mirror of
synced 2025-02-23 06:35:13 +01:00
405 lines
17 KiB
405 lines
17 KiB
using System;
using System.Collections.Generic;
using System.Globalization;
using System.Linq;
using System.Threading.Tasks;
using BTCPayServer.Client;
using BTCPayServer.Data;
using BTCPayServer.Models;
using BTCPayServer.Security;
using BTCPayServer.Security.GreenField;
using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Mvc;
using NBitcoin;
using NBitcoin.DataEncoders;
using YamlDotNet.Core.Tokens;
namespace BTCPayServer.Controllers
public partial class ManageController
public async Task<IActionResult> APIKeys()
return View(new ApiKeysViewModel()
ApiKeyDatas = await _apiKeyRepository.GetKeys(new APIKeyRepository.APIKeyQuery()
UserId = new[] { _userManager.GetUserId(User) }
public async Task<IActionResult> RemoveAPIKey(string id)
var key = await _apiKeyRepository.GetKey(id);
if (key == null || key.UserId != _userManager.GetUserId(User))
return NotFound();
return View("Confirm", new ConfirmModel()
Title = "Delete API Key " + (string.IsNullOrEmpty(key.Label) ? string.Empty : key.Label) + "(" + key.Id + ")",
Description = "Any application using this api key will immediately lose access",
Action = "Delete",
ActionUrl = this.Url.ActionLink(nameof(RemoveAPIKeyPost), values: new { id = id })
public async Task<IActionResult> RemoveAPIKeyPost(string id)
var key = await _apiKeyRepository.GetKey(id);
if (key == null || key.UserId != _userManager.GetUserId(User))
return NotFound();
await _apiKeyRepository.Remove(id, _userManager.GetUserId(User));
TempData.SetStatusMessageModel(new StatusMessageModel()
Severity = StatusMessageModel.StatusSeverity.Success,
Message = "API Key removed"
return RedirectToAction("APIKeys");
public async Task<IActionResult> AddApiKey()
if (!_btcPayServerEnvironment.IsSecure)
TempData.SetStatusMessageModel(new StatusMessageModel()
Severity = StatusMessageModel.StatusSeverity.Error,
Message = "Cannot generate api keys while not on https or tor"
return RedirectToAction("APIKeys");
return View("AddApiKey", await SetViewModelValues(new AddApiKeyViewModel()));
public async Task<IActionResult> AuthorizeAPIKey(string[] permissions, string applicationName = null,
bool strict = true, bool selectiveStores = false)
if (!_btcPayServerEnvironment.IsSecure)
TempData.SetStatusMessageModel(new StatusMessageModel()
Severity = StatusMessageModel.StatusSeverity.Error,
Message = "Cannot generate api keys while not on https or tor"
return RedirectToAction("APIKeys");
permissions ??= Array.Empty<string>();
var parsedPermissions = Permission.ToPermissions(permissions).GroupBy(permission => permission.Policy);
var vm = await SetViewModelValues(new AuthorizeApiKeysViewModel()
Label = applicationName,
ApplicationName = applicationName,
SelectiveStores = selectiveStores,
Strict = strict,
Permissions = string.Join(';', parsedPermissions.SelectMany(grouping => grouping.Select(permission => permission.ToString())))
return View(vm);
private void AdjustVMForAuthorization(AuthorizeApiKeysViewModel vm)
var parsedPermissions = Permission.ToPermissions(vm.Permissions.Split(';')).GroupBy(permission => permission.Policy);
for (var index = vm.PermissionValues.Count - 1; index >= 0; index--)
var permissionValue = vm.PermissionValues[index];
var wanted = parsedPermissions?.SingleOrDefault(permission =>
if (vm.Strict && !(wanted?.Any()??false))
else if (wanted?.Any()??false)
if (vm.SelectiveStores && Policies.IsStorePolicy(permissionValue.Permission) &&
wanted.Any(permission => !string.IsNullOrEmpty(permission.StoreId)))
permissionValue.StoreMode = AddApiKeyViewModel.ApiKeyStoreMode.Specific;
permissionValue.SpecificStores = wanted.Select(permission => permission.StoreId).ToList();
permissionValue.StoreMode = AddApiKeyViewModel.ApiKeyStoreMode.AllStores;
permissionValue.SpecificStores = new List<string>();
permissionValue.Value = true;
public async Task<IActionResult> AuthorizeAPIKey([FromForm] AuthorizeApiKeysViewModel viewModel)
await SetViewModelValues(viewModel);
var ar = HandleCommands(viewModel);
if (ar != null)
return ar;
for (int i = 0; i < viewModel.PermissionValues.Count; i++)
if (viewModel.PermissionValues[i].Forbidden && viewModel.Strict)
viewModel.PermissionValues[i].Value = false;
$"The permission '{viewModel.PermissionValues[i].Title}' is required for this application.");
if (viewModel.PermissionValues[i].StoreMode == AddApiKeyViewModel.ApiKeyStoreMode.Specific &&
viewModel.PermissionValues[i].StoreMode = AddApiKeyViewModel.ApiKeyStoreMode.AllStores;
$"The permission '{viewModel.PermissionValues[i].Title}' cannot be store specific for this application.");
if (!ModelState.IsValid)
return View(viewModel);
switch (viewModel.Command.ToLowerInvariant())
case "no":
return RedirectToAction("APIKeys");
case "yes":
var key = await CreateKey(viewModel);
TempData.SetStatusMessageModel(new StatusMessageModel()
Severity = StatusMessageModel.StatusSeverity.Success,
Html = $"API key generated! <code class='alert-link'>{key.Id}</code>"
return RedirectToAction("APIKeys", new { key = key.Id });
return View(viewModel);
public async Task<IActionResult> AddApiKey(AddApiKeyViewModel viewModel)
await SetViewModelValues(viewModel);
var ar = HandleCommands(viewModel);
if (ar != null)
return ar;
if (!ModelState.IsValid)
return View(viewModel);
var key = await CreateKey(viewModel);
TempData.SetStatusMessageModel(new StatusMessageModel()
Severity = StatusMessageModel.StatusSeverity.Success,
Html = $"API key generated! <code class='alert-link'>{key.Id}</code>"
return RedirectToAction("APIKeys");
private IActionResult HandleCommands(AddApiKeyViewModel viewModel)
if (string.IsNullOrEmpty(viewModel.Command))
return null;
var parts = viewModel.Command.Split(':', StringSplitOptions.RemoveEmptyEntries);
var permission = parts[0];
if (!Policies.IsStorePolicy(permission))
return null;
var permissionValueItem = viewModel.PermissionValues.Single(item => item.Permission == permission);
var command = parts[1];
var storeIndex = parts.Length == 3 ? parts[2] : null;
switch (command)
case "change-store-mode":
permissionValueItem.StoreMode = permissionValueItem.StoreMode == AddApiKeyViewModel.ApiKeyStoreMode.Specific
? AddApiKeyViewModel.ApiKeyStoreMode.AllStores
: AddApiKeyViewModel.ApiKeyStoreMode.Specific;
if (permissionValueItem.StoreMode == AddApiKeyViewModel.ApiKeyStoreMode.Specific &&
!permissionValueItem.SpecificStores.Any() && viewModel.Stores.Any())
return View(viewModel);
case "add-store":
return View(viewModel);
case "remove-store":
if (storeIndex != null)
return View(viewModel);
return null;
private async Task<APIKeyData> CreateKey(AddApiKeyViewModel viewModel)
var key = new APIKeyData()
Id = Encoders.Hex.EncodeData(RandomUtils.GetBytes(20)),
Type = APIKeyType.Permanent,
UserId = _userManager.GetUserId(User),
Label = viewModel.Label
key.SetBlob(new APIKeyBlob()
Permissions = GetPermissionsFromViewModel(viewModel).Select(p => p.ToString()).Distinct().ToArray()
await _apiKeyRepository.CreateKey(key);
return key;
private IEnumerable<Permission> GetPermissionsFromViewModel(AddApiKeyViewModel viewModel)
List<Permission> permissions = new List<Permission>();
foreach (var p in viewModel.PermissionValues.Where(tuple => !tuple.Forbidden))
if (Policies.IsStorePolicy(p.Permission))
if (p.StoreMode == AddApiKeyViewModel.ApiKeyStoreMode.AllStores && p.Value)
else if (p.StoreMode == AddApiKeyViewModel.ApiKeyStoreMode.Specific)
permissions.AddRange(p.SpecificStores.Select(s => Permission.Create(p.Permission, s)));
else if (p.Value && Permission.TryCreatePermission(p.Permission, null, out var pp))
return permissions.Distinct();
private async Task<T> SetViewModelValues<T>(T viewModel) where T : AddApiKeyViewModel
viewModel.Stores = await _StoreRepository.GetStoresByUserId(_userManager.GetUserId(User));
var isAdmin = (await _authorizationService.AuthorizeAsync(User, Policies.CanModifyServerSettings))
viewModel.PermissionValues ??= Policies.AllPolicies
.Select(s => new AddApiKeyViewModel.PermissionValueItem()
Permission = s,
Value = false,
Forbidden = Policies.IsServerPolicy(s) && !isAdmin
if (!isAdmin)
foreach (var p in viewModel.PermissionValues.Where(item => Policies.IsServerPolicy(item.Permission)))
p.Forbidden = true;
return viewModel;
public class AddApiKeyViewModel
public string Label { get; set; }
public StoreData[] Stores { get; set; }
public string Command { get; set; }
public List<PermissionValueItem> PermissionValues { get; set; }
public enum ApiKeyStoreMode
public class PermissionValueItem
public static readonly Dictionary<string, (string Title, string Description)> PermissionDescriptions = new Dictionary<string, (string Title, string Description)>()
{BTCPayServer.Client.Policies.Unrestricted, ("Unrestricted access", "The app will have unrestricted access to your account.")},
{BTCPayServer.Client.Policies.CanCreateUser, ("Create new users", "The app will be able to create new users on this server.")},
{BTCPayServer.Client.Policies.CanModifyStoreSettings, ("Modify your stores", "The app will be able to create, view and modify, delete and create new invoices on the all your stores.")},
{$"{BTCPayServer.Client.Policies.CanModifyStoreSettings}:", ("Manage selected stores", "The app will be able to view, modify, delete and create new invoices on the selected stores.")},
{BTCPayServer.Client.Policies.CanViewStoreSettings, ("View your stores", "The app will be able to view stores settings.")},
{$"{BTCPayServer.Client.Policies.CanViewStoreSettings}:", ("View your stores", "The app will be able to view the selected stores' settings.")},
{BTCPayServer.Client.Policies.CanModifyServerSettings, ("Manage your server", "The app will have total control on the server settings of your server")},
{BTCPayServer.Client.Policies.CanViewProfile, ("View your profile", "The app will be able to view your user profile.")},
{BTCPayServer.Client.Policies.CanModifyProfile, ("Manage your profile", "The app will be able to view and modify your user profile.")},
{BTCPayServer.Client.Policies.CanCreateInvoice, ("Create an invoice", "The app will be able to create new invoices.")},
{$"{BTCPayServer.Client.Policies.CanCreateInvoice}:", ("Create an invoice", "The app will be able to create new invoices on the selected stores.")},
public string Title
return PermissionDescriptions[$"{Permission}{(StoreMode == ApiKeyStoreMode.Specific? ":": "")}"].Title;
public string Description
return PermissionDescriptions[$"{Permission}{(StoreMode == ApiKeyStoreMode.Specific? ":": "")}"].Description;
public string Permission { get; set; }
public bool Value { get; set; }
public bool Forbidden { get; set; }
public ApiKeyStoreMode StoreMode { get; set; } = ApiKeyStoreMode.AllStores;
public List<string> SpecificStores { get; set; } = new List<string>();
public class AuthorizeApiKeysViewModel : AddApiKeyViewModel
public string ApplicationName { get; set; }
public bool Strict { get; set; }
public bool SelectiveStores { get; set; }
public string Permissions { get; set; }
public class ApiKeysViewModel
public List<APIKeyData> ApiKeyDatas { get; set; }