first commit

calcom/packages/trpc/server/routers/viewer/apiKeys/create.handler.ts

@@ -0,0 +1,45 @@
+import { v4 } from "uuid";
+
+import { generateUniqueAPIKey } from "@calcom/ee/api-keys/lib/apiKeys";
+import prisma from "@calcom/prisma";
+import { MembershipRole } from "@calcom/prisma/enums";
+
+import type { TrpcSessionUser } from "../../../trpc";
+import { checkPermissions } from "./_auth-middleware";
+import type { TCreateInputSchema } from "./create.schema";
+
+type CreateHandlerOptions = {
+  ctx: {
+    user: NonNullable<TrpcSessionUser>;
+  };
+  input: TCreateInputSchema;
+};
+
+export const createHandler = async ({ ctx, input }: CreateHandlerOptions) => {
+  const [hashedApiKey, apiKey] = generateUniqueAPIKey();
+
+  // Here we snap never expires before deleting it so it's not passed to prisma create call.
+  const { neverExpires, teamId, ...rest } = input;
+  const userId = ctx.user.id;
+
+  /** Only admin or owner can create apiKeys of team (if teamId is passed) */
+  await checkPermissions({ userId, teamId, role: { in: [MembershipRole.OWNER, MembershipRole.ADMIN] } });
+
+  await prisma.apiKey.create({
+    data: {
+      id: v4(),
+      userId: ctx.user.id,
+      teamId,
+      ...rest,
+      // And here we pass a null to expiresAt if never expires is true. otherwise just pass expiresAt from input
+      expiresAt: neverExpires ? null : rest.expiresAt,
+      hashedKey: hashedApiKey,
+    },
+  });
+
+  const apiKeyPrefix = process.env.API_KEY_PREFIX ?? "cal_";
+
+  const prefixedApiKey = `${apiKeyPrefix}${apiKey}`;
+
+  return prefixedApiKey;
+};