packages/lib/server-only/public-api/create-api-token.ts

import { TeamMemberRole } from '@prisma/client';
import type { Duration } from 'luxon';
import { DateTime } from 'luxon';

import { prisma } from '@documenso/prisma';

// temporary choice for testing only
import * as timeConstants from '../../constants/time';
import { AppError, AppErrorCode } from '../../errors/app-error';
import { alphaid } from '../../universal/id';
import { hashString } from '../auth/hash';

type TimeConstants = typeof timeConstants & {
  [key: string]: number | Duration;
};

type CreateApiTokenInput = {
  userId: number;
  teamId?: number;
  tokenName: string;
  expiresIn: string | null;
};

export const createApiToken = async ({
  userId,
  teamId,
  tokenName,
  expiresIn,
}: CreateApiTokenInput) => {
  const apiToken = `api_${alphaid(16)}`;

  const hashedToken = hashString(apiToken);

  const timeConstantsRecords: TimeConstants = timeConstants;

  if (teamId) {
    const member = await prisma.teamMember.findFirst({
      where: {
        userId,
        teamId,
        role: TeamMemberRole.ADMIN,
      },
    });

    if (!member) {
      throw new AppError(AppErrorCode.UNAUTHORIZED, {
        message: 'You do not have permission to create a token for this team',
      });
    }
  }

  const storedToken = await prisma.apiToken.create({
    data: {
      name: tokenName,
      token: hashedToken,
      expires: expiresIn ? DateTime.now().plus(timeConstantsRecords[expiresIn]).toJSDate() : null,
      userId,
      teamId,
    },
  });

  return {
    id: storedToken.id,
    token: apiToken,
  };
};
feat: migrate nextjs to rr7 2025-01-02 15:33:37 +11:00			`import { TeamMemberRole } from '@prisma/client';`
feat: allow user to choose expiry date 2024-02-09 11:32:54 +02:00			`import type { Duration } from 'luxon';`
			`import { DateTime } from 'luxon';`

feat: api token functions 2023-11-24 16:13:09 +02:00			`import { prisma } from '@documenso/prisma';`

			`// temporary choice for testing only`
feat: allow user to choose expiry date 2024-02-09 11:32:54 +02:00			`import * as timeConstants from '../../constants/time';`
fix: bump trpc and openapi packages (#1591) 2025-01-19 22:07:02 +11:00			`import { AppError, AppErrorCode } from '../../errors/app-error';`
chore: implemented feedback 2023-12-21 16:02:02 +02:00			`import { alphaid } from '../../universal/id';`
			`import { hashString } from '../auth/hash';`
feat: api token functions 2023-11-24 16:13:09 +02:00
feat: allow user to choose expiry date 2024-02-09 11:32:54 +02:00			`type TimeConstants = typeof timeConstants & {`
			`[key: string]: number \| Duration;`
			`};`

feat: api token functions 2023-11-24 16:13:09 +02:00			`type CreateApiTokenInput = {`
			`userId: number;`
feat: team api tokens 2024-02-22 13:39:34 +11:00			`teamId?: number;`
feat: api token functions 2023-11-24 16:13:09 +02:00			`tokenName: string;`
feat: team api tokens 2024-02-22 13:39:34 +11:00			`expiresIn: string \| null;`
feat: api token functions 2023-11-24 16:13:09 +02:00			`};`

feat: allow user to choose expiry date 2024-02-09 11:32:54 +02:00			`export const createApiToken = async ({`
			`userId,`
feat: team api tokens 2024-02-22 13:39:34 +11:00			`teamId,`
feat: allow user to choose expiry date 2024-02-09 11:32:54 +02:00			`tokenName,`
feat: team api tokens 2024-02-22 13:39:34 +11:00			`expiresIn,`
feat: allow user to choose expiry date 2024-02-09 11:32:54 +02:00			`}: CreateApiTokenInput) => {`
chore: implemented feedback 2023-12-21 16:02:02 +02:00			const apiToken = `api_${alphaid(16)}`;

			`const hashedToken = hashString(apiToken);`
feat: api token functions 2023-11-24 16:13:09 +02:00
feat: allow user to choose expiry date 2024-02-09 11:32:54 +02:00			`const timeConstantsRecords: TimeConstants = timeConstants;`

feat: team api tokens 2024-02-22 13:39:34 +11:00			`if (teamId) {`
			`const member = await prisma.teamMember.findFirst({`
			`where: {`
			`userId,`
			`teamId,`
			`role: TeamMemberRole.ADMIN,`
			`},`
			`});`

			`if (!member) {`
fix: bump trpc and openapi packages (#1591) 2025-01-19 22:07:02 +11:00			`throw new AppError(AppErrorCode.UNAUTHORIZED, {`
			`message: 'You do not have permission to create a token for this team',`
			`});`
feat: team api tokens 2024-02-22 13:39:34 +11:00			`}`
			`}`

			`const storedToken = await prisma.apiToken.create({`
feat: api token functions 2023-11-24 16:13:09 +02:00			`data: {`
			`name: tokenName,`
feat: team api tokens 2024-02-22 13:39:34 +11:00			`token: hashedToken,`
			`expires: expiresIn ? DateTime.now().plus(timeConstantsRecords[expiresIn]).toJSDate() : null,`
feat: add team user management endpoints to api (#1416) ## Description Adds user management capabilities to our current API. Allows for adding, removing, listing and updating members of a given team using a valid API token. ## Related Issue N/A ## Changes Made - Added an endpoint for inviting a team member - Added an endpoint for removing a team member - Added an endpoint for updating a team member - Added an endpoint for listing team members ## Testing Performed Tests were written for this feature request 2024-10-22 22:53:31 +11:00			`userId,`
feat: team api tokens 2024-02-22 13:39:34 +11:00			`teamId,`
feat: api token functions 2023-11-24 16:13:09 +02:00			`},`
			`});`

chore: implemented feedback 2023-12-21 16:02:02 +02:00			`return {`
feat: team api tokens 2024-02-22 13:39:34 +11:00			`id: storedToken.id,`
chore: implemented feedback 2023-12-21 16:02:02 +02:00			`token: apiToken,`
			`};`
feat: api token functions 2023-11-24 16:13:09 +02:00			`};`