misc_pterodactyl-panel/app/Models/ApiKey.php

<?php

namespace Pterodactyl\Models;

use Pterodactyl\Services\Acl\Api\AdminAcl;

/**
 * @property int $id
 * @property int $user_id
 * @property int $key_type
 * @property string $identifier
 * @property string $token
 * @property array $allowed_ips
 * @property string $memo
 * @property \Carbon\Carbon|null $last_used_at
 * @property \Carbon\Carbon $created_at
 * @property \Carbon\Carbon $updated_at
 */
class ApiKey extends Validable
{
    const RESOURCE_NAME = 'api_key';

    /**
     * Different API keys that can exist on the system.
     */
    const TYPE_NONE = 0;
    const TYPE_ACCOUNT = 1;
    const TYPE_APPLICATION = 2;
    const TYPE_DAEMON_USER = 3;
    const TYPE_DAEMON_APPLICATION = 4;

    /**
     * The length of API key identifiers.
     */
    const IDENTIFIER_LENGTH = 16;

    /**
     * The length of the actual API key that is encrypted and stored
     * in the database.
     */
    const KEY_LENGTH = 32;

    /**
     * The table associated with the model.
     *
     * @var string
     */
    protected $table = 'api_keys';

    /**
     * Cast values to correct type.
     *
     * @var array
     */
    protected $casts = [
        'allowed_ips' => 'json',
        'user_id' => 'int',
        'r_' . AdminAcl::RESOURCE_USERS => 'int',
        'r_' . AdminAcl::RESOURCE_ALLOCATIONS => 'int',
        'r_' . AdminAcl::RESOURCE_DATABASE_HOSTS => 'int',
        'r_' . AdminAcl::RESOURCE_SERVER_DATABASES => 'int',
        'r_' . AdminAcl::RESOURCE_EGGS => 'int',
        'r_' . AdminAcl::RESOURCE_LOCATIONS => 'int',
        'r_' . AdminAcl::RESOURCE_NESTS => 'int',
        'r_' . AdminAcl::RESOURCE_NODES => 'int',
        'r_' . AdminAcl::RESOURCE_PACKS => 'int',
        'r_' . AdminAcl::RESOURCE_SERVERS => 'int',
    ];

    /**
     * Fields that are mass assignable.
     *
     * @var array
     */
    protected $fillable = [
        'identifier',
        'token',
        'allowed_ips',
        'memo',
        'last_used_at',
    ];

    /**
     * Fields that should not be included when calling toArray() or toJson()
     * on this model.
     *
     * @var array
     */
    protected $hidden = ['token'];

    /**
     * Rules to protect against invalid data entry to DB.
     *
     * @var array
     */
    public static $validationRules = [
        'user_id' => 'required|exists:users,id',
        'key_type' => 'present|integer|min:0|max:4',
        'identifier' => 'required|string|size:16|unique:api_keys,identifier',
        'token' => 'required|string',
        'memo' => 'required|nullable|string|max:500',
        'allowed_ips' => 'nullable|json',
        'last_used_at' => 'nullable|date',
        'r_' . AdminAcl::RESOURCE_USERS => 'integer|min:0|max:3',
        'r_' . AdminAcl::RESOURCE_ALLOCATIONS => 'integer|min:0|max:3',
        'r_' . AdminAcl::RESOURCE_DATABASE_HOSTS => 'integer|min:0|max:3',
        'r_' . AdminAcl::RESOURCE_SERVER_DATABASES => 'integer|min:0|max:3',
        'r_' . AdminAcl::RESOURCE_EGGS => 'integer|min:0|max:3',
        'r_' . AdminAcl::RESOURCE_LOCATIONS => 'integer|min:0|max:3',
        'r_' . AdminAcl::RESOURCE_NESTS => 'integer|min:0|max:3',
        'r_' . AdminAcl::RESOURCE_NODES => 'integer|min:0|max:3',
        'r_' . AdminAcl::RESOURCE_PACKS => 'integer|min:0|max:3',
        'r_' . AdminAcl::RESOURCE_SERVERS => 'integer|min:0|max:3',
    ];

    /**
     * @var array
     */
    protected $dates = [
        self::CREATED_AT,
        self::UPDATED_AT,
        'last_used_at',
    ];
}
Change authentication method for API. 2016-01-16 00:26:50 +00:00			`<?php`
Apply fixes from StyleCI 2016-12-07 22:46:38 +00:00
Change authentication method for API. 2016-01-16 00:26:50 +00:00			`namespace Pterodactyl\Models;`

First round of changes to API to support simpler permissions. 2018-01-12 04:49:46 +00:00			`use Pterodactyl\Services\Acl\Api\AdminAcl;`
Change authentication method for API. 2016-01-16 00:26:50 +00:00
Add base support for creating a new API key for an account 2020-03-23 01:15:38 +00:00			`/**`
			`* @property int $id`
			`* @property int $user_id`
			`* @property int $key_type`
			`* @property string $identifier`
			`* @property string $token`
			`* @property array $allowed_ips`
			`* @property string $memo`
			`* @property \Carbon\Carbon\|null $last_used_at`
			`* @property \Carbon\Carbon $created_at`
			`* @property \Carbon\Carbon $updated_at`
			`*/`
[L6] Update composer dependencies to support L6 Drops all of the eloquence requirements, this is going to break a shit load of code, needs to happen tired of this package always holding us back. Quite confident in my ability to write custom code to do the basic validation we need. Searching should be a fun nightmare to deal with later... 2019-09-05 04:00:34 +00:00			`class ApiKey extends Validable`
Change authentication method for API. 2016-01-16 00:26:50 +00:00			`{`
Add base support for creating a new API key for an account 2020-03-23 01:15:38 +00:00			`const RESOURCE_NAME = 'api_key';`

More permission removal cleanup 2018-01-14 18:11:04 +00:00			`/**`
			`* Different API keys that can exist on the system.`
			`*/`
			`const TYPE_NONE = 0;`
Update interface to begin change to seperate account API keys and application keys Main difference is permissions, cleaner UI for normal users, and account keys use permissions assigned to servers and subusers while application keys use R/W ACLs stored in the key table. 2018-01-14 19:30:55 +00:00			`const TYPE_ACCOUNT = 1;`
More permission removal cleanup 2018-01-14 18:11:04 +00:00			`const TYPE_APPLICATION = 2;`
			`const TYPE_DAEMON_USER = 3;`
			`const TYPE_DAEMON_APPLICATION = 4;`

Change the way API keys are stored and validated; clarify API namespacing Previously, a single key was used to access the API, this has not changed in terms of what the user sees. However, API keys now use an identifier and token internally. The identifier is the first 16 characters of the key, and the token is the remaining 32. The token is stored encrypted at rest in the database and the identifier is used by the API middleware to grab that record and make a timing attack safe comparison. 2018-01-13 22:06:19 +00:00			`/**`
			`* The length of API key identifiers.`
			`*/`
			`const IDENTIFIER_LENGTH = 16;`

			`/**`
			`* The length of the actual API key that is encrypted and stored`
			`* in the database.`
			`*/`
API key UI changes and backend storage of the keys 2017-11-19 19:32:17 +00:00			`const KEY_LENGTH = 32;`

Change authentication method for API. 2016-01-16 00:26:50 +00:00			`/**`
			`* The table associated with the model.`
			`*`
			`* @var string`
			`*/`
			`protected $table = 'api_keys';`

Initial moves to new API scheme. Implements a better middleware for handling API authentication, as well as cleaner route handling. 2017-04-02 04:11:52 +00:00			`/**`
			`* Cast values to correct type.`
			`*`
			`* @var array`
			`*/`
			`protected $casts = [`
			`'allowed_ips' => 'json',`
First round of changes to API to support simpler permissions. 2018-01-12 04:49:46 +00:00			`'user_id' => 'int',`
			`'r_' . AdminAcl::RESOURCE_USERS => 'int',`
			`'r_' . AdminAcl::RESOURCE_ALLOCATIONS => 'int',`
Add database list endpoint, add more resource name magic 2018-01-26 03:26:06 +00:00			`'r_' . AdminAcl::RESOURCE_DATABASE_HOSTS => 'int',`
			`'r_' . AdminAcl::RESOURCE_SERVER_DATABASES => 'int',`
First round of changes to API to support simpler permissions. 2018-01-12 04:49:46 +00:00			`'r_' . AdminAcl::RESOURCE_EGGS => 'int',`
			`'r_' . AdminAcl::RESOURCE_LOCATIONS => 'int',`
			`'r_' . AdminAcl::RESOURCE_NESTS => 'int',`
			`'r_' . AdminAcl::RESOURCE_NODES => 'int',`
			`'r_' . AdminAcl::RESOURCE_PACKS => 'int',`
			`'r_' . AdminAcl::RESOURCE_SERVERS => 'int',`
Initial moves to new API scheme. Implements a better middleware for handling API authentication, as well as cleaner route handling. 2017-04-02 04:11:52 +00:00			`];`

add initial api management page 2016-01-16 06:20:27 +00:00			`/**`
First round of changes to API to support simpler permissions. 2018-01-12 04:49:46 +00:00			`* Fields that are mass assignable.`
add initial api management page 2016-01-16 06:20:27 +00:00			`*`
			`* @var array`
			`*/`
First round of changes to API to support simpler permissions. 2018-01-12 04:49:46 +00:00			`protected $fillable = [`
Change the way API keys are stored and validated; clarify API namespacing Previously, a single key was used to access the API, this has not changed in terms of what the user sees. However, API keys now use an identifier and token internally. The identifier is the first 16 characters of the key, and the token is the remaining 32. The token is stored encrypted at rest in the database and the identifier is used by the API middleware to grab that record and make a timing attack safe comparison. 2018-01-13 22:06:19 +00:00			`'identifier',`
First round of changes to API to support simpler permissions. 2018-01-12 04:49:46 +00:00			`'token',`
			`'allowed_ips',`
			`'memo',`
Update interface to begin change to seperate account API keys and application keys Main difference is permissions, cleaner UI for normal users, and account keys use permissions assigned to servers and subusers while application keys use R/W ACLs stored in the key table. 2018-01-14 19:30:55 +00:00			`'last_used_at',`
First round of changes to API to support simpler permissions. 2018-01-12 04:49:46 +00:00			`];`
API Model updates. 2017-02-10 22:29:10 +00:00
Change the way API keys are stored and validated; clarify API namespacing Previously, a single key was used to access the API, this has not changed in terms of what the user sees. However, API keys now use an identifier and token internally. The identifier is the first 16 characters of the key, and the token is the remaining 32. The token is stored encrypted at rest in the database and the identifier is used by the API middleware to grab that record and make a timing attack safe comparison. 2018-01-13 22:06:19 +00:00			`/**`
			`* Fields that should not be included when calling toArray() or toJson()`
			`* on this model.`
			`*`
			`* @var array`
			`*/`
			`protected $hidden = ['token'];`

Add ApiKey service, cleanup old API key methods https://zube.io/pterodactyl/panel/c/525 2017-06-25 20:31:50 +00:00			`/**`
Fix app/ spelling errors 2018-05-13 14:50:56 +00:00			`* Rules to protect against invalid data entry to DB.`
Add ApiKey service, cleanup old API key methods https://zube.io/pterodactyl/panel/c/525 2017-06-25 20:31:50 +00:00			`*`
			`* @var array`
			`*/`
[L6] Add support for custom model validation logic 2019-09-05 05:19:57 +00:00			`public static $validationRules = [`
			`'user_id' => 'required\|exists:users,id',`
			`'key_type' => 'present\|integer\|min:0\|max:4',`
			`'identifier' => 'required\|string\|size:16\|unique:api_keys,identifier',`
			`'token' => 'required\|string',`
			`'memo' => 'required\|nullable\|string\|max:500',`
Add ApiKey service, cleanup old API key methods https://zube.io/pterodactyl/panel/c/525 2017-06-25 20:31:50 +00:00			`'allowed_ips' => 'nullable\|json',`
Change the way API keys are stored and validated; clarify API namespacing Previously, a single key was used to access the API, this has not changed in terms of what the user sees. However, API keys now use an identifier and token internally. The identifier is the first 16 characters of the key, and the token is the remaining 32. The token is stored encrypted at rest in the database and the identifier is used by the API middleware to grab that record and make a timing attack safe comparison. 2018-01-13 22:06:19 +00:00			`'last_used_at' => 'nullable\|date',`
First round of changes to API to support simpler permissions. 2018-01-12 04:49:46 +00:00			`'r_' . AdminAcl::RESOURCE_USERS => 'integer\|min:0\|max:3',`
			`'r_' . AdminAcl::RESOURCE_ALLOCATIONS => 'integer\|min:0\|max:3',`
Add database list endpoint, add more resource name magic 2018-01-26 03:26:06 +00:00			`'r_' . AdminAcl::RESOURCE_DATABASE_HOSTS => 'integer\|min:0\|max:3',`
			`'r_' . AdminAcl::RESOURCE_SERVER_DATABASES => 'integer\|min:0\|max:3',`
First round of changes to API to support simpler permissions. 2018-01-12 04:49:46 +00:00			`'r_' . AdminAcl::RESOURCE_EGGS => 'integer\|min:0\|max:3',`
			`'r_' . AdminAcl::RESOURCE_LOCATIONS => 'integer\|min:0\|max:3',`
			`'r_' . AdminAcl::RESOURCE_NESTS => 'integer\|min:0\|max:3',`
			`'r_' . AdminAcl::RESOURCE_NODES => 'integer\|min:0\|max:3',`
			`'r_' . AdminAcl::RESOURCE_PACKS => 'integer\|min:0\|max:3',`
			`'r_' . AdminAcl::RESOURCE_SERVERS => 'integer\|min:0\|max:3',`
			`];`

			`/**`
			`* @var array`
			`*/`
			`protected $dates = [`
			`self::CREATED_AT,`
			`self::UPDATED_AT,`
Change the way API keys are stored and validated; clarify API namespacing Previously, a single key was used to access the API, this has not changed in terms of what the user sees. However, API keys now use an identifier and token internally. The identifier is the first 16 characters of the key, and the token is the remaining 32. The token is stored encrypted at rest in the database and the identifier is used by the API middleware to grab that record and make a timing attack safe comparison. 2018-01-13 22:06:19 +00:00			`'last_used_at',`
Add ApiKey service, cleanup old API key methods https://zube.io/pterodactyl/panel/c/525 2017-06-25 20:31:50 +00:00			`];`
Change authentication method for API. 2016-01-16 00:26:50 +00:00			`}`