chore: refactor-out apiKey check into middleware

pull/9078/head
Agusti Fernandez Pardo 2022-03-28 17:46:12 +02:00
parent 5826e1744c
commit 99d328c35d
2 changed files with 42 additions and 23 deletions

35
lib/helpers Normal file
View File

@ -0,0 +1,35 @@
import prisma from "@calcom/prisma";
import { User } from "@calcom/prisma/client";
import type { NextApiRequest, NextApiResponse } from "next";
type ResponseData = {
data?: User[];
error?: unknown;
};
const dateInPast = function (firstDate: Date, secondDate: Date) {
if (firstDate.setHours(0, 0, 0, 0) <= secondDate.setHours(0, 0, 0, 0)) {
return true;
}
return false;
};
const today = new Date();
export default async function user(req: NextApiRequest, res: NextApiResponse<ResponseData>) {
const apiKey = req.query.apiKey as string;
const apiInDb = await prisma.apiKey.findUnique({ where: { id: apiKey } });
if (!apiInDb) throw new Error('API key not found');
const { expiresAt } = apiInDb;
// if (!apiInDb) res.status(400).json({ error: 'Your api key is not valid' });
if (expiresAt && dateInPast(expiresAt, today)) {
try {
const data = await prisma.user.findMany();
res.status(200).json({ data });
} catch (error) {
// FIXME: Add zod for validation/error handling
res.status(400).json({ error: error });
}
} else res.status(400).json({ error: 'Your api key is not valid' });
}

View File

@ -7,29 +7,13 @@ type ResponseData = {
data?: User[]; data?: User[];
error?: unknown; error?: unknown;
}; };
const dateInPast = function (firstDate: Date, secondDate: Date) {
if (firstDate.setHours(0, 0, 0, 0) <= secondDate.setHours(0, 0, 0, 0)) {
return true;
}
return false;
};
const today = new Date();
export default async function user(req: NextApiRequest, res: NextApiResponse<ResponseData>) { export default async function user(req: NextApiRequest, res: NextApiResponse<ResponseData>) {
const apiKey = req.query.apiKey as string;
const apiInDb = await prisma.apiKey.findUnique({ where: { id: apiKey } });
if (!apiInDb) throw new Error('API key not found');
const { expiresAt } = apiInDb;
// if (!apiInDb) res.status(400).json({ error: 'Your api key is not valid' });
if (expiresAt && dateInPast(expiresAt, today)) {
try { try {
const data = await prisma.user.findMany(); const users = await prisma.user.findMany();
res.status(200).json({ data }); res.status(200).json({ data: { ...users } });
} catch (error) { } catch (error) {
// FIXME: Add zod for validation/error handling // FIXME: Add zod for validation/error handling
res.status(400).json({ error: error }); res.status(400).json({ error: error });
} }
} else res.status(400).json({ error: 'Your api key is not valid' });
} }