mirror/formbricks
1
0
Fork 0
mirror of https://github.com/formbricks/formbricks.git synced 2026-05-12 11:28:58 -05:00
Code Issues Packages Projects Releases 172 Wiki Activity
Files
be80db8418be1b5cfbc628057a8cbc15f03dbc07
formbricks/apps/web/modules/api/lib/api-key-auth.ts
T
Bhagya Amarasinghe be80db8418 fix: address envoy auth review findings
2026-04-27 19:31:43 +05:30

69 lines
2.2 KiB
TypeScript
Raw Blame History

import { TAuthenticationApiKey } from "@formbricks/types/auth";
import { parseApiKeyV2 } from "@/lib/crypto";
import { getApiKeyWithPermissions } from "@/modules/organization/settings/api-keys/lib/api-key";
type THeadersLike = Pick<Headers, "get">;
const BEARER_PREFIX = "bearer ";
export const getBearerTokenFromHeaders = (headers: THeadersLike): string | null => {
const authorizationHeader = headers.get("authorization")?.trim();
if (!authorizationHeader) {
return null;
}
const lowerCasedAuthorizationHeader = authorizationHeader.toLowerCase();
if (!lowerCasedAuthorizationHeader.startsWith(BEARER_PREFIX)) {
return null;
}
const token = authorizationHeader.slice(BEARER_PREFIX.length).trim();
return token.length > 0 ? token : null;
};
export const getApiKeyFromHeaders = (headers: THeadersLike): string | null => {
const apiKeyHeader = headers.get("x-api-key")?.trim();
if (apiKeyHeader) {
return apiKeyHeader;
}
const bearerToken = getBearerTokenFromHeaders(headers);
if (!bearerToken || !parseApiKeyV2(bearerToken)) {
return null;
}
return bearerToken;
};
export const authenticateApiKeyFromHeaders = async (
headers: THeadersLike
): Promise<TAuthenticationApiKey | null> => {
const apiKey = getApiKeyFromHeaders(headers);
if (!apiKey) {
return null;
}
const apiKeyData = await getApiKeyWithPermissions(apiKey);
if (!apiKeyData) {
return null;
}
return {
type: "apiKey",
workspacePermissions: (apiKeyData.apiKeyWorkspaces ?? []).map((workspacePermission) => ({
permission: workspacePermission.permission,
workspaceId: workspacePermission.workspaceId,
workspaceName: workspacePermission.workspace.name,
})),
feedbackRecordDirectoryPermissions: (apiKeyData.apiKeyFeedbackRecordDirectories ?? []).map(
(directoryPermission) => ({
permission: directoryPermission.permission,
feedbackRecordDirectoryId: directoryPermission.feedbackRecordDirectoryId,
feedbackRecordDirectoryName: directoryPermission.feedbackRecordDirectory.name,
})
),
apiKeyId: apiKeyData.id,
organizationId: apiKeyData.organizationId,
organizationAccess: apiKeyData.organizationAccess,
};
};
Reference in New Issue View Git Blame Copy Permalink