feat(core): introduce JWT API keys for the public API (#11005)

2025-12-17 10:02:05 +00:00 · 2024-10-18 12:06:44 +02:00
parent 6a722c45ea
commit 679fa4a10a
5 changed files with 252 additions and 69 deletions
--- a/packages/cli/test/integration/shared/db/users.ts
+++ b/packages/cli/test/integration/shared/db/users.ts
@@ -1,17 +1,16 @@
 import { hash } from 'bcryptjs';
-import { randomString } from 'n8n-workflow';
 import Container from 'typedi';

 import { AuthIdentity } from '@/databases/entities/auth-identity';
 import { type GlobalRole, type User } from '@/databases/entities/user';
-import { ApiKeyRepository } from '@/databases/repositories/api-key.repository';
 import { AuthIdentityRepository } from '@/databases/repositories/auth-identity.repository';
 import { AuthUserRepository } from '@/databases/repositories/auth-user.repository';
 import { UserRepository } from '@/databases/repositories/user.repository';
 import { MfaService } from '@/mfa/mfa.service';
 import { TOTPService } from '@/mfa/totp.service';
+import { PublicApiKeyService } from '@/services/public-api-key.service';

-import { randomApiKey, randomEmail, randomName, randomValidPassword } from '../random';
+import { randomEmail, randomName, randomValidPassword } from '../random';

 // pre-computed bcrypt hash for the string 'password', using `await hash('password', 10)`
 const passwordHash = '$2a$10$njedH7S6V5898mj6p0Jr..IGY9Ms.qNwR7RbSzzX9yubJocKfvGGK';
@@ -81,17 +80,8 @@ export async function createUserWithMfaEnabled(
 	};
 }

-const createApiKeyEntity = (user: User) => {
-	const apiKey = randomApiKey();
-	return Container.get(ApiKeyRepository).create({
-		userId: user.id,
-		label: randomString(10),
-		apiKey,
-	});
-};
-
 export const addApiKey = async (user: User) => {
-	return await Container.get(ApiKeyRepository).save(createApiKeyEntity(user));
+	return await Container.get(PublicApiKeyService).createPublicApiKeyForUser(user);
 };

 export async function createOwnerWithApiKey() {