Skip to content

Commit

Permalink
feat: Create sdk api for listing permissions of current api key (#596)
Browse files Browse the repository at this point in the history
* feat: add support to list api keys capabilities

* fix: rollback example

* fix: path parameter position

* fix: api key capability mapping
  • Loading branch information
MCarlomagno authored Oct 31, 2024
1 parent 00050cb commit 89654fa
Show file tree
Hide file tree
Showing 5 changed files with 46 additions and 7 deletions.
2 changes: 1 addition & 1 deletion examples/address-book-actions/package.json
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
{
"name": "@openzeppelin/defender-sdk-example-address-book-actions",
"version": "1.14.5",
"version": "1.15.1",
"private": true,
"main": "index.js",
"author": "OpenZeppelin Defender <[email protected]>",
Expand Down
10 changes: 9 additions & 1 deletion packages/account/src/api/index.ts
Original file line number Diff line number Diff line change
@@ -1,7 +1,8 @@
import { BaseApiClient } from '@openzeppelin/defender-sdk-base-client';
import { AccountUsageResponse } from '../models/account';
import { AccountUsageResponse, ApiKeyCapability, ApiKeyCapabilityV2, toApiKeysCapabilityV2 } from '../models/account';

const PATH = '/account';
const API_KEY_PATH = '/api-keys';

export class AccountClient extends BaseApiClient {
protected getPoolId(): string {
Expand All @@ -24,4 +25,11 @@ export class AccountClient extends BaseApiClient {

return this.apiCall(async (api) => api.get(`${PATH}/usage?${searchParams.toString()}`));
}

public async listApiKeyCapabilities(): Promise<ApiKeyCapabilityV2[]> {
const res = await this.apiCall<ApiKeyCapability[]>(async (api) =>
api.get(`${API_KEY_PATH}/${this.apiKey}/capabilities`),
);
return res.map(toApiKeysCapabilityV2);
}
}
32 changes: 32 additions & 0 deletions packages/account/src/models/account.ts
Original file line number Diff line number Diff line change
Expand Up @@ -14,3 +14,35 @@ type AccountUsage =
};

export type AccountUsageResponse = Record<string, AccountUsage>;

export type ApiKeyCapability =
| 'create-admin-proposals'
| 'manage-relayers'
| 'manage-autotasks'
| 'manage-subscribers'
| 'manage-deployments'
| 'manage-tenant-networks'
| 'manage-forked-networks'
| 'manage-address-book';

export type ApiKeyCapabilityV2 =
| 'create-admin-proposals'
| 'manage-relayers'
| 'manage-actions'
| 'manage-monitors'
| 'manage-deployments'
| 'manage-tenant-networks'
| 'manage-address-book';

const ApiKeyCapabilityMap: Record<ApiKeyCapability, ApiKeyCapabilityV2> = {
'manage-autotasks': 'manage-actions',
'manage-subscribers': 'manage-monitors',
'manage-address-book': 'manage-address-book',
'create-admin-proposals': 'create-admin-proposals',
'manage-deployments': 'manage-deployments',
'manage-relayers': 'manage-relayers',
'manage-tenant-networks': 'manage-tenant-networks',
'manage-forked-networks': 'manage-tenant-networks',
};

export const toApiKeysCapabilityV2 = (capability: ApiKeyCapability) => ApiKeyCapabilityMap[capability] ?? capability;
2 changes: 1 addition & 1 deletion packages/base/src/api/client.ts
Original file line number Diff line number Diff line change
Expand Up @@ -22,14 +22,14 @@ export type AuthConfig = {
type ApiFunction<TResponse> = (api: AxiosInstance) => Promise<TResponse>;
export abstract class BaseApiClient {
private api: AxiosInstance | undefined;
private apiKey: string;
private session: CognitoUserSession | undefined;
private sessionV2: { accessToken: string; refreshToken: string } | undefined;
private apiSecret: string;
private httpsAgent?: https.Agent;
private retryConfig: RetryConfig;
private authConfig: AuthConfig;

protected apiKey: string;
protected abstract getPoolId(): string;
protected abstract getPoolClientId(): string;
protected abstract getApiUrl(type?: AuthType): string;
Expand Down
7 changes: 3 additions & 4 deletions packages/relay-signer/README.md
Original file line number Diff line number Diff line change
@@ -1,6 +1,7 @@
# Defender SDK Relay Signer Client

Defender Relay Signer Client lets you send transactions to any supported network using private relayers. Each relayer has its own secure private key, and a set of API keys. You can send transactions via your relayers by POSTing to the Defender HTTP API, or using this library.

## Install

```bash
Expand All @@ -10,7 +11,6 @@ yarn add @openzeppelin/defender-sdk-relay-signer-client

```


This library also includes an [ethers.js](https://docs.ethers.io/v5/) signer and a [web3.js](https://web3js.readthedocs.io/) provider, that uses the Relay to sign and broadcast its transactions.

### Usage
Expand Down Expand Up @@ -79,7 +79,6 @@ Transaction can be queried by nonce as well:
const latestTx = await relayer.getTransactionByNonce(tx.nonce);
```


Alternatively, the `relayer` can also be used to `list` the latest transactions sent, optionally filtering by status and creation time.

```js
Expand Down Expand Up @@ -281,7 +280,7 @@ Note that these web3.js providers currently have the same limitations as the eth
```js
const { Defender } = require('@openzeppelin/defender-sdk');

exports.handler = async function(credentials) {
exports.handler = async function (credentials) {
const client = new Defender(credentials);

const txRes = await client.relaySigner.sendTransaction({
Expand All @@ -293,7 +292,7 @@ exports.handler = async function(credentials) {

console.log(txRes);
return txRes.hash;
}
};
```

## FAQ
Expand Down

0 comments on commit 89654fa

Please sign in to comment.