mirror of
https://github.com/btcpayserver/btcpayserver.git
synced 2024-11-20 02:28:31 +01:00
179520a211
This allows plugins to create custom dbcontexts, which would be namespaced in the scheme with a prefix. Migrations are supported too and the table would be prefixed too
99 lines
3.6 KiB
C#
99 lines
3.6 KiB
C#
using System.Linq;
|
|
using System.Threading.Tasks;
|
|
using BTCPayServer.Abstractions.Constants;
|
|
using BTCPayServer.Client;
|
|
using BTCPayServer.Client.Models;
|
|
using BTCPayServer.Data;
|
|
using BTCPayServer.Security;
|
|
using BTCPayServer.Security.GreenField;
|
|
using Microsoft.AspNetCore.Authorization;
|
|
using Microsoft.AspNetCore.Cors;
|
|
using Microsoft.AspNetCore.Identity;
|
|
using Microsoft.AspNetCore.Mvc;
|
|
using NBitcoin;
|
|
using NBitcoin.DataEncoders;
|
|
|
|
namespace BTCPayServer.Controllers.GreenField
|
|
{
|
|
[ApiController]
|
|
[Authorize(AuthenticationSchemes = AuthenticationSchemes.GreenfieldAPIKeys)]
|
|
[EnableCors(CorsPolicies.All)]
|
|
public class ApiKeysController : ControllerBase
|
|
{
|
|
private readonly APIKeyRepository _apiKeyRepository;
|
|
private readonly UserManager<ApplicationUser> _userManager;
|
|
|
|
public ApiKeysController(APIKeyRepository apiKeyRepository, UserManager<ApplicationUser> userManager)
|
|
{
|
|
_apiKeyRepository = apiKeyRepository;
|
|
_userManager = userManager;
|
|
}
|
|
|
|
[HttpGet("~/api/v1/api-keys/current")]
|
|
public async Task<ActionResult<ApiKeyData>> GetKey()
|
|
{
|
|
if (!ControllerContext.HttpContext.GetAPIKey(out var apiKey))
|
|
{
|
|
return NotFound();
|
|
}
|
|
var data = await _apiKeyRepository.GetKey(apiKey);
|
|
return Ok(FromModel(data));
|
|
}
|
|
|
|
[HttpPost("~/api/v1/api-keys")]
|
|
[Authorize(Policy = Policies.Unrestricted, AuthenticationSchemes = AuthenticationSchemes.Greenfield)]
|
|
public async Task<IActionResult> CreateKey(CreateApiKeyRequest request)
|
|
{
|
|
if (request is null)
|
|
return NotFound();
|
|
request.Permissions ??= System.Array.Empty<Permission>();
|
|
var key = new APIKeyData()
|
|
{
|
|
Id = Encoders.Hex.EncodeData(RandomUtils.GetBytes(20)),
|
|
Type = APIKeyType.Permanent,
|
|
UserId = _userManager.GetUserId(User),
|
|
Label = request.Label
|
|
};
|
|
key.SetBlob(new APIKeyBlob()
|
|
{
|
|
Permissions = request.Permissions.Select(p => p.ToString()).Distinct().ToArray()
|
|
});
|
|
await _apiKeyRepository.CreateKey(key);
|
|
return Ok(FromModel(key));
|
|
}
|
|
|
|
[HttpDelete("~/api/v1/api-keys/current")]
|
|
[Authorize(AuthenticationSchemes = AuthenticationSchemes.GreenfieldAPIKeys)]
|
|
public Task<IActionResult> RevokeCurrentKey()
|
|
{
|
|
if (!ControllerContext.HttpContext.GetAPIKey(out var apiKey))
|
|
{
|
|
// Should be impossible (we force apikey auth)
|
|
return Task.FromResult<IActionResult>(BadRequest());
|
|
}
|
|
return RevokeKey(apiKey);
|
|
}
|
|
[HttpDelete("~/api/v1/api-keys/{apikey}", Order = 1)]
|
|
[Authorize(Policy = Policies.Unrestricted, AuthenticationSchemes = AuthenticationSchemes.Greenfield)]
|
|
public async Task<IActionResult> RevokeKey(string apikey)
|
|
{
|
|
if (string.IsNullOrEmpty(apikey))
|
|
return NotFound();
|
|
if (await _apiKeyRepository.Remove(apikey, _userManager.GetUserId(User)))
|
|
return Ok();
|
|
else
|
|
return NotFound();
|
|
}
|
|
|
|
private static ApiKeyData FromModel(APIKeyData data)
|
|
{
|
|
return new ApiKeyData()
|
|
{
|
|
Permissions = Permission.ToPermissions(data.GetBlob().Permissions).ToArray(),
|
|
ApiKey = data.Id,
|
|
Label = data.Label ?? string.Empty
|
|
};
|
|
}
|
|
}
|
|
}
|