Class: Spree::Api::V3::Admin::ApiKeySerializer

Inherits:

BaseSerializer

Object
BaseSerializer
Spree::Api::V3::Admin::ApiKeySerializer

show all

Defined in:: app/serializers/spree/api/v3/admin/api_key_serializer.rb

Overview

Admin API serializer for Spree::ApiKey.

Never exposes token or token_digest — only the 12-char token_prefix (e.g. sk_abc123def) so existing keys can be identified in the UI without leaking material that would let an attacker make requests. The full plaintext token is delivered exactly once, as the response body of POST /api/v3/admin/api_keys, via #plaintext_token below — it is nil everywhere else.

Method Summary

Methods inherited from BaseSerializer

#current_currency, #current_locale, #current_store, #current_user, #expand?, #expands, #nested_expands_for, #nested_params