1043 timebox prepare zapier integration (#1967)

* Add create api-key route * Import module * Remove required mutation parameter * Fix Authentication * Generate random key * Update Read ApiKeyAbility handler * Add findMany apiKey route * Remove useless attribute * Use signed token for apiKeys * Authenticate with api keys * Fix typo * Add a test for apiKey module * Revoke token when api key does not exist * Handler expiresAt parameter * Fix user passport * Code review returns: Add API_TOKEN_SECRET * Code review returns: Rename variable * Code review returns: Update code style * Update apiKey schema * Update create token route * Update delete token route * Filter revoked api keys from listApiKeys * Rename endpoint * Set default expiry to 2 years * Code review returns: Update comment * Generate token after create apiKey * Code review returns: Update env variable * Code review returns: Move method to proper service --------- Co-authored-by: martmull <martmull@hotmail.com>
2023-10-12 18:07:44 +02:00
parent 6b990c8501
commit 8fbad7d3ba
20 changed files with 430 additions and 42 deletions
--- a/server/src/guards/ability.guard.ts
+++ b/server/src/guards/ability.guard.ts
@ -35,8 +35,8 @@ export class AbilityGuard implements CanActivate {
    assert(passportUser, '', UnauthorizedException);

    const ability = this.abilityFactory.defineAbility(
-      passportUser.user,
      passportUser.workspace,
+      passportUser.user,
    );

    request.ability = ability;