summaryrefslogtreecommitdiffhomepage
path: root/packages/console/core/src/key.ts
blob: 28643a5216ab3f6c546a3c2c8f1972af5b2911dc (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75

import { z } from "zod"
import { fn } from "./util/fn"
import { Actor } from "./actor"
import { and, Database, eq, isNull, sql } from "./drizzle"
import { Identifier } from "./identifier"
import { KeyTable } from "./schema/key.sql"

export namespace Key {
  export const list = async () => {
    const workspace = Actor.workspace()
    const keys = await Database.use((tx) =>
      tx
        .select()
        .from(KeyTable)
        .where(and(eq(KeyTable.workspaceID, workspace), isNull(KeyTable.timeDeleted)))
        .orderBy(sql`${KeyTable.timeCreated} DESC`),
    )
    return keys
  }

  export const create = fn(z.object({ name: z.string().min(1).max(255) }), async (input) => {
    const workspaceID = Actor.workspace()
    const { name } = input

    // Generate secret key: sk- + 64 random characters (upper, lower, numbers)
    const chars = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789"
    let secretKey = "sk-"
    const array = new Uint32Array(64)
    crypto.getRandomValues(array)
    for (let i = 0, l = array.length; i < l; i++) {
      secretKey += chars[array[i] % chars.length]
    }
    const keyID = Identifier.create("key")

    await Database.use((tx) =>
      tx.insert(KeyTable).values({
        id: keyID,
        workspaceID,
        actor: Actor.use(),
        name,
        key: secretKey,
        timeUsed: null,
      }),
    ).catch((e: any) => {
      if (e.message.match(/Duplicate entry '.*' for key 'key.name'/))
        throw new Error("A key with this name already exists. Please choose a different name.")
      throw e
    })

    return keyID
  })

  export const remove = fn(z.object({ id: z.string() }), async (input) => {
    const workspace = Actor.workspace()
    await Database.transaction(async (tx) => {
      const row = await tx
        .select({
          name: KeyTable.name,
        })
        .from(KeyTable)
        .where(and(eq(KeyTable.id, input.id), eq(KeyTable.workspaceID, workspace)))
        .then((rows) => rows[0])
      if (!row) return

      await tx
        .update(KeyTable)
        .set({
          timeDeleted: sql`now()`,
          oldName: row.name,
          name: input.id, // Use the key ID as the name
        })
        .where(and(eq(KeyTable.id, input.id), eq(KeyTable.workspaceID, workspace)))
    })
  })
}
generated by cgit v1.2.3 (git 2.39.1) at 2026-06-30 22:28:59 +0000