generated from coulomb/repo-seed
Bernd Worsch
3cac021213
Some checks failed
Test / test (push) Has been cancelled
Delivers the full Phase 9 external API layer: - Versioned REST API (/api/v2/) with OpenAPI 3.1 spec; enum arrays for widget_type, event_type, annotation category drawn live from registry tables - OAuth 2.0 client credentials flow (/api/v2/token); hub:*:write scopes gated on active HubCapabilityManifest FK - API key management: SHA256-hashed tokens, key_prefix for display, one-time reveal on creation, revocation support - TypeScript and Python consumer SDKs generated from registry tables (/api/v2/sdk/ihf-client.ts, /api/v2/sdk/ihf-client.py) - Webhook delivery: HMAC-SHA256 signing, append-only webhook_deliveries, fire-and-forget dispatch via forkIO, 3-retry logic - Admin API dashboard with 24h stats (request count, error rate, last seen) - Rate limiting (per-minute) and daily quota enforcement via api_request_log - Schema migration: api_consumers, api_keys, webhook_subscriptions (CHECK constraint on 6 framework lifecycle topics), webhook_deliveries (append-only trigger), api_request_log - ARCHITECTURE-LAYERS.md scorecard: 3.34 → 3.41 (approaching Strong) - contracts/functional/interaction-reporting-v1.md extended with Phase 9 endpoint catalogue and 422 validation error format GAAF: no bare TEXT discriminators; webhook event_type uses CHECK constraint over 6 allowed framework lifecycle topic strings (not widget event types). Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
54 lines
1.9 KiB
Haskell
54 lines
1.9 KiB
Haskell
module Web.Controller.ApiKeys where
|
|
|
|
import Web.Types
|
|
import Web.View.ApiKeys.New
|
|
import Web.View.ApiKeys.Created
|
|
import Generated.Types
|
|
import IHP.Prelude
|
|
import IHP.ControllerPrelude
|
|
import qualified Data.Text.Encoding as TE
|
|
import qualified Crypto.Hash.SHA256 as SHA256
|
|
import qualified Data.ByteString.Base16 as Base16
|
|
import qualified Data.ByteString.Random as Random
|
|
|
|
instance Controller ApiKeysController where
|
|
beforeAction = ensureIsUser
|
|
|
|
action ApiKeysAction { apiConsumerId } = do
|
|
-- Redirect to consumer show page which displays keys
|
|
redirectTo (ShowApiConsumerAction apiConsumerId)
|
|
|
|
action NewApiKeyAction { apiConsumerId } = do
|
|
consumer <- fetch apiConsumerId
|
|
let apiKey = newRecord @ApiKey
|
|
render NewView { apiKey, consumer }
|
|
|
|
action CreateApiKeyAction = do
|
|
apiConsumerId <- param @(Id ApiConsumer) "apiConsumerId"
|
|
consumer <- fetch apiConsumerId
|
|
scopes <- fromMaybe "" <$> paramOrNothing @Text "scopes"
|
|
|
|
-- Generate a random 32-byte key, encode as hex (64 chars)
|
|
rawBytes <- liftIO $ Random.random 32
|
|
let fullKey = TE.decodeUtf8 (Base16.encode rawBytes)
|
|
let prefix = T.take 8 fullKey
|
|
let keyHash = TE.decodeUtf8 $ Base16.encode $ SHA256.hash (TE.encodeUtf8 fullKey)
|
|
|
|
_key <- newRecord @ApiKey
|
|
|> set #apiConsumerId consumer.id
|
|
|> set #keyPrefix prefix
|
|
|> set #keyHash keyHash
|
|
|> set #scopes scopes
|
|
|> set #tokenType "static"
|
|
|> createRecord
|
|
|
|
-- Show full key once; never again
|
|
render CreatedView { consumer, fullKey }
|
|
|
|
action RevokeApiKeyAction { apiKeyId } = do
|
|
apiKey <- fetch apiKeyId
|
|
now <- getCurrentTime
|
|
apiKey |> set #revokedAt (Just now) |> updateRecord
|
|
consumer <- fetch apiKey.apiConsumerId
|
|
redirectTo (ShowApiConsumerAction consumer.id)
|