unleash-server
Version:
Unleash is an enterprise ready feature flag service. It provides different strategies for handling feature flags.
115 lines • 5.35 kB
JavaScript
import Controller from '../../controller.js';
import { createRequestSchema } from '../../../openapi/util/create-request-schema.js';
import { createResponseSchema, resourceCreatedResponseSchema, } from '../../../openapi/util/create-response-schema.js';
import { emptyResponse, getStandardResponses, } from '../../../openapi/util/standard-responses.js';
import { NONE } from '../../../types/permissions.js';
import { serializeDates } from '../../../types/serialize-dates.js';
import { patSchema } from '../../../openapi/spec/pat-schema.js';
import { patsSchema, } from '../../../openapi/spec/pats-schema.js';
import { createPatSchema, } from '../../../openapi/spec/create-pat-schema.js';
import { ForbiddenError, NotFoundError } from '../../../error/index.js';
export default class PatController extends Controller {
constructor(config, { openApiService, patService, }) {
super(config);
this.logger = config.getLogger('lib/routes/auth/pat-controller.ts');
this.flagResolver = config.flagResolver;
this.openApiService = openApiService;
this.patService = patService;
this.route({
method: 'get',
path: '',
handler: this.getPats,
permission: NONE,
middleware: [
openApiService.validPath({
tags: ['Personal access tokens'],
operationId: 'getPats',
summary: 'Get all personal access tokens (PATs) for the current user.',
description: 'Returns all of the [personal access tokens](https://docs.getunleash.io/concepts/api-tokens-and-client-keys#personal-access-tokens) (PATs) belonging to the current user.',
responses: {
200: createResponseSchema(patsSchema.$id),
...getStandardResponses(401, 403, 404),
},
}),
],
});
this.route({
method: 'post',
path: '',
handler: this.createPat,
permission: NONE,
middleware: [
openApiService.validPath({
tags: ['Personal access tokens'],
operationId: 'createPat',
summary: 'Create a new personal access token (PAT) for the current user.',
description: 'Creates a new [personal access token](https://docs.getunleash.io/concepts/api-tokens-and-client-keys#personal-access-tokens (PAT) belonging to the current user.',
requestBody: createRequestSchema(createPatSchema.$id),
responses: {
201: resourceCreatedResponseSchema(patSchema.$id),
...getStandardResponses(401, 403, 404),
},
}),
],
});
this.route({
method: 'delete',
path: '/:id',
acceptAnyContentType: true,
handler: this.deletePat,
permission: NONE,
middleware: [
openApiService.validPath({
tags: ['Personal access tokens'],
operationId: 'deletePat',
summary: 'Delete a personal access token (PAT) for the current user.',
description: 'Deletes a [personal access token](https://docs.getunleash.io/concepts/api-tokens-and-client-keys#personal-access-tokens) (PAT) belonging to the current user.',
parameters: [
{
name: 'id',
in: 'path',
required: true,
schema: {
type: 'integer',
},
description: 'a personal access token id',
},
],
responses: {
200: emptyResponse,
...getStandardResponses(401, 403, 404),
},
}),
],
});
}
async createPat(req, res) {
if (this.flagResolver.isEnabled('personalAccessTokensKillSwitch')) {
throw new NotFoundError('PATs are disabled.');
}
if (!req.user.id) {
throw new ForbiddenError('PATs require an authenticated user.');
}
const pat = req.body;
const createdPat = await this.patService.createPat(pat, req.user.id, req.audit);
this.openApiService.respondWithValidation(201, res, patSchema.$id, serializeDates(createdPat));
}
async getPats(req, res) {
if (this.flagResolver.isEnabled('personalAccessTokensKillSwitch')) {
throw new NotFoundError('PATs are disabled.');
}
if (!req.user.id) {
throw new ForbiddenError('PATs require an authenticated user.');
}
const pats = await this.patService.getAll(req.user.id);
this.openApiService.respondWithValidation(200, res, patsSchema.$id, {
pats: serializeDates(pats),
});
}
async deletePat(req, res) {
const { id } = req.params;
await this.patService.deletePat(id, req.user.id, req.audit);
res.status(200).end();
}
}
//# sourceMappingURL=pat.js.map