aboutsummaryrefslogtreecommitdiffstats
path: root/code/api/src/Endpoints/V1/ApiTokens
diff options
context:
space:
mode:
Diffstat (limited to 'code/api/src/Endpoints/V1/ApiTokens')
-rw-r--r--code/api/src/Endpoints/V1/ApiTokens/CreateTokenRoute.cs30
-rw-r--r--code/api/src/Endpoints/V1/ApiTokens/DeleteTokenRoute.cs52
-rw-r--r--code/api/src/Endpoints/V1/ApiTokens/GetTokensRoute.cs32
3 files changed, 54 insertions, 60 deletions
diff --git a/code/api/src/Endpoints/V1/ApiTokens/CreateTokenRoute.cs b/code/api/src/Endpoints/V1/ApiTokens/CreateTokenRoute.cs
index 60b00ff..6bc2fdc 100644
--- a/code/api/src/Endpoints/V1/ApiTokens/CreateTokenRoute.cs
+++ b/code/api/src/Endpoints/V1/ApiTokens/CreateTokenRoute.cs
@@ -4,13 +4,12 @@ namespace IOL.GreatOffice.Api.Endpoints.V1.ApiTokens;
public class CreateTokenRoute : RouteBaseSync.WithRequest<ApiAccessToken.ApiAccessTokenDto>.WithActionResult
{
- private readonly AppDbContext _context;
+ private readonly MainAppDatabase _database;
private readonly AppConfiguration _configuration;
private readonly ILogger<CreateTokenRoute> _logger;
- public CreateTokenRoute(AppDbContext context, VaultService vaultService, ILogger<CreateTokenRoute> logger)
- {
- _context = context;
+ public CreateTokenRoute(MainAppDatabase database, VaultService vaultService, ILogger<CreateTokenRoute> logger) {
+ _database = database;
_configuration = vaultService.GetCurrentAppConfiguration();
_logger = logger;
}
@@ -24,24 +23,19 @@ public class CreateTokenRoute : RouteBaseSync.WithRequest<ApiAccessToken.ApiAcce
[HttpPost("~/v{version:apiVersion}/api-tokens/create")]
[ProducesResponseType(200, Type = typeof(string))]
[ProducesResponseType(404, Type = typeof(KnownProblemModel))]
- public override ActionResult Handle(ApiAccessToken.ApiAccessTokenDto request)
- {
- var user = _context.Users.SingleOrDefault(c => c.Id == LoggedInUser.Id);
- if (user == default)
- {
+ public override ActionResult Handle(ApiAccessToken.ApiAccessTokenDto request) {
+ var user = _database.Users.SingleOrDefault(c => c.Id == LoggedInUser.Id);
+ if (user == default) {
return NotFound(new KnownProblemModel("User does not exist"));
}
var token_entropy = _configuration.APP_AES_KEY;
- if (token_entropy.IsNullOrWhiteSpace())
- {
+ if (token_entropy.IsNullOrWhiteSpace()) {
_logger.LogWarning("No token entropy is available, Basic auth is disabled");
return NotFound();
}
- var access_token = new ApiAccessToken()
- {
- Id = Guid.NewGuid(),
+ var accessToken = new ApiAccessToken() {
User = user,
ExpiryDate = request.ExpiryDate.ToUniversalTime(),
AllowCreate = request.AllowCreate,
@@ -50,8 +44,8 @@ public class CreateTokenRoute : RouteBaseSync.WithRequest<ApiAccessToken.ApiAcce
AllowUpdate = request.AllowUpdate
};
- _context.AccessTokens.Add(access_token);
- _context.SaveChanges();
- return Ok(Convert.ToBase64String(Encoding.UTF8.GetBytes(access_token.Id.ToString().EncryptWithAes(token_entropy))));
+ _database.AccessTokens.Add(accessToken);
+ _database.SaveChanges();
+ return Ok(Convert.ToBase64String(Encoding.UTF8.GetBytes(accessToken.Id.ToString().EncryptWithAes(token_entropy))));
}
-}
+} \ No newline at end of file
diff --git a/code/api/src/Endpoints/V1/ApiTokens/DeleteTokenRoute.cs b/code/api/src/Endpoints/V1/ApiTokens/DeleteTokenRoute.cs
index a90b4c0..116a814 100644
--- a/code/api/src/Endpoints/V1/ApiTokens/DeleteTokenRoute.cs
+++ b/code/api/src/Endpoints/V1/ApiTokens/DeleteTokenRoute.cs
@@ -2,32 +2,32 @@ namespace IOL.GreatOffice.Api.Endpoints.V1.ApiTokens;
public class DeleteTokenRoute : RouteBaseSync.WithRequest<Guid>.WithActionResult
{
- private readonly AppDbContext _context;
- private readonly ILogger<DeleteTokenRoute> _logger;
+ private readonly MainAppDatabase _database;
+ private readonly ILogger<DeleteTokenRoute> _logger;
- public DeleteTokenRoute(AppDbContext context, ILogger<DeleteTokenRoute> logger) {
- _context = context;
- _logger = logger;
- }
+ public DeleteTokenRoute(MainAppDatabase database, ILogger<DeleteTokenRoute> logger) {
+ _database = database;
+ _logger = logger;
+ }
- /// <summary>
- /// Delete an api token, rendering it unusable
- /// </summary>
- /// <param name="id">Id of the token to delete</param>
- /// <returns>Nothing</returns>
- [ApiVersion(ApiSpecV1.VERSION_STRING)]
- [HttpDelete("~/v{version:apiVersion}/api-tokens/delete")]
- [ProducesResponseType(200)]
- [ProducesResponseType(404)]
- public override ActionResult Handle(Guid id) {
- var token = _context.AccessTokens.SingleOrDefault(c => c.Id == id);
- if (token == default) {
- _logger.LogWarning("A deletion request of an already deleted (maybe) api token was received.");
- return NotFound();
- }
+ /// <summary>
+ /// Delete an api token, rendering it unusable
+ /// </summary>
+ /// <param name="id">Id of the token to delete</param>
+ /// <returns>Nothing</returns>
+ [ApiVersion(ApiSpecV1.VERSION_STRING)]
+ [HttpDelete("~/v{version:apiVersion}/api-tokens/delete")]
+ [ProducesResponseType(200)]
+ [ProducesResponseType(404)]
+ public override ActionResult Handle(Guid id) {
+ var token = _database.AccessTokens.SingleOrDefault(c => c.Id == id);
+ if (token == default) {
+ _logger.LogWarning("A deletion request of an already deleted (maybe) api token was received.");
+ return NotFound();
+ }
- _context.AccessTokens.Remove(token);
- _context.SaveChanges();
- return Ok();
- }
-}
+ _database.AccessTokens.Remove(token);
+ _database.SaveChanges();
+ return Ok();
+ }
+} \ No newline at end of file
diff --git a/code/api/src/Endpoints/V1/ApiTokens/GetTokensRoute.cs b/code/api/src/Endpoints/V1/ApiTokens/GetTokensRoute.cs
index 59fd077..19790e4 100644
--- a/code/api/src/Endpoints/V1/ApiTokens/GetTokensRoute.cs
+++ b/code/api/src/Endpoints/V1/ApiTokens/GetTokensRoute.cs
@@ -2,21 +2,21 @@ namespace IOL.GreatOffice.Api.Endpoints.V1.ApiTokens;
public class GetTokensRoute : RouteBaseSync.WithoutRequest.WithResult<ActionResult<List<ApiAccessToken.ApiAccessTokenDto>>>
{
- private readonly AppDbContext _context;
+ private readonly MainAppDatabase _database;
- public GetTokensRoute(AppDbContext context) {
- _context = context;
- }
+ public GetTokensRoute(MainAppDatabase database) {
+ _database = database;
+ }
- /// <summary>
- /// Get all tokens, both active and inactive.
- /// </summary>
- /// <returns>A list of tokens</returns>
- [ApiVersion(ApiSpecV1.VERSION_STRING)]
- [HttpGet("~/v{version:apiVersion}/api-tokens")]
- [ProducesResponseType(200, Type = typeof(List<ApiAccessToken.ApiAccessTokenDto>))]
- [ProducesResponseType(204)]
- public override ActionResult<List<ApiAccessToken.ApiAccessTokenDto>> Handle() {
- return Ok(_context.AccessTokens.Where(c => c.User.Id == LoggedInUser.Id).Select(c => c.AsDto));
- }
-}
+ /// <summary>
+ /// Get all tokens, both active and inactive.
+ /// </summary>
+ /// <returns>A list of tokens</returns>
+ [ApiVersion(ApiSpecV1.VERSION_STRING)]
+ [HttpGet("~/v{version:apiVersion}/api-tokens")]
+ [ProducesResponseType(200, Type = typeof(List<ApiAccessToken.ApiAccessTokenDto>))]
+ [ProducesResponseType(204)]
+ public override ActionResult<List<ApiAccessToken.ApiAccessTokenDto>> Handle() {
+ return Ok(_database.AccessTokens.Where(c => c.User.Id == LoggedInUser.Id).Select(c => c.AsDto));
+ }
+} \ No newline at end of file
generated by cgit v1.3 (git 2.53.0) at 2026-04-02 13:47:57 +0200