cal.pub0.org/pages/api/api-keys/_post.ts

import type { Prisma } from "@prisma/client";
import type { NextApiRequest } from "next";
import { v4 } from "uuid";

import { generateUniqueAPIKey } from "@calcom/features/ee/api-keys/lib/apiKeys";
import { HttpError } from "@calcom/lib/http-error";
import { defaultResponder } from "@calcom/lib/server";

import { apiKeyCreateBodySchema, apiKeyPublicSchema } from "~/lib/validations/api-key";

async function postHandler(req: NextApiRequest) {
  const { userId, isAdmin, prisma } = req;
  const { neverExpires, userId: bodyUserId, ...input } = apiKeyCreateBodySchema.parse(req.body);
  const [hashedKey, apiKey] = generateUniqueAPIKey();
  const args: Prisma.ApiKeyCreateArgs = {
    data: {
      id: v4(),
      userId,
      ...input,
      // And here we pass a null to expiresAt if never expires is true. otherwise just pass expiresAt from input
      expiresAt: neverExpires ? null : input.expiresAt,
      hashedKey,
    },
  };

  if (!isAdmin && bodyUserId) throw new HttpError({ statusCode: 403, message: `ADMIN required for userId` });

  if (isAdmin && bodyUserId) {
    const where: Prisma.UserWhereInput = { id: bodyUserId };
    await prisma.user.findFirstOrThrow({ where });
    args.data.userId = bodyUserId;
  }

  const result = await prisma.apiKey.create(args);
  return {
    api_key: {
      ...apiKeyPublicSchema.parse(result),
      key: `${process.env.API_KEY_PREFIX ?? "cal_"}${apiKey}`,
    },
    message: "API key created successfully. Save the `key` value as it won't be displayed again.",
  };
}

export default defaultResponder(postHandler);
Implements API key endpoint (#211) This allow us to manage our API keys directly from the API itself. User can: - Create own API keys - Edit own API keys (only the note field for now) - Delete own API keys - Get own API keys Admin can: - CRUD for any user - Get all API keys 2022-11-29 22:06:23 +00:00			`import type { Prisma } from "@prisma/client";`
			`import type { NextApiRequest } from "next";`
			`import { v4 } from "uuid";`

			`import { generateUniqueAPIKey } from "@calcom/features/ee/api-keys/lib/apiKeys";`
			`import { HttpError } from "@calcom/lib/http-error";`
			`import { defaultResponder } from "@calcom/lib/server";`

Import fixes 2022-12-08 23:28:28 +00:00			`import { apiKeyCreateBodySchema, apiKeyPublicSchema } from "~/lib/validations/api-key";`
Implements API key endpoint (#211) This allow us to manage our API keys directly from the API itself. User can: - Create own API keys - Edit own API keys (only the note field for now) - Delete own API keys - Get own API keys Admin can: - CRUD for any user - Get all API keys 2022-11-29 22:06:23 +00:00
			`async function postHandler(req: NextApiRequest) {`
			`const { userId, isAdmin, prisma } = req;`
			`const { neverExpires, userId: bodyUserId, ...input } = apiKeyCreateBodySchema.parse(req.body);`
			`const [hashedKey, apiKey] = generateUniqueAPIKey();`
			`const args: Prisma.ApiKeyCreateArgs = {`
			`data: {`
			`id: v4(),`
			`userId,`
			`...input,`
			`// And here we pass a null to expiresAt if never expires is true. otherwise just pass expiresAt from input`
			`expiresAt: neverExpires ? null : input.expiresAt,`
			`hashedKey,`
			`},`
			`};`

			if (!isAdmin && bodyUserId) throw new HttpError({ statusCode: 403, message: `ADMIN required for userId` });

			`if (isAdmin && bodyUserId) {`
			`const where: Prisma.UserWhereInput = { id: bodyUserId };`
			`await prisma.user.findFirstOrThrow({ where });`
			`args.data.userId = bodyUserId;`
			`}`

			`const result = await prisma.apiKey.create(args);`
			`return {`
			`api_key: {`
			`...apiKeyPublicSchema.parse(result),`
			key: `${process.env.API_KEY_PREFIX ?? "cal_"}${apiKey}`,
			`},`
			message: "API key created successfully. Save the `key` value as it won't be displayed again.",
			`};`
			`}`

			`export default defaultResponder(postHandler);`