11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
|
# File 'lib/better_auth/api_key/routes/update_api_key.rb', line 11
def endpoint(config)
BetterAuth::Endpoint.new(path: "/api-key/update", method: "POST", metadata: Routes.openapi_for(:update_api_key)) do |ctx|
body = BetterAuth::Plugins.api_key_normalize_body(ctx.body)
resolved_config = BetterAuth::Plugins.api_key_resolve_config(ctx.context, config, body[:config_id])
session = BetterAuth::Routes.current_session(ctx, allow_nil: true)
if !session && BetterAuth::Plugins.api_key_auth_required?(ctx)
raise BetterAuth::APIError.new("UNAUTHORIZED", message: BetterAuth::Plugins::API_KEY_ERROR_CODES["UNAUTHORIZED_SESSION"])
end
user_id = session&.dig(:user, "id") || body[:user_id]
raise BetterAuth::APIError.new("UNAUTHORIZED", message: BetterAuth::Plugins::API_KEY_ERROR_CODES["UNAUTHORIZED_SESSION"]) unless user_id
if session && body[:user_id] && body[:user_id] != session[:user]["id"]
raise BetterAuth::APIError.new("UNAUTHORIZED", message: BetterAuth::Plugins::API_KEY_ERROR_CODES["UNAUTHORIZED_SESSION"])
end
key_id = body[:key_id]
record = BetterAuth::Plugins.api_key_find_by_id(ctx, key_id, resolved_config)
raise BetterAuth::APIError.new("NOT_FOUND", message: BetterAuth::Plugins::API_KEY_ERROR_CODES["KEY_NOT_FOUND"]) unless record
unless BetterAuth::Plugins.api_key_config_id_matches?(BetterAuth::Plugins.api_key_record_config_id(record), resolved_config[:config_id])
raise BetterAuth::APIError.new("NOT_FOUND", message: BetterAuth::Plugins::API_KEY_ERROR_CODES["KEY_NOT_FOUND"])
end
record_config = BetterAuth::Plugins.api_key_resolve_config(ctx.context, config, BetterAuth::Plugins.api_key_record_config_id(record))
BetterAuth::Plugins.api_key_authorize_reference!(ctx, record_config, user_id, BetterAuth::Plugins.api_key_record_reference_id(record), "update")
BetterAuth::Plugins.api_key_validate_create_update!(body, record_config, create: false, client: BetterAuth::Plugins.api_key_auth_required?(ctx))
update = BetterAuth::Plugins.api_key_update_payload(body, record_config)
raise BetterAuth::APIError.new("BAD_REQUEST", message: BetterAuth::Plugins::API_KEY_ERROR_CODES["NO_VALUES_TO_UPDATE"]) if update.empty?
updated = BetterAuth::Plugins.api_key_update_record(ctx, record, update.merge(updatedAt: Time.now), record_config)
unless updated
raise BetterAuth::APIError.new(
"INTERNAL_SERVER_ERROR",
message: BetterAuth::Plugins::API_KEY_ERROR_CODES["FAILED_TO_UPDATE_API_KEY"],
code: "FAILED_TO_UPDATE_API_KEY"
)
end
updated = BetterAuth::Plugins.api_key_migrate_legacy_metadata(ctx, updated, record_config)
BetterAuth::Plugins.api_key_delete_expired(ctx.context, record_config)
ctx.json(BetterAuth::Plugins.api_key_public(updated, include_key_field: false))
end
end
|