Implement User-based API Keys (#981)

* added column ApiKey to dbo.User * added dbo.User.ApiKey to User_Update * added dbo.User.ApiKey to User_Create * wrote migration script for implementing dbo.User.ApiKey * Added ApiKey prop to the User table model * Created AccountsController method for getting a user's API Key * Created AccountsController method for rotating a user API key * Added support to ApiClient for passed-through ClientSecrets when the request comes from the cli * Added a new conditional to ClientStore to account for user API keys * Wrote unit tests for new user API Key methods * Added a refresh of dbo.UserView to new migration script for ApiKey * Let client_credentials grants into the custom token logic * Cleanup for ApiKey auth in the CLI feature * Created user API key on registration * Removed uneeded code for user API keys * Changed a .Contains() to a .StartsWith() in ClientStore * Changed index that an array is searched on * Added more claims to the user apikey clients * Moved some claim finding logic to a helper method
2025-07-16 15:17:33 -05:00 · 2020-11-10 15:15:29 -05:00
parent d9cd7551fe
commit 25a9991908
14 changed files with 540 additions and 59 deletions
--- a/Procedures/User_Create.sql
+++ b/Procedures/User_Create.sql
@ -28,7 +28,8 @@
    @Kdf TINYINT,
    @KdfIterations INT,
    @CreationDate DATETIME2(7),
-    @RevisionDate DATETIME2(7)
+    @RevisionDate DATETIME2(7),
+    @ApiKey VARCHAR(30)
 AS
 BEGIN
    SET NOCOUNT ON
@ -64,7 +65,8 @@ BEGIN
        [Kdf],
        [KdfIterations],
        [CreationDate],
-        [RevisionDate]
+        [RevisionDate],
+        [ApiKey]
    )
    VALUES
    (
@ -97,6 +99,7 @@ BEGIN
        @Kdf,
        @KdfIterations,
        @CreationDate,
-        @RevisionDate
+        @RevisionDate,
+        @ApiKey
    )
 END
--- a/Procedures/User_Update.sql
+++ b/Procedures/User_Update.sql
@ -28,7 +28,8 @@
    @Kdf TINYINT,
    @KdfIterations INT,
    @CreationDate DATETIME2(7),
-    @RevisionDate DATETIME2(7)
+    @RevisionDate DATETIME2(7),
+    @ApiKey VARCHAR(30)
 AS
 BEGIN
    SET NOCOUNT ON
@ -64,7 +65,8 @@ BEGIN
        [Kdf] = @Kdf,
        [KdfIterations] = @KdfIterations,
        [CreationDate] = @CreationDate,
-        [RevisionDate] = @RevisionDate
+        [RevisionDate] = @RevisionDate,
+        [ApiKey] = @ApiKey
    WHERE
        [Id] = @Id
 END
--- a/src/Sql/dbo/Tables/User.sql
+++ b/src/Sql/dbo/Tables/User.sql
@ -29,6 +29,7 @@
    [KdfIterations]                   INT              NOT NULL,
    [CreationDate]                    DATETIME2 (7)    NOT NULL,
    [RevisionDate]                    DATETIME2 (7)    NOT NULL,
+    [ApiKey]                          VARCHAR (30)     NOT NULL,
    CONSTRAINT [PK_User] PRIMARY KEY CLUSTERED ([Id] ASC)
 );