unleash.unleash/src/lib/services/api-token-service.ts

import crypto from 'crypto';
import { ApiTokenStore, IApiToken, ApiTokenType } from '../db/api-token-store';
import { Logger } from '../logger';
import { ADMIN, CLIENT } from '../permissions';
import { IUnleashStores } from '../types/stores';
import { IUnleashConfig } from '../types/option';
import ApiUser from '../types/api-user';

const ONE_MINUTE = 60_000;

interface CreateTokenRequest {
    username: string;
    type: ApiTokenType;
    expiresAt?: Date;
}

export class ApiTokenService {
    private store: ApiTokenStore;

    private logger: Logger;

    private timer: NodeJS.Timeout;

    private activeTokens: IApiToken[] = [];

    constructor(
        stores: Pick<IUnleashStores, 'apiTokenStore'>,
        config: Pick<IUnleashConfig, 'getLogger'>,
    ) {
        this.store = stores.apiTokenStore;
        this.logger = config.getLogger('/services/api-token-service.ts');
        this.fetchActiveTokens();
        this.timer = setInterval(
            () => this.fetchActiveTokens(),
            ONE_MINUTE,
        ).unref();
    }

    private async fetchActiveTokens(): Promise<void> {
        try {
            this.activeTokens = await this.getAllActiveTokens();
        } finally {
            // eslint-disable-next-line no-unsafe-finally
            return;
        }
    }

    public async getAllTokens(): Promise<IApiToken[]> {
        return this.store.getAll();
    }

    public async getAllActiveTokens(): Promise<IApiToken[]> {
        return this.store.getAllActive();
    }

    public getUserForToken(secret: string): ApiUser | undefined {
        const token = this.activeTokens.find(t => t.secret === secret);
        if (token) {
            const permissions =
                token.type === ApiTokenType.ADMIN ? [ADMIN] : [CLIENT];

            return new ApiUser({
                username: token.username,
                permissions,
            });
        }
        return undefined;
    }

    public async updateExpiry(
        secret: string,
        expiresAt: Date,
    ): Promise<IApiToken> {
        return this.store.setExpiry(secret, expiresAt);
    }

    public async delete(secret: string): Promise<void> {
        return this.store.delete(secret);
    }

    public async creteApiToken(
        creteTokenRequest: CreateTokenRequest,
    ): Promise<IApiToken> {
        const secret = this.generateSecretKey();
        const createNewToken = { ...creteTokenRequest, secret };
        return this.store.insert(createNewToken);
    }

    private generateSecretKey() {
        return crypto.randomBytes(32).toString('hex');
    }

    destroy(): void {
        clearInterval(this.timer);
        this.timer = null;
    }
}
Feat: Api-Tokens (#774) fixes: #774 2021-03-29 19:58:11 +02:00			`import crypto from 'crypto';`
			`import { ApiTokenStore, IApiToken, ApiTokenType } from '../db/api-token-store';`
fix: User should require a ID field set (#799) 2021-04-22 23:40:52 +02:00			`import { Logger } from '../logger';`
Feat: Api-Tokens (#774) fixes: #774 2021-03-29 19:58:11 +02:00			`import { ADMIN, CLIENT } from '../permissions';`
Feat/options need types (#794) feat: options are now typed - This makes it easier to know what to send to unleash.start / unleash.create - Using a Partial to instantiate the config, then melding it with defaults to get a config object with all fields set either to their defaults or to whatever is passed in. Co-authored-by: Fredrik Strand Oseberg <fredrik.no@gmail.com> Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-04-22 10:07:10 +02:00			`import { IUnleashStores } from '../types/stores';`
			`import { IUnleashConfig } from '../types/option';`
fix: User should require a ID field set (#799) 2021-04-22 23:40:52 +02:00			`import ApiUser from '../types/api-user';`
Feat: Api-Tokens (#774) fixes: #774 2021-03-29 19:58:11 +02:00
			`const ONE_MINUTE = 60_000;`

			`interface CreateTokenRequest {`
			`username: string;`
			`type: ApiTokenType;`
			`expiresAt?: Date;`
			`}`

			`export class ApiTokenService {`
			`private store: ApiTokenStore;`

			`private logger: Logger;`

			`private timer: NodeJS.Timeout;`

			`private activeTokens: IApiToken[] = [];`

Feat/options need types (#794) feat: options are now typed - This makes it easier to know what to send to unleash.start / unleash.create - Using a Partial to instantiate the config, then melding it with defaults to get a config object with all fields set either to their defaults or to whatever is passed in. Co-authored-by: Fredrik Strand Oseberg <fredrik.no@gmail.com> Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-04-22 10:07:10 +02:00			`constructor(`
			`stores: Pick<IUnleashStores, 'apiTokenStore'>,`
			`config: Pick<IUnleashConfig, 'getLogger'>,`
			`) {`
Feat: Api-Tokens (#774) fixes: #774 2021-03-29 19:58:11 +02:00			`this.store = stores.apiTokenStore;`
			`this.logger = config.getLogger('/services/api-token-service.ts');`
			`this.fetchActiveTokens();`
			`this.timer = setInterval(`
			`() => this.fetchActiveTokens(),`
			`ONE_MINUTE,`
			`).unref();`
			`}`

			`private async fetchActiveTokens(): Promise<void> {`
			`try {`
			`this.activeTokens = await this.getAllActiveTokens();`
			`} finally {`
			`// eslint-disable-next-line no-unsafe-finally`
			`return;`
			`}`
			`}`

			`public async getAllTokens(): Promise<IApiToken[]> {`
			`return this.store.getAll();`
			`}`

			`public async getAllActiveTokens(): Promise<IApiToken[]> {`
			`return this.store.getAllActive();`
			`}`

fix: User should require a ID field set (#799) 2021-04-22 23:40:52 +02:00			`public getUserForToken(secret: string): ApiUser \| undefined {`
Feat: Api-Tokens (#774) fixes: #774 2021-03-29 19:58:11 +02:00			`const token = this.activeTokens.find(t => t.secret === secret);`
			`if (token) {`
			`const permissions =`
			`token.type === ApiTokenType.ADMIN ? [ADMIN] : [CLIENT];`

fix: User should require a ID field set (#799) 2021-04-22 23:40:52 +02:00			`return new ApiUser({`
Feat: Api-Tokens (#774) fixes: #774 2021-03-29 19:58:11 +02:00			`username: token.username,`
			`permissions,`
			`});`
			`}`
			`return undefined;`
			`}`

			`public async updateExpiry(`
			`secret: string,`
			`expiresAt: Date,`
			`): Promise<IApiToken> {`
			`return this.store.setExpiry(secret, expiresAt);`
			`}`

			`public async delete(secret: string): Promise<void> {`
			`return this.store.delete(secret);`
			`}`

			`public async creteApiToken(`
			`creteTokenRequest: CreateTokenRequest,`
			`): Promise<IApiToken> {`
			`const secret = this.generateSecretKey();`
			`const createNewToken = { ...creteTokenRequest, secret };`
			`return this.store.insert(createNewToken);`
			`}`

			`private generateSecretKey() {`
			`return crypto.randomBytes(32).toString('hex');`
			`}`

fix: User should require a ID field set (#799) 2021-04-22 23:40:52 +02:00			`destroy(): void {`
Feat: Api-Tokens (#774) fixes: #774 2021-03-29 19:58:11 +02:00			`clearInterval(this.timer);`
			`this.timer = null;`
			`}`
			`}`