stacker.news/api/resolvers/vault.js

import { E_VAULT_KEY_EXISTS, GqlAuthenticationError, GqlInputError } from '@/lib/error'

export default {
  Query: {
    getVaultEntry: async (parent, { key }, { me, models }, info) => {
      if (!me) throw new GqlAuthenticationError()
      if (!key) throw new GqlInputError('must have key')

      const k = await models.vault.findUnique({
        where: {
          key,
          userId: me.id
        }
      })
      return k
    },
    getVaultEntries: async (parent, { keysFilter }, { me, models }, info) => {
      if (!me) throw new GqlAuthenticationError()

      const entries = await models.vaultEntry.findMany({
        where: {
          userId: me.id,
          key: keysFilter?.length
            ? {
                in: keysFilter
              }
            : undefined
        }
      })
      return entries
    }
  },
  Mutation: {
    // atomic vault migration
    updateVaultKey: async (parent, { entries, hash }, { me, models }) => {
      if (!me) throw new GqlAuthenticationError()
      if (!hash) throw new GqlInputError('hash required')
      const txs = []

      const { vaultKeyHash: oldKeyHash } = await models.user.findUnique({ where: { id: me.id } })
      if (oldKeyHash) {
        if (oldKeyHash !== hash) {
          throw new GqlInputError('vault key already set', E_VAULT_KEY_EXISTS)
        } else {
          return true
        }
      } else {
        txs.push(models.user.update({
          where: { id: me.id },
          data: { vaultKeyHash: hash }
        }))
      }

      for (const entry of entries) {
        txs.push(models.vaultEntry.update({
          where: { userId_key: { userId: me.id, key: entry.key } },
          data: { value: entry.value, iv: entry.iv }
        }))
      }
      await models.$transaction(txs)
      return true
    },
    clearVault: async (parent, args, { me, models }) => {
      if (!me) throw new GqlAuthenticationError()
      const txs = []
      txs.push(models.user.update({
        where: { id: me.id },
        data: { vaultKeyHash: '' }
      }))
      txs.push(models.vaultEntry.deleteMany({ where: { userId: me.id } }))
      await models.$transaction(txs)
      return true
    }
  }
}
user vault and server side client wallets 2024-10-14 15:49:06 +00:00			`import { E_VAULT_KEY_EXISTS, GqlAuthenticationError, GqlInputError } from '@/lib/error'`

			`export default {`
			`Query: {`
complete fantasy scaffolding 2024-10-23 00:53:56 +00:00			`getVaultEntry: async (parent, { key }, { me, models }, info) => {`
user vault and server side client wallets 2024-10-14 15:49:06 +00:00			`if (!me) throw new GqlAuthenticationError()`
			`if (!key) throw new GqlInputError('must have key')`

			`const k = await models.vault.findUnique({`
			`where: {`
get vault working 2024-10-27 07:43:45 +00:00			`key,`
			`userId: me.id`
user vault and server side client wallets 2024-10-14 15:49:06 +00:00			`}`
			`})`
			`return k`
			`},`
complete fantasy scaffolding 2024-10-23 00:53:56 +00:00			`getVaultEntries: async (parent, { keysFilter }, { me, models }, info) => {`
user vault and server side client wallets 2024-10-14 15:49:06 +00:00			`if (!me) throw new GqlAuthenticationError()`

get vault working 2024-10-27 07:43:45 +00:00			`const entries = await models.vaultEntry.findMany({`
user vault and server side client wallets 2024-10-14 15:49:06 +00:00			`where: {`
			`userId: me.id,`
			`key: keysFilter?.length`
			`? {`
			`in: keysFilter`
			`}`
			`: undefined`
			`}`
			`})`
			`return entries`
			`}`
			`},`
			`Mutation: {`
complete fantasy scaffolding 2024-10-23 00:53:56 +00:00			`// atomic vault migration`
			`updateVaultKey: async (parent, { entries, hash }, { me, models }) => {`
user vault and server side client wallets 2024-10-14 15:49:06 +00:00			`if (!me) throw new GqlAuthenticationError()`
			`if (!hash) throw new GqlInputError('hash required')`
complete fantasy scaffolding 2024-10-23 00:53:56 +00:00			`const txs = []`
user vault and server side client wallets 2024-10-14 15:49:06 +00:00
			`const { vaultKeyHash: oldKeyHash } = await models.user.findUnique({ where: { id: me.id } })`
			`if (oldKeyHash) {`
			`if (oldKeyHash !== hash) {`
			`throw new GqlInputError('vault key already set', E_VAULT_KEY_EXISTS)`
			`} else {`
			`return true`
			`}`
			`} else {`
complete fantasy scaffolding 2024-10-23 00:53:56 +00:00			`txs.push(models.user.update({`
user vault and server side client wallets 2024-10-14 15:49:06 +00:00			`where: { id: me.id },`
			`data: { vaultKeyHash: hash }`
complete fantasy scaffolding 2024-10-23 00:53:56 +00:00			`}))`
user vault and server side client wallets 2024-10-14 15:49:06 +00:00			`}`
complete fantasy scaffolding 2024-10-23 00:53:56 +00:00
			`for (const entry of entries) {`
pages load kazoo 2024-10-23 17:42:34 +00:00			`txs.push(models.vaultEntry.update({`
server side config saves 2024-10-24 20:30:56 +00:00			`where: { userId_key: { userId: me.id, key: entry.key } },`
get vault working 2024-10-27 07:43:45 +00:00			`data: { value: entry.value, iv: entry.iv }`
complete fantasy scaffolding 2024-10-23 00:53:56 +00:00			`}))`
			`}`
get vault working 2024-10-27 07:43:45 +00:00			`await models.$transaction(txs)`
complete fantasy scaffolding 2024-10-23 00:53:56 +00:00			`return true`
			`},`
			`clearVault: async (parent, args, { me, models }) => {`
			`if (!me) throw new GqlAuthenticationError()`
			`const txs = []`
			`txs.push(models.user.update({`
			`where: { id: me.id },`
			`data: { vaultKeyHash: '' }`
			`}))`
			`txs.push(models.vaultEntry.deleteMany({ where: { userId: me.id } }))`
get vault working 2024-10-27 07:43:45 +00:00			`await models.$transaction(txs)`
user vault and server side client wallets 2024-10-14 15:49:06 +00:00			`return true`
			`}`
			`}`
			`}`