Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feature: Closes #1831 - Add an artisan command to create an API key from the command line #5055

Open
wants to merge 11 commits into
base: develop
Choose a base branch
from
Open

feature: Closes #1831 - Add an artisan command to create an API key from the command line #5055

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
11 commits
Select commit Hold shift + click to select a range
d196683
Initial commit, first version of the command description
GreatSymphonia Apr 2, 2024
6fa1d44
add other needed fields
GreatSymphonia Apr 2, 2024
f818292
Initial draft
GreatSymphonia Apr 3, 2024
7af48d7
API Key messages
GreatSymphonia Apr 3, 2024
f9e98a2
properly outputting the info from the key
GreatSymphonia Apr 3, 2024
db86391
Correcting the R/W values, 1 read, 2 write, 3 R/W, 0 nothing;
GreatSymphonia Apr 4, 2024
48c50a6
add proper file output
GreatSymphonia Apr 4, 2024
e5d044b
Add actual names in the table
GreatSymphonia Apr 4, 2024
fb2e163
properly use the \n
GreatSymphonia Apr 4, 2024
f2f4306
properly use parenthesies
GreatSymphonia Apr 4, 2024
8d19a7f
Restrict this script to the creation of application keys
GreatSymphonia Apr 4, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
117 changes: 117 additions & 0 deletions app/Console/Commands/CreateApiKey.php
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,117 @@
<?php

namespace Pterodactyl\Console\Commands;

use Illuminate\Console\Command;
use Illuminate\Contracts\Encryption\Encrypter;
use Pterodactyl\Console\Kernel;
use Pterodactyl\Models\ApiKey;
use Pterodactyl\Models\User;
use Pterodactyl\Services\Api\KeyCreationService;


class CreateApiKey extends Command
{

public function __construct(
private KeyCreationService $apiKeyCreationService,
private Encrypter $encrypter
) {
parent::__construct();
}

protected $signature = 'p:panel-api:create-key
{--username= : The username for which to create an API key for}
{--password= : The password for the user account.}
{--description= : The description to assign to the API key.}
{--file_output= : The location of the file output for the API key (outputs the API key to stdout by default).}
{--allocations=0 [r, rw]: API permissions for reading and writing allocations.}
{--database_hosts=0 [r, rw]: API permissions for reading and writing database hosts.}
{--eggs=0 [r, rw]: API permissions for reading and writing eggs.}
{--locations=0 [r, rw]: API permissions for reading and writing locations.}
{--nests=0 [r, rw]: API permissions for reading and writing nests.}
{--nodes=0 [r, rw]: API permissions for reading and writing nodes.}
{--server_databases=0 [r, rw]: API permissions for reading and writing server databases.}
{--servers=0 [r, rw]: API permissions for reading and writing servers.}
{--users=0 [r, rw]: API permissions for reading and writing users.}';

protected $description = 'Allows the creation of a new application API key for the Panel.';

/**
* Execute a command to create a new API key for the Panel for the specified user.
*
* @throws \Pterodactyl\Exceptions\Model\ModelNotFoundException
*/
public function handle(): void
{
$username = $this->option('username') ?? $this->ask(trans('command/messages.user.ask_username'));
$password = $this->option('password') ?? $this->secret(trans('command/messages.user.ask_password'));
$description = $this->option('description') ?? $this->ask(trans('command/messages.API_key.ask_API_key_description'));

$permissions = [
'r_allocations' => $this->option('allocations') === 'rw' ? 3 : ($this->option('allocations') === 'r' ? 1 : 0),
'r_database_hosts' => $this->option('database_hosts') === 'rw' ? 3 : ($this->option('database_hosts') === 'r' ? 1 : 0),
'r_eggs' => $this->option('eggs') === 'rw' ? 3 : ($this->option('eggs') === 'r' ? 1 : 0),
'r_locations' => $this->option('locations') === 'rw' ? 3 : ($this->option('locations') === 'r' ? 1 : 0),
'r_nests' => $this->option('nests') === 'rw' ? 3 : ($this->option('nests') === 'r' ? 1 : 0),
'r_nodes' => $this->option('nodes') === 'rw' ? 3 : ($this->option('nodes') === 'r' ? 1 : 0),
'r_server_databases' => $this->option('server_databases') === 'rw' ? 3 : ($this->option('server_databases') === 'r' ? 1 : 0),
'r_servers' => $this->option('servers') === 'rw' ? 3 : ($this->option('servers') === 'r' ? 1 : 0),
'r_users' => $this->option('users') === 'rw' ? 3 : ($this->option('users') === 'r' ? 1 : 0)
];

try {
$user = User::query()->where($this->getField($username), $username)->firstOrFail();
} catch (ModelNotFoundException $e) {
$this->line(trans('command/messages.user.error_user_auth_invalid'));
throw $e;
}

$this->apiKeyCreationService->setKeyType(ApiKey::TYPE_APPLICATION);

$dataToPush = [
'memo' => $description,
'user_id' => $user->id,
];

# Unused variable, could have validation for the key creation but kinda useless
$apiKeyCreated = $this->apiKeyCreationService->handle($dataToPush, $permissions);

# Get the key from the database to ensure proper creation
try {
$mostRecentApiKey = ApiKey::query()->where('user_id', $user->id)->latest()->firstOrFail();
} catch (\Throwable $th) {
throw $th;
}

$this->table(['Field', 'Value'], [
['user_id', $user->id],
['identifier', $mostRecentApiKey->identifier],
['token', $this->encrypter->decrypt($mostRecentApiKey->token)],
['memo', $mostRecentApiKey->memo],
['r_allocations', $permissions['r_allocations']],
['r_database_hosts', $permissions['r_database_hosts']],
['r_eggs', $permissions['r_eggs']],
['r_locations', $permissions['r_locations']],
['r_nests', $permissions['r_nests']],
['r_nodes', $permissions['r_nodes']],
['r_server_databases', $permissions['r_server_databases']],
['r_servers', $permissions['r_servers']],
['r_users', $permissions['r_users']],
]);

if($this->option('file_output'))
{
$fileOutput = $this->option('file_output');
file_put_contents($fileOutput, $mostRecentApiKey->identifier . $this->encrypter->decrypt($mostRecentApiKey->token) . "\n");
}
}

/**
* Determine if the user is logging in using an email or username.
*/
protected function getField(string $input = null): string
{
return ($input && str_contains($input, '@')) ? 'email' : 'username';
}
}
4 changes: 4 additions & 0 deletions resources/lang/en/command/messages.php
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -63,4 +63,8 @@
'ask_encryption' => 'Encryption method to use',
],
],
'API_key' => [
'ask_API_key_description' => 'Enter a description for the API key',
'error_user_auth_invalid' => 'Unable to authenticate the user',
]
];