package api import ( "fmt" "git.solsynth.dev/hypernet/passport/pkg/authkit/models" "git.solsynth.dev/hypernet/passport/pkg/internal/database" "git.solsynth.dev/hypernet/passport/pkg/internal/http/exts" "git.solsynth.dev/hypernet/passport/pkg/internal/services" "github.com/gofiber/fiber/v2" "gorm.io/gorm" ) func listBotKeys(c *fiber.Ctx) error { if err := exts.EnsureAuthenticated(c); err != nil { return err } user := c.Locals("user").(models.Account) var tx *gorm.DB botId, _ := c.ParamsInt("botId", 0) if botId > 0 { var bot models.Account if err := database.C.Where("automated_id = ? AND id = ?", user.ID, botId).First(&bot).Error; err != nil { return fiber.NewError(fiber.StatusNotFound, fmt.Sprintf("bot not found: %v", err)) } tx = database.C.Where("account_id = ?", bot.ID) } else { tx = database.C.Where("account_id = ?", user.ID) } countTx := tx var count int64 if err := countTx.Model(&models.ApiKey{}).Count(&count).Error; err != nil { return fiber.NewError(fiber.StatusInternalServerError, err.Error()) } var keys []models.ApiKey if err := tx.Preload("Ticket").Find(&keys).Error; err != nil { return fiber.NewError(fiber.StatusInternalServerError, err.Error()) } return c.JSON(fiber.Map{ "count": count, "data": keys, }) } func getBotKey(c *fiber.Ctx) error { if err := exts.EnsureAuthenticated(c); err != nil { return err } user := c.Locals("user").(models.Account) id, _ := c.ParamsInt("id", 0) var key models.ApiKey if err := database.C. Where("id = ? AND account_id = ?", id, user.ID). Preload("Ticket"). First(&key).Error; err != nil { return fiber.NewError(fiber.StatusNotFound, err.Error()) } return c.JSON(key) } func createBotKey(c *fiber.Ctx) error { if err := exts.EnsureAuthenticated(c); err != nil { return err } user := c.Locals("user").(models.Account) var data struct { Name string `json:"name" validate:"required"` Description string `json:"description"` Lifecycle *int64 `json:"lifecycle"` Claims []string `json:"claims"` } if err := exts.BindAndValidate(c, &data); err != nil { return err } target := user botId, _ := c.ParamsInt("botId", 0) if botId > 0 { var bot models.Account if err := database.C.Where("automated_id = ? AND id = ?", user.ID, botId).First(&bot).Error; err != nil { return fiber.NewError(fiber.StatusNotFound, fmt.Sprintf("bot not found: %v", err)) } target = bot } key, err := services.NewApiKey(target, models.ApiKey{ Name: data.Name, Description: data.Description, Lifecycle: data.Lifecycle, }, c.IP(), c.Get(fiber.HeaderUserAgent), data.Claims) if err != nil { return fiber.NewError(fiber.StatusBadRequest, err.Error()) } return c.JSON(key) } func editBotKey(c *fiber.Ctx) error { if err := exts.EnsureAuthenticated(c); err != nil { return err } user := c.Locals("user").(models.Account) var data struct { Name string `json:"name" validate:"required"` Description string `json:"description"` Lifecycle *int64 `json:"lifecycle"` } if err := exts.BindAndValidate(c, &data); err != nil { return err } id, _ := c.ParamsInt("id", 0) var tx *gorm.DB botId, _ := c.ParamsInt("botId", 0) if botId > 0 { var bot models.Account if err := database.C.Where("automated_id = ? AND id = ?", user.ID, botId).First(&bot).Error; err != nil { return fiber.NewError(fiber.StatusNotFound, fmt.Sprintf("bot not found: %v", err)) } tx = database.C.Where("account_id = ?", bot.ID) } else { tx = database.C.Where("account_id = ?", user.ID) } var key models.ApiKey if err := tx.Where("id = ?", id).First(&key).Error; err != nil { return fiber.NewError(fiber.StatusNotFound, err.Error()) } key.Name = data.Name key.Description = data.Description key.Lifecycle = data.Lifecycle if err := database.C.Save(&key).Error; err != nil { return fiber.NewError(fiber.StatusBadRequest, err.Error()) } return c.JSON(key) } func rollBotKey(c *fiber.Ctx) error { if err := exts.EnsureAuthenticated(c); err != nil { return err } user := c.Locals("user").(models.Account) id, _ := c.ParamsInt("id", 0) var tx *gorm.DB botId, _ := c.ParamsInt("botId", 0) if botId > 0 { var bot models.Account if err := database.C.Where("automated_id = ? AND id = ?", user.ID, botId).First(&bot).Error; err != nil { return fiber.NewError(fiber.StatusNotFound, fmt.Sprintf("bot not found: %v", err)) } tx = database.C.Where("account_id = ?", bot.ID) } else { tx = database.C.Where("account_id = ?", user.ID) } var key models.ApiKey if err := tx.Where("id = ?", id).First(&key).Error; err != nil { return fiber.NewError(fiber.StatusNotFound, err.Error()) } if key, err := services.RollApiKey(key); err != nil { return fiber.NewError(fiber.StatusBadRequest, err.Error()) } else { return c.JSON(key) } } func revokeBotKey(c *fiber.Ctx) error { if err := exts.EnsureAuthenticated(c); err != nil { return err } user := c.Locals("user").(models.Account) id, _ := c.ParamsInt("id", 0) var tx *gorm.DB botId, _ := c.ParamsInt("botId", 0) if botId > 0 { var bot models.Account if err := database.C.Where("automated_id = ? AND id = ?", user.ID, botId).First(&bot).Error; err != nil { return fiber.NewError(fiber.StatusNotFound, fmt.Sprintf("bot not found: %v", err)) } tx = database.C.Where("account_id = ?", bot.ID) } else { tx = database.C.Where("account_id = ?", user.ID) } var key models.ApiKey if err := tx.Where("id = ?", id).First(&key).Error; err != nil { return fiber.NewError(fiber.StatusNotFound, err.Error()) } if err := database.C.Delete(&key).Error; err != nil { return fiber.NewError(fiber.StatusInternalServerError, err.Error()) } return c.JSON(key) }