Add apiKeys and apiKeys admin page

milesthedisch · Sep 6, 2022 · 90afd9b · 90afd9b · vercel · Sep 6, 2022
1 parent 1ed7361
commit 90afd9b
Show file tree

Hide file tree

Showing 21 changed files with 387 additions and 16 deletions.
diff --git a/db/apiKeys/create.ts b/db/apiKeys/create.ts
@@ -0,0 +1,10 @@
+import { prisma } from "../client";
+import crypto from "crypto";
+
+export default async function create(user: string) {
+  return prisma.apiKey.create({
+    data: {
+      user,
+    },
+  });
+}
diff --git a/db/apiKeys/deleteOne.ts b/db/apiKeys/deleteOne.ts
@@ -0,0 +1,12 @@
+import { prisma } from "../client";
+import crypto from "crypto";
+
+export default async function deleteOne(apiKeyID: string) {
+  const apiKey = crypto.randomUUID();
+
+  return prisma.apiKey.delete({
+    where: {
+      apiKeyID,
+    },
+  });
+}
diff --git a/db/apiKeys/index.ts b/db/apiKeys/index.ts
@@ -0,0 +1,5 @@
+import { prisma } from "../client";
+
+export default async function getAll() {
+  return prisma.apiKey.findMany();
+}
diff --git a/db/strategyBalance/createMany.ts b/db/strategyBalance/createMany.ts
@@ -1,5 +1,5 @@
 import { Prisma } from "@prisma/client";
-import prisma from "../client";
+import { prisma } from "../client";
 
 export default async function createStrategyBalances(newBalances) {
   const strats = await prisma.strategies.findMany();

diff --git a/pages/admin/apiKeys.tsx b/pages/admin/apiKeys.tsx
@@ -0,0 +1,69 @@
+import { Container, Grid } from "@mui/material";
+
+import PageTitle from "../../src/components/PageTitle";
+import PageTitleWrapper from "../../src/components/PageTitleWrapper";
+import SuspenseLoader from "../../src/components/SuspenseLoader";
+import ApiKeyTable from "../../src/components/ApiKeyTable";
+
+import Head from "next/head";
+
+import useSWR, { useSWRConfig } from "swr";
+import { withPageAuthRequired } from "@auth0/nextjs-auth0";
+import { format } from "date-fns";
+import type { ApiKey } from "@prisma/client";
+
+const fetcher = async (uri: string) => {
+  const response = await fetch(uri);
+  return response.json();
+};
+
+export default withPageAuthRequired(function () {
+  const { data, error, isValidating } = useSWR("/api/apiKeys", fetcher);
+
+  if (isValidating) {
+    return (
+      <Container
+        sx={{ height: "80vh", display: "flex", justifyContent: "center" }}
+      >
+        {/* The default value size is 64 */}
+        <SuspenseLoader size={64 * 1.5} />
+      </Container>
+    );
+  }
+
+  return (
+    <>
+      <Head>
+        <title>Api Keys</title>
+      </Head>
+      <PageTitleWrapper>
+        <PageTitle
+          sx={{ width: "auto" }}
+          heading="API Keys"
+          subHeading="List of API Keys"
+          noDoc={true}
+        />
+      </PageTitleWrapper>
+      <Container
+        sx={{
+          display: "flex",
+          flexDirection: "column",
+          justifyContent: "center",
+        }}
+        maxWidth="lg"
+      >
+        <Grid
+          container
+          direction="row"
+          justifyContent="center"
+          alignItems="stretch"
+          spacing={3}
+        >
+          <Grid item xs={12}>
+            <ApiKeyTable apiKeys={data} />
+          </Grid>
+        </Grid>
+      </Container>
+    </>
+  );
+});
diff --git a/pages/admin/audit/[account]/[trades].tsx b/pages/admin/audit/[account]/[trades].tsx
@@ -140,7 +140,7 @@ const Sub = (props) => {
   return (
     <>
       <Head>
-        <title>Sub Account {`${account}`}</title>
+        <title>Sub Account / Trades {`${account}`}</title>
       </Head>
       <PageTitleWrapper>
         <Box sx={{ display: "flex", justifyContent: "space-between" }}>

diff --git a/pages/admin/strategies.tsx b/pages/admin/strategies.tsx
@@ -194,7 +194,7 @@ export default withPageAuthRequired(function (props) {
   return (
     <>
       <Head>
-        <title>Transactions - Applications</title>
+        <title>Strategies</title>
       </Head>
       <PageTitleWrapper>
         <Box sx={{ display: "flex", justifyContent: "space-between" }}>

diff --git a/pages/admin/users.tsx b/pages/admin/users.tsx
@@ -19,7 +19,7 @@ const ApplicationsTransactions = ({
 }) => (
   <>
     <Head>
-      <title>Transactions - Applications</title>
+      <title>Users</title>
     </Head>
     <PageTitleWrapper>
       <PageHeader />

diff --git a/pages/api/apiKeys/create.ts b/pages/api/apiKeys/create.ts
@@ -0,0 +1,24 @@
+import type { NextApiRequest, NextApiResponse } from "next";
+import getAll from "../../../db/apiKeys";
+import { withApiAuthRequired } from "@auth0/nextjs-auth0";
+import type { ApiKey } from "@prisma/client";
+
+export default withApiAuthRequired(async function (
+  req: NextApiRequest,
+  res: NextApiResponse
+) {
+  if (req.method !== "POST") {
+    return res.status(403).send("Incorrect HTTP code");
+  }
+
+  let records: ApiKey[];
+
+  try {
+    records = await getAll();
+  } catch (e) {
+    console.error(e);
+    return res.status(400).send("Unauthorized, Api-Key not found.");
+  }
+
+  return res.status(200).json({ data: records });
+});
diff --git a/pages/api/apiKeys/delete.ts b/pages/api/apiKeys/delete.ts
@@ -0,0 +1,26 @@
+import type { NextApiRequest, NextApiResponse } from "next";
+import deleteOne from "../../../db/apiKeys/deleteOne";
+import { withApiAuthRequired } from "@auth0/nextjs-auth0";
+import type { ApiKey } from "@prisma/client";
+
+export default withApiAuthRequired(async function (
+  req: NextApiRequest,
+  res: NextApiResponse
+) {
+  if (req.method !== "DELETE") {
+    return res.status(403).send("Incorrect HTTP code");
+  }
+
+  const apiKeyID = req.body.apiKeyID;
+
+  let records: ApiKey;
+
+  try {
+    records = await deleteOne(apiKeyID);
+  } catch (e) {
+    console.error(e);
+    return res.status(400).send("Unauthorized, Api-Key not found.");
+  }
+
+  return res.status(200).json({ data: records });
+});
diff --git a/pages/api/apiKeys/index.ts b/pages/api/apiKeys/index.ts
@@ -0,0 +1,24 @@
+import type { NextApiRequest, NextApiResponse } from "next";
+import getAll from "../../../db/apiKeys";
+import { withApiAuthRequired } from "@auth0/nextjs-auth0";
+import type { ApiKey } from "@prisma/client";
+
+export default withApiAuthRequired(async function (
+  req: NextApiRequest,
+  res: NextApiResponse
+) {
+  if (req.method !== "GET") {
+    return res.status(403).send("Incorrect HTTP code");
+  }
+
+  let records: ApiKey[];
+
+  try {
+    records = await getAll();
+  } catch (e) {
+    console.error(e);
+    return res.status(400).send("Unauthorized, Api-Key not found.");
+  }
+
+  return res.status(200).json({ data: records });
+});
diff --git a/pages/api/auth0seedOneTime/index.ts b/pages/api/auth0seedOneTime/index.ts
@@ -2,7 +2,7 @@ import type { NextApiRequest, NextApiResponse } from "next";
 import createUser from "../../../db/user/create";
 import { AuthenticationClient, ManagementClient } from "auth0";
 import { nanoid } from "nanoid/non-secure";
-import prisma from "../../../db/client";
+import { prisma } from "../../../db/client";
 import type { User } from "auth0";
 import sgMail from "@sendgrid/mail";
 

diff --git a/pages/api/ftx/accounts/aggregatePnl.ts b/pages/api/ftx/accounts/aggregatePnl.ts
@@ -1,7 +1,6 @@
 import type { NextApiRequest, NextApiResponse } from "next";
-import { withApiAuthRequired } from "@auth0/nextjs-auth0";
+import { withApiAuthRequired, getSession } from "@auth0/nextjs-auth0";
 import { RestClient } from "ftx-api";
-import matchPositionsWithBalanes from "../../../../util/matchPositions";
 import { getAllFunding } from "../../../../util/ftx";
 
 const getSeconds = (millis) => ~~(millis / 1000).toFixed(0);
@@ -15,6 +14,16 @@ export default withApiAuthRequired(async function ftx(
   req: NextApiRequest,
   res: NextApiResponse
 ) {
+  const session = getSession(req, res);
+  const user = session.user;
+  const roles = user["https://app.balmoral.digital/roles"];
+
+  if (!user || !roles.includes("admin")) {
+    return res
+      .status(401)
+      .json({ redirect: "401", message: "Unauthorized", success: false });
+  }
+
   try {
     const subAccounts = await client.getSubaccounts();
 

diff --git a/pages/api/ftx/accounts/index.ts b/pages/api/ftx/accounts/index.ts
@@ -1,7 +1,9 @@
 import type { NextApiRequest, NextApiResponse } from "next";
-import { withApiAuthRequired } from "@auth0/nextjs-auth0";
+import { withApiAuthRequired, getSession } from "@auth0/nextjs-auth0";
 import { RestClient } from "ftx-api";
 
+// TODO: Make env variables
+
 const key = "vN0h2BlDFk2EBaHxglTtXtD4EB9_NRQYx0mVlPFU";
 const secret = "ILNvroZ6SUDuvTg9mzc2-u-JnTTX9S1wMjDLwaES";
 
@@ -11,6 +13,15 @@ export default withApiAuthRequired(async function ftx(
   req: NextApiRequest,
   res: NextApiResponse
 ) {
+  const session = getSession(req, res);
+  const user = session.user;
+  const roles = user["https://app.balmoral.digital/roles"];
+
+  if (!user || !roles.includes("admin")) {
+    return res
+      .status(401)
+      .json({ redirect: "401", message: "Unauthorized", success: false });
+  }
   try {
     const subAccounts = await client.getSubaccounts();
 

diff --git a/pages/api/sharePrice/create.ts b/pages/api/sharePrice/create.ts
@@ -1,8 +1,18 @@
 import type { NextApiRequest, NextApiResponse } from "next";
-import { withApiAuthRequired } from "@auth0/nextjs-auth0";
 import createSharePrice from "../../../db/sharePrice/create";
+import { withApiAuthRequired, getSession } from "@auth0/nextjs-auth0";
+
+async function handler(req: NextApiRequest, res: NextApiResponse) {
+  const session = getSession(req, res);
+  const user = session.user;
+  const roles = user["https://app.balmoral.digital/roles"];
+
+  if (!user || !roles.includes("admin")) {
+    return res
+      .status(401)
+      .json({ redirect: "401", message: "Unauthorized", success: false });
+  }
 
-const handler = async (req: NextApiRequest, res: NextApiResponse) => {
   if (req.method === "POST") {
     const { sharePrice } = JSON.parse(req.body);
 
@@ -25,6 +35,6 @@ const handler = async (req: NextApiRequest, res: NextApiResponse) => {
       .status(405)
       .json({ message: "Method not allowed", success: false });
   }
-};
+}
 
 export default withApiAuthRequired(handler);
diff --git a/pages/api/sharePrice/index.ts b/pages/api/sharePrice/index.ts
@@ -2,7 +2,7 @@ import type { NextApiRequest, NextApiResponse } from "next";
 import { withApiAuthRequired } from "@auth0/nextjs-auth0";
 import getSharePrice, { getLatestSharePrice } from "../../../db/sharePrice";
 
-const handler = async (req: NextApiRequest, res: NextApiResponse) => {
+async function handler(req: NextApiRequest, res: NextApiResponse) {
   if (req.method === "GET") {
     const { from, to, latest } = req.query;
 
@@ -30,6 +30,6 @@ const handler = async (req: NextApiRequest, res: NextApiResponse) => {
       .status(405)
       .json({ message: "Method not allowed", success: false });
   }
-};
+}
 
 export default withApiAuthRequired(handler);
diff --git a/pages/api/strategies/create.ts b/pages/api/strategies/create.ts
@@ -1,11 +1,21 @@
 import type { NextApiRequest, NextApiResponse } from "next";
 import createStrategy from "../../../db/strategies/create";
-import { withApiAuthRequired } from "@auth0/nextjs-auth0";
+import { withApiAuthRequired, getSession } from "@auth0/nextjs-auth0";
 
 export default withApiAuthRequired(async function handler(
   req: NextApiRequest,
   res: NextApiResponse
 ) {
+  const session = getSession(req, res);
+  const user = session.user;
+  const roles = user["https://app.balmoral.digital/roles"];
+
+  if (!user || !roles.includes("admin")) {
+    return res
+      .status(401)
+      .json({ redirect: "401", message: "Unauthorized", success: false });
+  }
+
   if (req.method === "POST") {
     const data = req.body;
 

diff --git a/pages/api/strategies/index.ts b/pages/api/strategies/index.ts
@@ -1,6 +1,6 @@
 import type { NextApiRequest, NextApiResponse } from "next";
 import getStrategy from "../../../db/strategies";
-import { withApiAuthRequired } from "@auth0/nextjs-auth0";
+import { withApiAuthRequired, getSession } from "@auth0/nextjs-auth0";
 
 export default withApiAuthRequired(async function handler(
   req: NextApiRequest,

diff --git a/pages/api/user/txs.ts b/pages/api/user/txs.ts
@@ -1,4 +1,4 @@
-import prisma from "../../../db/client";
+import { prisma } from "../../../db/client";
 import type { NextApiRequest, NextApiResponse } from "next";
 import { withApiAuthRequired, getSession } from "@auth0/nextjs-auth0";
 import protectRoute from "../../../util/protectRoute";