mirror of
https://github.com/documenso/documenso.git
synced 2025-11-13 00:03:33 +10:00
66 lines
1.6 KiB
TypeScript
66 lines
1.6 KiB
TypeScript
import type { Duration } from 'luxon';
|
|
import { DateTime } from 'luxon';
|
|
|
|
import { prisma } from '@documenso/prisma';
|
|
|
|
import { TEAM_MEMBER_ROLE_PERMISSIONS_MAP } from '../../constants/teams';
|
|
// temporary choice for testing only
|
|
import * as timeConstants from '../../constants/time';
|
|
import { AppError, AppErrorCode } from '../../errors/app-error';
|
|
import { alphaid } from '../../universal/id';
|
|
import { buildTeamWhereQuery } from '../../utils/teams';
|
|
import { hashString } from '../auth/hash';
|
|
|
|
type TimeConstants = typeof timeConstants & {
|
|
[key: string]: number | Duration;
|
|
};
|
|
|
|
type CreateApiTokenInput = {
|
|
userId: number;
|
|
teamId: number;
|
|
tokenName: string;
|
|
expiresIn: string | null;
|
|
};
|
|
|
|
export const createApiToken = async ({
|
|
userId,
|
|
teamId,
|
|
tokenName,
|
|
expiresIn,
|
|
}: CreateApiTokenInput) => {
|
|
const apiToken = `api_${alphaid(16)}`;
|
|
|
|
const hashedToken = hashString(apiToken);
|
|
|
|
const timeConstantsRecords: TimeConstants = timeConstants;
|
|
|
|
const team = await prisma.team.findFirst({
|
|
where: buildTeamWhereQuery({
|
|
teamId,
|
|
userId,
|
|
roles: TEAM_MEMBER_ROLE_PERMISSIONS_MAP['MANAGE_TEAM'],
|
|
}),
|
|
});
|
|
|
|
if (!team) {
|
|
throw new AppError(AppErrorCode.UNAUTHORIZED, {
|
|
message: 'You do not have permission to create a token for this team',
|
|
});
|
|
}
|
|
|
|
const storedToken = await prisma.apiToken.create({
|
|
data: {
|
|
name: tokenName,
|
|
token: hashedToken,
|
|
expires: expiresIn ? DateTime.now().plus(timeConstantsRecords[expiresIn]).toJSDate() : null,
|
|
userId,
|
|
teamId,
|
|
},
|
|
});
|
|
|
|
return {
|
|
id: storedToken.id,
|
|
token: apiToken,
|
|
};
|
|
};
|