
},
servers: [{ url: `${new URL(c.req.url).origin}/api` }],
}));
app.openAPIRegistry.registerComponent("securitySchemes", "Bearer", {
type: "http",
scheme: "bearer",
});
app.get("/v1/ui", swaggerUI({ url: "/api/v1/doc" }));
return app;
} }
export type PublicAPIApp = ReturnType<typeof getApp>; export type PublicAPIApp = ReturnType<typeof getApp>;

16
apps/web/src/server/public-api/index.ts
View File

@@ -1,22 +1,8 @@
import { swaggerUI } from "@hono/swagger-ui";
import { getApp } from "./hono"; import { getApp } from "./hono";
import getDomains from "./get_domains"; import getDomains from "./api/get_domains";
export const app = getApp(); export const app = getApp();
getDomains(app); getDomains(app);
// The OpenAPI documentation will be available at /doc
app.doc("/doc", {
openapi: "3.0.0",
info: {
version: "1.0.0",
title: "My API",
},
servers: [{ url: "/api/v1" }],
});
app.get("/ui", swaggerUI({ url: "/api/v1/doc" }));
export default app; export default app;