refactored `PUT /api/vaults/{v}/access-tokens/{u}` → `POST /api/vaults/{v}/access-tokens` #242

overheadhunter · 2023-11-13T15:48:47Z

The new API accepts multiple access grants in a single requests, making bulk requests easier, as can be seen here:

hub/frontend/src/components/GrantPermissionDialog.vue

Lines 127 to 135 in 1c2133d

    
             let tokens: AccessGrant[] = []; 
        
             for (const user of users) { 
        
               if (user.publicKey) { // some users might not have set up their key pair, so we can't share secrets with them yet 
        
                 const publicKey = base64.parse(user.publicKey); 
        
                 const jwe = await props.vaultKeys.encryptForUser(publicKey); 
        
                 tokens.push({ userId: user.id, token: jwe }); 
        
               } 
        
             } 
        
             await backend.vaults.grantAccess(props.vault.id, ...tokens);

replacing `PUT /api/vaults/{v}/access-tokens/{u}`, accepting multiple user-token-pairs

SailReal

LGTM; As discussed, we should add in the future an HTTP status code 207 like in WebDAV but we can enhance that later.

overheadhunter added 2 commits November 13, 2023 15:32

new API POST /api/vaults/{v}/access-tokens

5167d0b

replacing `PUT /api/vaults/{v}/access-tokens/{u}`, accepting multiple user-token-pairs

post multiple access tokens in single request

1c2133d

overheadhunter added this to the 1.3.0 milestone Nov 13, 2023

overheadhunter requested a review from SailReal November 13, 2023 15:48

SailReal approved these changes Nov 13, 2023

View reviewed changes

SailReal merged commit b138e64 into develop Nov 13, 2023

SailReal deleted the feature/multi-access-grant branch November 13, 2023 16:42

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

refactored `PUT /api/vaults/{v}/access-tokens/{u}` → `POST /api/vaults/{v}/access-tokens` #242

refactored `PUT /api/vaults/{v}/access-tokens/{u}` → `POST /api/vaults/{v}/access-tokens` #242

overheadhunter commented Nov 13, 2023

SailReal left a comment

	let tokens: AccessGrant[] = [];
	for (const user of users) {
	if (user.publicKey) { // some users might not have set up their key pair, so we can't share secrets with them yet
	const publicKey = base64.parse(user.publicKey);
	const jwe = await props.vaultKeys.encryptForUser(publicKey);
	tokens.push({ userId: user.id, token: jwe });
	}
	}
	await backend.vaults.grantAccess(props.vault.id, ...tokens);

refactored PUT /api/vaults/{v}/access-tokens/{u} → POST /api/vaults/{v}/access-tokens #242

refactored PUT /api/vaults/{v}/access-tokens/{u} → POST /api/vaults/{v}/access-tokens #242

Conversation

overheadhunter commented Nov 13, 2023

SailReal left a comment

Choose a reason for hiding this comment

refactored `PUT /api/vaults/{v}/access-tokens/{u}` → `POST /api/vaults/{v}/access-tokens` #242

refactored `PUT /api/vaults/{v}/access-tokens/{u}` → `POST /api/vaults/{v}/access-tokens` #242