Add support and documentation to use API keys (#724)

ScreamZ · web-flow · commit b35e27c78ad4 · 2023-03-02T19:16:09.000+01:00
Simplify the API by adding a helper function to set the JWT only with kuzzle API key format.
diff --git a/doc/7/controllers/auth/create-api-key/snippets/create-api-key.js b/doc/7/controllers/auth/create-api-key/snippets/create-api-key.js
@@ -18,6 +18,9 @@ try {
   */
 
   console.log('API key successfully created');
+
+  // Then use it with your client. Note: You don't need to call login after this because this bypasses the authentication system.
+  kuzzle.setAPIKey(apiKey._source.token)
 } catch (e) {
   console.error(e);
 }
diff --git a/src/Kuzzle.ts b/src/Kuzzle.ts
@@ -620,6 +620,19 @@ export class Kuzzle extends KuzzleEventEmitter {
     return this.protocol.connect();
   }
 
+  /**
+   * Set this client to use a specific API key.
+   *
+   * After doing this you don't need to use login as it bypasses the authentication process.
+   */
+  public setAPIKey(apiKey: string) {
+    if (apiKey.match(/^kapikey-/) === null) {
+      throw new Error("Invalid API key. Missing the `kapikey-` prefix.");
+    }
+
+    this.jwt = apiKey;
+  }
+
   async _reconnect() {
     if (this._reconnectInProgress) {
       return;

Original file line number	Diff line number	Diff line change
`@@ -18,6 +18,9 @@ try {`
`18`	`18`	`*/`
`19`	`19`
`20`	`20`	`console.log('API key successfully created');`
	`21`	`+`
	`22`	`+ // Then use it with your client. Note: You don't need to call login after this because this bypasses the authentication system.`
	`23`	`+ kuzzle.setAPIKey(apiKey._source.token)`
`21`	`24`	`} catch (e) {`
`22`	`25`	`console.error(e);`
`23`	`26`	`}`