Docs: code formatting (#92)

* Adding rate limiting docs * update rate limiting docs * Resolve conflict * Code formatting --------- Co-authored-by: Wayne <5291640+ringoinca@users.noreply.github.com>
2026-04-06 00:31:57 +02:00 · 2025-09-06 18:06:59 +03:00
parent 4b11cd931a
commit 7d178d786b
12 changed files with 2659 additions and 2784 deletions
--- a/packages/backend/src/api/controllers/api-key.controller.ts
+++ b/packages/backend/src/api/controllers/api-key.controller.ts
@@ -4,54 +4,63 @@ import { z } from 'zod';
 import { config } from '../../config';

 const generateApiKeySchema = z.object({
-    name: z.string().min(1, 'API kay name must be more than 1 characters').max(255, 'API kay name must not be more than 255 characters'),
-    expiresInDays: z.number().int().positive('Only positive number is allowed').max(730, "The API key must expire within 2 years / 730 days."),
+	name: z
+		.string()
+		.min(1, 'API kay name must be more than 1 characters')
+		.max(255, 'API kay name must not be more than 255 characters'),
+	expiresInDays: z
+		.number()
+		.int()
+		.positive('Only positive number is allowed')
+		.max(730, 'The API key must expire within 2 years / 730 days.'),
 });

 export class ApiKeyController {
-    public async generateApiKey(req: Request, res: Response) {
-        if (config.app.isDemo) {
-            return res.status(403).json({ message: req.t('errors.demoMode') });
-        }
-        try {
-            const { name, expiresInDays } = generateApiKeySchema.parse(req.body);
-            if (!req.user || !req.user.sub) {
-                return res.status(401).json({ message: 'Unauthorized' });
-            }
-            const userId = req.user.sub;
+	public async generateApiKey(req: Request, res: Response) {
+		if (config.app.isDemo) {
+			return res.status(403).json({ message: req.t('errors.demoMode') });
+		}
+		try {
+			const { name, expiresInDays } = generateApiKeySchema.parse(req.body);
+			if (!req.user || !req.user.sub) {
+				return res.status(401).json({ message: 'Unauthorized' });
+			}
+			const userId = req.user.sub;

-            const key = await ApiKeyService.generate(userId, name, expiresInDays);
+			const key = await ApiKeyService.generate(userId, name, expiresInDays);

-            res.status(201).json({ key });
-        } catch (error) {
-            if (error instanceof z.ZodError) {
-                return res.status(400).json({ message: req.t('api.requestBodyInvalid'), errors: error.message });
-            }
-            res.status(500).json({ message: req.t('errors.internalServerError') });
-        }
-    }
+			res.status(201).json({ key });
+		} catch (error) {
+			if (error instanceof z.ZodError) {
+				return res
+					.status(400)
+					.json({ message: req.t('api.requestBodyInvalid'), errors: error.message });
+			}
+			res.status(500).json({ message: req.t('errors.internalServerError') });
+		}
+	}

-    public async getApiKeys(req: Request, res: Response) {
-        if (!req.user || !req.user.sub) {
-            return res.status(401).json({ message: 'Unauthorized' });
-        }
-        const userId = req.user.sub;
-        const keys = await ApiKeyService.getKeys(userId);
+	public async getApiKeys(req: Request, res: Response) {
+		if (!req.user || !req.user.sub) {
+			return res.status(401).json({ message: 'Unauthorized' });
+		}
+		const userId = req.user.sub;
+		const keys = await ApiKeyService.getKeys(userId);

-        res.status(200).json(keys);
-    }
+		res.status(200).json(keys);
+	}

-    public async deleteApiKey(req: Request, res: Response) {
-        if (config.app.isDemo) {
-            return res.status(403).json({ message: req.t('errors.demoMode') });
-        }
-        const { id } = req.params;
-        if (!req.user || !req.user.sub) {
-            return res.status(401).json({ message: 'Unauthorized' });
-        }
-        const userId = req.user.sub;
-        await ApiKeyService.deleteKey(id, userId);
+	public async deleteApiKey(req: Request, res: Response) {
+		if (config.app.isDemo) {
+			return res.status(403).json({ message: req.t('errors.demoMode') });
+		}
+		const { id } = req.params;
+		if (!req.user || !req.user.sub) {
+			return res.status(401).json({ message: 'Unauthorized' });
+		}
+		const userId = req.user.sub;
+		await ApiKeyService.deleteKey(id, userId);

-        res.status(204).send({ message: req.t('apiKeys.deleteSuccess') });
-    }
+		res.status(204).send({ message: req.t('apiKeys.deleteSuccess') });
+	}
 }
--- a/packages/backend/src/api/middleware/rateLimiter.ts
+++ b/packages/backend/src/api/middleware/rateLimiter.ts
@@ -8,9 +8,9 @@ export const rateLimiter = rateLimit({
 	max: config.api.rateLimit.max,
 	message: {
 		status: 429,
-		message: `Too many requests from this IP, please try again after ${windowInMinutes} minutes`
+		message: `Too many requests from this IP, please try again after ${windowInMinutes} minutes`,
 	},
 	statusCode: 429,
 	standardHeaders: true,
-	legacyHeaders: false
+	legacyHeaders: false,
 });
--- a/packages/backend/src/api/middleware/requireAuth.ts
+++ b/packages/backend/src/api/middleware/requireAuth.ts
@@ -32,7 +32,7 @@ export const requireAuth = (authService: AuthService) => {
 			req.user = {
 				sub: user.id,
 				email: user.email,
-				roles: user.role ? [user.role.name] : []
+				roles: user.role ? [user.role.name] : [],
 			};
 			return next();
 		}
--- a/packages/backend/src/api/routes/api-key.routes.ts
+++ b/packages/backend/src/api/routes/api-key.routes.ts
@@ -4,12 +4,12 @@ import { requireAuth } from '../middleware/requireAuth';
 import { AuthService } from '../../services/AuthService';

 export const apiKeyRoutes = (authService: AuthService) => {
-    const router = Router();
-    const controller = new ApiKeyController();
+	const router = Router();
+	const controller = new ApiKeyController();

-    router.post('/', requireAuth(authService), controller.generateApiKey);
-    router.get('/', requireAuth(authService), controller.getApiKeys);
-    router.delete('/:id', requireAuth(authService), controller.deleteApiKey);
+	router.post('/', requireAuth(authService), controller.generateApiKey);
+	router.get('/', requireAuth(authService), controller.getApiKeys);
+	router.delete('/:id', requireAuth(authService), controller.deleteApiKey);

-    return router;
+	return router;
 };
--- a/packages/backend/src/config/api.ts
+++ b/packages/backend/src/config/api.ts
@@ -1,8 +1,12 @@
 import 'dotenv/config';

 export const apiConfig = {
-    rateLimit: {
-        windowMs: process.env.RATE_LIMIT_WINDOW_MS ? parseInt(process.env.RATE_LIMIT_WINDOW_MS, 10) : 1 * 60 * 1000, // 1 minutes
-        max: process.env.RATE_LIMIT_MAX_REQUESTS ? parseInt(process.env.RATE_LIMIT_MAX_REQUESTS, 10) : 100, // limit each IP to 100 requests per windowMs
-    }
+	rateLimit: {
+		windowMs: process.env.RATE_LIMIT_WINDOW_MS
+			? parseInt(process.env.RATE_LIMIT_WINDOW_MS, 10)
+			: 1 * 60 * 1000, // 1 minutes
+		max: process.env.RATE_LIMIT_MAX_REQUESTS
+			? parseInt(process.env.RATE_LIMIT_MAX_REQUESTS, 10)
+			: 100, // limit each IP to 100 requests per windowMs
+	},
 };
--- a/packages/backend/src/database/migrations/meta/0018_snapshot.json
+++ b/packages/backend/src/database/migrations/meta/0018_snapshot.json
--- a/packages/backend/src/database/migrations/meta/0019_snapshot.json
+++ b/packages/backend/src/database/migrations/meta/0019_snapshot.json
--- a/packages/backend/src/database/migrations/meta/_journal.json
+++ b/packages/backend/src/database/migrations/meta/_journal.json
@@ -1,146 +1,146 @@
 {
-  "version": "7",
-  "dialect": "postgresql",
-  "entries": [
-    {
-      "idx": 0,
-      "version": "7",
-      "when": 1752225352591,
-      "tag": "0000_amusing_namora",
-      "breakpoints": true
-    },
-    {
-      "idx": 1,
-      "version": "7",
-      "when": 1752326803882,
-      "tag": "0001_odd_night_thrasher",
-      "breakpoints": true
-    },
-    {
-      "idx": 2,
-      "version": "7",
-      "when": 1752332648392,
-      "tag": "0002_lethal_quentin_quire",
-      "breakpoints": true
-    },
-    {
-      "idx": 3,
-      "version": "7",
-      "when": 1752332967084,
-      "tag": "0003_petite_wrecker",
-      "breakpoints": true
-    },
-    {
-      "idx": 4,
-      "version": "7",
-      "when": 1752606108876,
-      "tag": "0004_sleepy_paper_doll",
-      "breakpoints": true
-    },
-    {
-      "idx": 5,
-      "version": "7",
-      "when": 1752606327253,
-      "tag": "0005_chunky_sue_storm",
-      "breakpoints": true
-    },
-    {
-      "idx": 6,
-      "version": "7",
-      "when": 1753112018514,
-      "tag": "0006_majestic_caretaker",
-      "breakpoints": true
-    },
-    {
-      "idx": 7,
-      "version": "7",
-      "when": 1753190159356,
-      "tag": "0007_handy_archangel",
-      "breakpoints": true
-    },
-    {
-      "idx": 8,
-      "version": "7",
-      "when": 1753370737317,
-      "tag": "0008_eminent_the_spike",
-      "breakpoints": true
-    },
-    {
-      "idx": 9,
-      "version": "7",
-      "when": 1754337938241,
-      "tag": "0009_late_lenny_balinger",
-      "breakpoints": true
-    },
-    {
-      "idx": 10,
-      "version": "7",
-      "when": 1754420780849,
-      "tag": "0010_perpetual_lightspeed",
-      "breakpoints": true
-    },
-    {
-      "idx": 11,
-      "version": "7",
-      "when": 1754422064158,
-      "tag": "0011_tan_blackheart",
-      "breakpoints": true
-    },
-    {
-      "idx": 12,
-      "version": "7",
-      "when": 1754476962901,
-      "tag": "0012_warm_the_stranger",
-      "breakpoints": true
-    },
-    {
-      "idx": 13,
-      "version": "7",
-      "when": 1754659373517,
-      "tag": "0013_classy_talkback",
-      "breakpoints": true
-    },
-    {
-      "idx": 14,
-      "version": "7",
-      "when": 1754831765718,
-      "tag": "0014_foamy_vapor",
-      "breakpoints": true
-    },
-    {
-      "idx": 15,
-      "version": "7",
-      "when": 1755443936046,
-      "tag": "0015_wakeful_norman_osborn",
-      "breakpoints": true
-    },
-    {
-      "idx": 16,
-      "version": "7",
-      "when": 1755780572342,
-      "tag": "0016_lonely_mariko_yashida",
-      "breakpoints": true
-    },
-    {
-      "idx": 17,
-      "version": "7",
-      "when": 1755961566627,
-      "tag": "0017_tranquil_shooting_star",
-      "breakpoints": true
-    },
-    {
-      "idx": 18,
-      "version": "7",
-      "when": 1756911118035,
-      "tag": "0018_flawless_owl",
-      "breakpoints": true
-    },
-    {
-      "idx": 19,
-      "version": "7",
-      "when": 1756937533843,
-      "tag": "0019_confused_scream",
-      "breakpoints": true
-    }
-  ]
-}
+	"version": "7",
+	"dialect": "postgresql",
+	"entries": [
+		{
+			"idx": 0,
+			"version": "7",
+			"when": 1752225352591,
+			"tag": "0000_amusing_namora",
+			"breakpoints": true
+		},
+		{
+			"idx": 1,
+			"version": "7",
+			"when": 1752326803882,
+			"tag": "0001_odd_night_thrasher",
+			"breakpoints": true
+		},
+		{
+			"idx": 2,
+			"version": "7",
+			"when": 1752332648392,
+			"tag": "0002_lethal_quentin_quire",
+			"breakpoints": true
+		},
+		{
+			"idx": 3,
+			"version": "7",
+			"when": 1752332967084,
+			"tag": "0003_petite_wrecker",
+			"breakpoints": true
+		},
+		{
+			"idx": 4,
+			"version": "7",
+			"when": 1752606108876,
+			"tag": "0004_sleepy_paper_doll",
+			"breakpoints": true
+		},
+		{
+			"idx": 5,
+			"version": "7",
+			"when": 1752606327253,
+			"tag": "0005_chunky_sue_storm",
+			"breakpoints": true
+		},
+		{
+			"idx": 6,
+			"version": "7",
+			"when": 1753112018514,
+			"tag": "0006_majestic_caretaker",
+			"breakpoints": true
+		},
+		{
+			"idx": 7,
+			"version": "7",
+			"when": 1753190159356,
+			"tag": "0007_handy_archangel",
+			"breakpoints": true
+		},
+		{
+			"idx": 8,
+			"version": "7",
+			"when": 1753370737317,
+			"tag": "0008_eminent_the_spike",
+			"breakpoints": true
+		},
+		{
+			"idx": 9,
+			"version": "7",
+			"when": 1754337938241,
+			"tag": "0009_late_lenny_balinger",
+			"breakpoints": true
+		},
+		{
+			"idx": 10,
+			"version": "7",
+			"when": 1754420780849,
+			"tag": "0010_perpetual_lightspeed",
+			"breakpoints": true
+		},
+		{
+			"idx": 11,
+			"version": "7",
+			"when": 1754422064158,
+			"tag": "0011_tan_blackheart",
+			"breakpoints": true
+		},
+		{
+			"idx": 12,
+			"version": "7",
+			"when": 1754476962901,
+			"tag": "0012_warm_the_stranger",
+			"breakpoints": true
+		},
+		{
+			"idx": 13,
+			"version": "7",
+			"when": 1754659373517,
+			"tag": "0013_classy_talkback",
+			"breakpoints": true
+		},
+		{
+			"idx": 14,
+			"version": "7",
+			"when": 1754831765718,
+			"tag": "0014_foamy_vapor",
+			"breakpoints": true
+		},
+		{
+			"idx": 15,
+			"version": "7",
+			"when": 1755443936046,
+			"tag": "0015_wakeful_norman_osborn",
+			"breakpoints": true
+		},
+		{
+			"idx": 16,
+			"version": "7",
+			"when": 1755780572342,
+			"tag": "0016_lonely_mariko_yashida",
+			"breakpoints": true
+		},
+		{
+			"idx": 17,
+			"version": "7",
+			"when": 1755961566627,
+			"tag": "0017_tranquil_shooting_star",
+			"breakpoints": true
+		},
+		{
+			"idx": 18,
+			"version": "7",
+			"when": 1756911118035,
+			"tag": "0018_flawless_owl",
+			"breakpoints": true
+		},
+		{
+			"idx": 19,
+			"version": "7",
+			"when": 1756937533843,
+			"tag": "0019_confused_scream",
+			"breakpoints": true
+		}
+	]
+}
--- a/packages/backend/src/database/schema/api-keys.ts
+++ b/packages/backend/src/database/schema/api-keys.ts
@@ -2,14 +2,14 @@ import { pgTable, text, timestamp, uuid } from 'drizzle-orm/pg-core';
 import { users } from './users';

 export const apiKeys = pgTable('api_keys', {
-    id: uuid('id').primaryKey().defaultRandom(),
-    name: text('name').notNull(),
-    userId: uuid('user_id')
-        .notNull()
-        .references(() => users.id, { onDelete: 'cascade' }),
-    key: text('key').notNull(), // Encrypted API key
-    keyHash: text('key_hash').notNull(),
-    expiresAt: timestamp('expires_at', { withTimezone: true, mode: 'date' }).notNull(),
-    createdAt: timestamp('created_at').defaultNow().notNull(),
-    updatedAt: timestamp('updated_at').defaultNow().notNull(),
+	id: uuid('id').primaryKey().defaultRandom(),
+	name: text('name').notNull(),
+	userId: uuid('user_id')
+		.notNull()
+		.references(() => users.id, { onDelete: 'cascade' }),
+	key: text('key').notNull(), // Encrypted API key
+	keyHash: text('key_hash').notNull(),
+	expiresAt: timestamp('expires_at', { withTimezone: true, mode: 'date' }).notNull(),
+	createdAt: timestamp('created_at').defaultNow().notNull(),
+	updatedAt: timestamp('updated_at').defaultNow().notNull(),
 });
--- a/packages/backend/src/index.ts
+++ b/packages/backend/src/index.ts
@@ -95,10 +95,7 @@ app.use('/v1/upload', uploadRouter);
 // Middleware for all other routes
 app.use((req, res, next) => {
 	// exclude certain API endpoints from the rate limiter, for example status, system settings
-	const excludedPatterns = [
-		/^\/v\d+\/auth\/status$/,
-		/^\/v\d+\/settings\/system$/
-	];
+	const excludedPatterns = [/^\/v\d+\/auth\/status$/, /^\/v\d+\/settings\/system$/];
 	for (const pattern of excludedPatterns) {
 		if (pattern.test(req.path)) {
 			return next();
--- a/packages/backend/src/services/ApiKeyService.ts
+++ b/packages/backend/src/services/ApiKeyService.ts
@@ -6,67 +6,67 @@ import { and, eq } from 'drizzle-orm';
 import { ApiKey } from '@open-archiver/types';

 export class ApiKeyService {
-    public static async generate(
-        userId: string,
-        name: string,
-        expiresInDays: number
-    ): Promise<string> {
-        const key = randomBytes(32).toString('hex');
-        const expiresAt = new Date();
-        expiresAt.setDate(expiresAt.getDate() + expiresInDays);
-        const keyHash = createHash('sha256').update(key).digest('hex');
+	public static async generate(
+		userId: string,
+		name: string,
+		expiresInDays: number
+	): Promise<string> {
+		const key = randomBytes(32).toString('hex');
+		const expiresAt = new Date();
+		expiresAt.setDate(expiresAt.getDate() + expiresInDays);
+		const keyHash = createHash('sha256').update(key).digest('hex');

-        await db.insert(apiKeys).values({
-            userId,
-            name,
-            key: CryptoService.encrypt(key),
-            keyHash,
-            expiresAt
-        });
+		await db.insert(apiKeys).values({
+			userId,
+			name,
+			key: CryptoService.encrypt(key),
+			keyHash,
+			expiresAt,
+		});

-        return key;
-    }
+		return key;
+	}

-    public static async getKeys(userId: string): Promise<ApiKey[]> {
-        const keys = await db.select().from(apiKeys).where(eq(apiKeys.userId, userId));
+	public static async getKeys(userId: string): Promise<ApiKey[]> {
+		const keys = await db.select().from(apiKeys).where(eq(apiKeys.userId, userId));

-        return keys
-            .map((apiKey) => {
-                const decryptedKey = CryptoService.decrypt(apiKey.key);
-                if (!decryptedKey) {
-                    return null;
-                }
-                return {
-                    ...apiKey,
-                    key: decryptedKey.slice(0, 5) + "*****",
-                    expiresAt: apiKey.expiresAt.toISOString(),
-                    createdAt: apiKey.createdAt.toISOString()
-                };
-            })
-            .filter((k): k is NonNullable<typeof k> => k !== null);
-    }
+		return keys
+			.map((apiKey) => {
+				const decryptedKey = CryptoService.decrypt(apiKey.key);
+				if (!decryptedKey) {
+					return null;
+				}
+				return {
+					...apiKey,
+					key: decryptedKey.slice(0, 5) + '*****',
+					expiresAt: apiKey.expiresAt.toISOString(),
+					createdAt: apiKey.createdAt.toISOString(),
+				};
+			})
+			.filter((k): k is NonNullable<typeof k> => k !== null);
+	}

-    public static async deleteKey(id: string, userId: string) {
-        await db.delete(apiKeys).where(and(eq(apiKeys.id, id), eq(apiKeys.userId, userId)));
-    }
-    /**
-     * 
-     * @param key API key
-     * @returns The owner user ID or null. null means the API key is not found.
-     */
-    public static async validateKey(key: string): Promise<string | null> {
-        const keyHash = createHash('sha256').update(key).digest('hex');
-        const [apiKey] = await db.select().from(apiKeys).where(eq(apiKeys.keyHash, keyHash));
-        if (!apiKey || apiKey.expiresAt < new Date()) {
-            return null;
-        }
+	public static async deleteKey(id: string, userId: string) {
+		await db.delete(apiKeys).where(and(eq(apiKeys.id, id), eq(apiKeys.userId, userId)));
+	}
+	/**
+	 *
+	 * @param key API key
+	 * @returns The owner user ID or null. null means the API key is not found.
+	 */
+	public static async validateKey(key: string): Promise<string | null> {
+		const keyHash = createHash('sha256').update(key).digest('hex');
+		const [apiKey] = await db.select().from(apiKeys).where(eq(apiKeys.keyHash, keyHash));
+		if (!apiKey || apiKey.expiresAt < new Date()) {
+			return null;
+		}

-        const decryptedKey = CryptoService.decrypt(apiKey.key);
-        if (decryptedKey !== key) {
-            // This should not happen if the hash matches, but as a security measure, we double-check.
-            return null;
-        }
+		const decryptedKey = CryptoService.decrypt(apiKey.key);
+		if (decryptedKey !== key) {
+			// This should not happen if the hash matches, but as a security measure, we double-check.
+			return null;
+		}

-        return apiKey.userId;
-    }
+		return apiKey.userId;
+	}
 }
--- a/packages/frontend/src/routes/dashboard/settings/api-keys/+page.server.ts
+++ b/packages/frontend/src/routes/dashboard/settings/api-keys/+page.server.ts
@@ -2,49 +2,48 @@ import { api } from '$lib/server/api';
 import type { Actions, PageServerLoad } from './$types';

 export const load: PageServerLoad = async (event) => {
-    const response = await api('/api-keys', event);
-    const apiKeys = await response.json();
+	const response = await api('/api-keys', event);
+	const apiKeys = await response.json();

-    return {
-        apiKeys,
-    };
+	return {
+		apiKeys,
+	};
 };

 export const actions: Actions = {
-    generate: async (event) => {
-        const data = await event.request.formData();
-        const name = data.get('name') as string;
-        const expiresInDays = Number(data.get('expiresInDays'));
+	generate: async (event) => {
+		const data = await event.request.formData();
+		const name = data.get('name') as string;
+		const expiresInDays = Number(data.get('expiresInDays'));

-        const response = await api('/api-keys', event, {
-            method: 'POST',
-            body: JSON.stringify({ name, expiresInDays }),
-        });
+		const response = await api('/api-keys', event, {
+			method: 'POST',
+			body: JSON.stringify({ name, expiresInDays }),
+		});

-        const responseBody = await response.json();
+		const responseBody = await response.json();

-        if (!response.ok) {
-            return {
-                message: responseBody.message || '',
-                errors: responseBody.errors
-            }
-        }
+		if (!response.ok) {
+			return {
+				message: responseBody.message || '',
+				errors: responseBody.errors,
+			};
+		}

+		return {
+			newApiKey: responseBody.key,
+		};
+	},
+	delete: async (event) => {
+		const data = await event.request.formData();
+		const id = data.get('id') as string;

-        return {
-            newApiKey: responseBody.key,
-        };
-    },
-    delete: async (event) => {
-        const data = await event.request.formData();
-        const id = data.get('id') as string;
+		await api(`/api-keys/${id}`, event, {
+			method: 'DELETE',
+		});

-        await api(`/api-keys/${id}`, event, {
-            method: 'DELETE',
-        });
-
-        return {
-            success: true,
-        };
-    },
+		return {
+			success: true,
+		};
+	},
 };