unleash.unleash/src/lib/services/pat-service.ts

import { IUnleashConfig, IUnleashStores } from '../types';
import { Logger } from '../logger';
import { IPatStore } from '../types/stores/pat-store';
import { IEventStore } from '../types/stores/event-store';
import { PAT_CREATED } from '../types/events';
import { IPat } from '../types/models/pat';
import crypto from 'crypto';
import User from '../types/user';
import BadDataError from '../error/bad-data-error';
import NameExistsError from '../error/name-exists-error';
import { OperationDeniedError } from '../error/operation-denied-error';
import { PAT_LIMIT } from '../util/constants';

export default class PatService {
    private config: IUnleashConfig;

    private logger: Logger;

    private patStore: IPatStore;

    private eventStore: IEventStore;

    constructor(
        {
            patStore,
            eventStore,
        }: Pick<IUnleashStores, 'patStore' | 'eventStore'>,
        config: IUnleashConfig,
    ) {
        this.config = config;
        this.logger = config.getLogger('services/pat-service.ts');
        this.patStore = patStore;
        this.eventStore = eventStore;
    }

    async createPat(pat: IPat, user: User): Promise<IPat> {
        await this.validatePat(pat, user.id);
        pat.secret = this.generateSecretKey();
        pat.userId = user.id;
        const newPat = await this.patStore.create(pat);

        pat.secret = '***';
        await this.eventStore.store({
            type: PAT_CREATED,
            createdBy: user.email || user.username,
            data: pat,
        });

        return newPat;
    }

    async getAll(user: User): Promise<IPat[]> {
        return this.patStore.getAllByUser(user.id);
    }

    async deletePat(id: number, userId: number): Promise<void> {
        return this.patStore.deleteForUser(id, userId);
    }

    async validatePat(
        { description, expiresAt }: IPat,
        userId: number,
    ): Promise<void> {
        if (!description) {
            throw new BadDataError('PAT description cannot be empty');
        }

        if (new Date(expiresAt) < new Date()) {
            throw new BadDataError('The expiry date should be in future.');
        }

        if ((await this.patStore.countByUser(userId)) >= PAT_LIMIT) {
            throw new OperationDeniedError(
                `Too many PATs (${PAT_LIMIT}) already exist for this user.`,
            );
        }

        if (
            await this.patStore.existsWithDescriptionByUser(description, userId)
        ) {
            throw new NameExistsError('PAT description already exists');
        }
    }

    private generateSecretKey() {
        const randomStr = crypto.randomBytes(28).toString('hex');
        return `user:${randomStr}`;
    }
}

module.exports = PatService;
Personal access tokens backend (#2064) * First version ready * Final * Refactor * Update pat store * Website revert * Website revert * Update * Revert website * Revert docs to main * Revert docs to main * Fix eslint * Test * Fix table name 2022-09-16 09:54:27 +02:00			`import { IUnleashConfig, IUnleashStores } from '../types';`
			`import { Logger } from '../logger';`
			`import { IPatStore } from '../types/stores/pat-store';`
			`import { IEventStore } from '../types/stores/event-store';`
			`import { PAT_CREATED } from '../types/events';`
			`import { IPat } from '../types/models/pat';`
			`import crypto from 'crypto';`
			`import User from '../types/user';`
fix: PATs should have an unique description (per user) (#2191) * fix: PATs should have an unique description * add pat validation on the back-end service * Update src/lib/services/pat-service.ts Co-authored-by: Simon Hornby <liquidwicked64@gmail.com> * fix: only consider current user's PATs * fix tests * cleanup * Update frontend/src/component/user/Profile/PersonalAPITokensTab/CreatePersonalAPIToken/CreatePersonalAPIToken.tsx Co-authored-by: Thomas Heartman <thomas@getunleash.ai> * Update src/test/e2e/api/admin/user/pat.e2e.test.ts Co-authored-by: Thomas Heartman <thomas@getunleash.ai> Co-authored-by: Simon Hornby <liquidwicked64@gmail.com> Co-authored-by: Thomas Heartman <thomas@getunleash.ai> 2022-10-14 14:28:29 +02:00			`import BadDataError from '../error/bad-data-error';`
			`import NameExistsError from '../error/name-exists-error';`
fix: limit total of PATs a user can have (#2301) * fix: limit total of PATs a user can have * increase PAT limit to 10 * Update src/lib/services/pat-service.ts Co-authored-by: Simon Hornby <liquidwicked64@gmail.com> * disable button on the front-end when PAT limit is reached * import from server instead of repeating ourselves Co-authored-by: Simon Hornby <liquidwicked64@gmail.com> 2022-11-02 09:11:35 +01:00			`import { OperationDeniedError } from '../error/operation-denied-error';`
			`import { PAT_LIMIT } from '../util/constants';`
Personal access tokens backend (#2064) * First version ready * Final * Refactor * Update pat store * Website revert * Website revert * Update * Revert website * Revert docs to main * Revert docs to main * Fix eslint * Test * Fix table name 2022-09-16 09:54:27 +02:00
			`export default class PatService {`
			`private config: IUnleashConfig;`

			`private logger: Logger;`

			`private patStore: IPatStore;`

			`private eventStore: IEventStore;`

			`constructor(`
			`{`
			`patStore,`
			`eventStore,`
			`}: Pick<IUnleashStores, 'patStore' \| 'eventStore'>,`
			`config: IUnleashConfig,`
			`) {`
			`this.config = config;`
			`this.logger = config.getLogger('services/pat-service.ts');`
			`this.patStore = patStore;`
			`this.eventStore = eventStore;`
			`}`

			`async createPat(pat: IPat, user: User): Promise<IPat> {`
fix: PATs should have an unique description (per user) (#2191) * fix: PATs should have an unique description * add pat validation on the back-end service * Update src/lib/services/pat-service.ts Co-authored-by: Simon Hornby <liquidwicked64@gmail.com> * fix: only consider current user's PATs * fix tests * cleanup * Update frontend/src/component/user/Profile/PersonalAPITokensTab/CreatePersonalAPIToken/CreatePersonalAPIToken.tsx Co-authored-by: Thomas Heartman <thomas@getunleash.ai> * Update src/test/e2e/api/admin/user/pat.e2e.test.ts Co-authored-by: Thomas Heartman <thomas@getunleash.ai> Co-authored-by: Simon Hornby <liquidwicked64@gmail.com> Co-authored-by: Thomas Heartman <thomas@getunleash.ai> 2022-10-14 14:28:29 +02:00			`await this.validatePat(pat, user.id);`
Personal access tokens backend (#2064) * First version ready * Final * Refactor * Update pat store * Website revert * Website revert * Update * Revert website * Revert docs to main * Revert docs to main * Fix eslint * Test * Fix table name 2022-09-16 09:54:27 +02:00			`pat.secret = this.generateSecretKey();`
			`pat.userId = user.id;`
			`const newPat = await this.patStore.create(pat);`

Change PAT primary key from string to number (#2163) * Update primary key * Fix tests 2022-10-10 12:35:12 +02:00			`pat.secret = '***';`
Personal access tokens backend (#2064) * First version ready * Final * Refactor * Update pat store * Website revert * Website revert * Update * Revert website * Revert docs to main * Revert docs to main * Fix eslint * Test * Fix table name 2022-09-16 09:54:27 +02:00			`await this.eventStore.store({`
			`type: PAT_CREATED,`
			`createdBy: user.email \|\| user.username,`
			`data: pat,`
			`});`

			`return newPat;`
			`}`

			`async getAll(user: User): Promise<IPat[]> {`
			`return this.patStore.getAllByUser(user.id);`
			`}`

Change PAT primary key from string to number (#2163) * Update primary key * Fix tests 2022-10-10 12:35:12 +02:00			`async deletePat(id: number, userId: number): Promise<void> {`
			`return this.patStore.deleteForUser(id, userId);`
Personal access tokens backend (#2064) * First version ready * Final * Refactor * Update pat store * Website revert * Website revert * Update * Revert website * Revert docs to main * Revert docs to main * Fix eslint * Test * Fix table name 2022-09-16 09:54:27 +02:00			`}`

fix: PATs should have an unique description (per user) (#2191) * fix: PATs should have an unique description * add pat validation on the back-end service * Update src/lib/services/pat-service.ts Co-authored-by: Simon Hornby <liquidwicked64@gmail.com> * fix: only consider current user's PATs * fix tests * cleanup * Update frontend/src/component/user/Profile/PersonalAPITokensTab/CreatePersonalAPIToken/CreatePersonalAPIToken.tsx Co-authored-by: Thomas Heartman <thomas@getunleash.ai> * Update src/test/e2e/api/admin/user/pat.e2e.test.ts Co-authored-by: Thomas Heartman <thomas@getunleash.ai> Co-authored-by: Simon Hornby <liquidwicked64@gmail.com> Co-authored-by: Thomas Heartman <thomas@getunleash.ai> 2022-10-14 14:28:29 +02:00			`async validatePat(`
			`{ description, expiresAt }: IPat,`
			`userId: number,`
			`): Promise<void> {`
			`if (!description) {`
			`throw new BadDataError('PAT description cannot be empty');`
			`}`

			`if (new Date(expiresAt) < new Date()) {`
			`throw new BadDataError('The expiry date should be in future.');`
			`}`

fix: limit total of PATs a user can have (#2301) * fix: limit total of PATs a user can have * increase PAT limit to 10 * Update src/lib/services/pat-service.ts Co-authored-by: Simon Hornby <liquidwicked64@gmail.com> * disable button on the front-end when PAT limit is reached * import from server instead of repeating ourselves Co-authored-by: Simon Hornby <liquidwicked64@gmail.com> 2022-11-02 09:11:35 +01:00			`if ((await this.patStore.countByUser(userId)) >= PAT_LIMIT) {`
			`throw new OperationDeniedError(`
			`Too many PATs (${PAT_LIMIT}) already exist for this user.`,
			`);`
			`}`

fix: PATs should have an unique description (per user) (#2191) * fix: PATs should have an unique description * add pat validation on the back-end service * Update src/lib/services/pat-service.ts Co-authored-by: Simon Hornby <liquidwicked64@gmail.com> * fix: only consider current user's PATs * fix tests * cleanup * Update frontend/src/component/user/Profile/PersonalAPITokensTab/CreatePersonalAPIToken/CreatePersonalAPIToken.tsx Co-authored-by: Thomas Heartman <thomas@getunleash.ai> * Update src/test/e2e/api/admin/user/pat.e2e.test.ts Co-authored-by: Thomas Heartman <thomas@getunleash.ai> Co-authored-by: Simon Hornby <liquidwicked64@gmail.com> Co-authored-by: Thomas Heartman <thomas@getunleash.ai> 2022-10-14 14:28:29 +02:00			`if (`
			`await this.patStore.existsWithDescriptionByUser(description, userId)`
			`) {`
			`throw new NameExistsError('PAT description already exists');`
			`}`
			`}`

Personal access tokens backend (#2064) * First version ready * Final * Refactor * Update pat store * Website revert * Website revert * Update * Revert website * Revert docs to main * Revert docs to main * Fix eslint * Test * Fix table name 2022-09-16 09:54:27 +02:00			`private generateSecretKey() {`
			`const randomStr = crypto.randomBytes(28).toString('hex');`
			return `user:${randomStr}`;
			`}`
			`}`

			`module.exports = PatService;`