Module: BetterAuth::Passkey::Routes::Management

Defined in:
lib/better_auth/passkey/routes/management.rb

Class Method Summary collapse

Class Method Details

.delete_passkey_endpointObject 



17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
 
# File 'lib/better_auth/passkey/routes/management.rb', line 17

def delete_passkey_endpoint
  Endpoint.new(path: "/passkey/delete-passkey", method: "POST") do |ctx|
    session = BetterAuth::Routes.current_session(ctx)
    body = Utils.normalize_hash(ctx.body)
    Utils.require_string!(body, :id)
    passkey = ctx.context.adapter.find_one(model: "passkey", where: [{field: "id", value: body[:id]}])
    raise APIError.new("NOT_FOUND", message: ErrorCodes::PASSKEY_ERROR_CODES.fetch("PASSKEY_NOT_FOUND")) unless passkey
    unless passkey.fetch("userId") == session.fetch(:user).fetch("id")
      raise APIError.new("UNAUTHORIZED", message: ErrorCodes::PASSKEY_ERROR_CODES.fetch("PASSKEY_NOT_FOUND"))
    end

    ctx.context.adapter.delete(model: "passkey", where: [{field: "id", value: passkey.fetch("id")}])
    ctx.json({status: true})
  end
end

.list_passkeys_endpointObject 



9
10
11
12
13
14
15
 
# File 'lib/better_auth/passkey/routes/management.rb', line 9

def list_passkeys_endpoint
  Endpoint.new(path: "/passkey/list-user-passkeys", method: "GET") do |ctx|
    session = BetterAuth::Routes.current_session(ctx)
    passkeys = ctx.context.adapter.find_many(model: "passkey", where: [{field: "userId", value: session.fetch(:user).fetch("id")}])
    ctx.json(passkeys.map { |passkey| Credentials.wire(passkey) })
  end
end

.update_passkey_endpointObject 



33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
 
# File 'lib/better_auth/passkey/routes/management.rb', line 33

def update_passkey_endpoint
  Endpoint.new(path: "/passkey/update-passkey", method: "POST") do |ctx|
    session = BetterAuth::Routes.current_session(ctx)
    body = Utils.normalize_hash(ctx.body)
    Utils.require_string!(body, :id)
    unless body.key?(:name) && body[:name].is_a?(String)
      raise APIError.new("BAD_REQUEST", message: BASE_ERROR_CODES.fetch("VALIDATION_ERROR"))
    end

    passkey = ctx.context.adapter.find_one(model: "passkey", where: [{field: "id", value: body[:id]}])
    raise APIError.new("NOT_FOUND", message: ErrorCodes::PASSKEY_ERROR_CODES.fetch("PASSKEY_NOT_FOUND")) unless passkey
    if passkey.fetch("userId") != session.fetch(:user).fetch("id")
      raise APIError.new("UNAUTHORIZED", message: ErrorCodes::PASSKEY_ERROR_CODES.fetch("YOU_ARE_NOT_ALLOWED_TO_REGISTER_THIS_PASSKEY"))
    end

    updated = ctx.context.adapter.update(
      model: "passkey",
      where: [{field: "id", value: body[:id]}],
      update: {name: body[:name].to_s}
    )
    raise APIError.new("INTERNAL_SERVER_ERROR", message: ErrorCodes::PASSKEY_ERROR_CODES.fetch("FAILED_TO_UPDATE_PASSKEY")) unless updated

    ctx.json({passkey: Credentials.wire(updated)})
  end
end