2023-04-25 22:39:47 +00:00
|
|
|
import { v4 } from "uuid";
|
|
|
|
|
|
|
|
import { generateUniqueAPIKey } from "@calcom/ee/api-keys/lib/apiKeys";
|
|
|
|
import prisma from "@calcom/prisma";
|
2023-07-14 23:06:57 +00:00
|
|
|
import { MembershipRole } from "@calcom/prisma/enums";
|
2023-04-25 22:39:47 +00:00
|
|
|
|
|
|
|
import type { TrpcSessionUser } from "../../../trpc";
|
2023-07-14 23:06:57 +00:00
|
|
|
import { checkPermissions } from "./_auth-middleware";
|
2023-04-25 22:39:47 +00:00
|
|
|
import type { TCreateInputSchema } from "./create.schema";
|
|
|
|
|
|
|
|
type CreateHandlerOptions = {
|
|
|
|
ctx: {
|
|
|
|
user: NonNullable<TrpcSessionUser>;
|
|
|
|
};
|
|
|
|
input: TCreateInputSchema;
|
|
|
|
};
|
|
|
|
|
|
|
|
export const createHandler = async ({ ctx, input }: CreateHandlerOptions) => {
|
|
|
|
const [hashedApiKey, apiKey] = generateUniqueAPIKey();
|
|
|
|
|
|
|
|
// Here we snap never expires before deleting it so it's not passed to prisma create call.
|
2023-07-14 23:06:57 +00:00
|
|
|
const { neverExpires, teamId, ...rest } = input;
|
|
|
|
const userId = ctx.user.id;
|
|
|
|
|
|
|
|
/** Only admin or owner can create apiKeys of team (if teamId is passed) */
|
|
|
|
await checkPermissions({ userId, teamId, role: { in: [MembershipRole.OWNER, MembershipRole.ADMIN] } });
|
2023-04-25 22:39:47 +00:00
|
|
|
|
|
|
|
await prisma.apiKey.create({
|
|
|
|
data: {
|
|
|
|
id: v4(),
|
|
|
|
userId: ctx.user.id,
|
2023-07-14 23:06:57 +00:00
|
|
|
teamId,
|
2023-04-25 22:39:47 +00:00
|
|
|
...rest,
|
|
|
|
// And here we pass a null to expiresAt if never expires is true. otherwise just pass expiresAt from input
|
|
|
|
expiresAt: neverExpires ? null : rest.expiresAt,
|
|
|
|
hashedKey: hashedApiKey,
|
|
|
|
},
|
|
|
|
});
|
|
|
|
|
|
|
|
const apiKeyPrefix = process.env.API_KEY_PREFIX ?? "cal_";
|
|
|
|
|
|
|
|
const prefixedApiKey = `${apiKeyPrefix}${apiKey}`;
|
|
|
|
|
|
|
|
return prefixedApiKey;
|
|
|
|
};
|