feat: allow client-based web tokens

2025-11-15 09:11:21 +10:00 · 2025-04-08 16:16:40 +10:00
parent 043ef6dcd2
commit 42349ad4e1
8 changed files with 59 additions and 7 deletions
--- a/server/api/v1/client/user/webtoken.post.ts
+++ b/server/api/v1/client/user/webtoken.post.ts
@ -0,0 +1,31 @@
+import { APITokenMode } from "@prisma/client";
+import { DateTime } from "luxon";
+import { UserACL } from "~/server/internal/acls";
+import { defineClientEventHandler } from "~/server/internal/clients/event-handler";
+import prisma from "~/server/internal/db/database";
+
+export default defineClientEventHandler(
+  async (h3, { fetchUser, fetchClient, clientId }) => {
+    const user = await fetchUser();
+    const client = await fetchClient();
+
+    const acls: UserACL = [
+      "read",
+      "store:read",
+      "collections:read",
+      "object:read",
+    ];
+
+    const token = await prisma.aPIToken.create({
+      data: {
+        name: `${client.name} Web Access Token ${DateTime.now().toISO()}`,
+        clientId,
+        userId: user.id,
+        mode: APITokenMode.Client,
+        acls,
+      },
+    });
+
+    return token.token;
+  }
+);