feat: update tsconfigs, add access-token handling

spikeninja · spikeninja · commit 7c808df4fa9e · 2024-12-06T15:52:42.000+01:00
diff --git a/README.md b/README.md
@@ -72,9 +72,9 @@ class TaskiqAdminMiddleware(TaskiqMiddleware):
 3) Replace `ACCESS_TOKEN` with any secret enough string and run:
 ```bash
 docker run -d --rm \
-  -e ACCESS_TOKEN=supersecret \
   -p "3000:3000" \
   -v ./taskiq-admin-data/:/usr/database/ \
+  -e TASKIQ_ADMIN_API_TOKEN=supersecret \
   --name taskiq-admin \
   artur10/taskiq-admin:1.0.0
 ```
diff --git a/nuxt.config.ts b/nuxt.config.ts
@@ -3,4 +3,7 @@ export default defineNuxtConfig({
   devtools: { enabled: true },
   srcDir: "src/",
   modules: ["@nuxtjs/tailwindcss"],
+  typescript: {
+    strict: true,
+  },
 })
diff --git a/src/server/api/tasks/[id]/executed.post.ts b/src/server/api/tasks/[id]/executed.post.ts
@@ -1,15 +1,19 @@
-import {
-  defineEventHandler,
-  getValidatedRouterParams,
-  readValidatedBody,
-} from "h3"
 import {
   taskExecutedRequestSchema,
   taskRouteParamsSchema,
 } from "../../../schemas/tasks"
 import { tasksRepository } from "../../../repositories/tasks"
+import { envVariables } from "~/server/env"
 
 export default defineEventHandler(async (event) => {
+  const accessToken = getRequestHeader(event, "access-token")
+  if (!accessToken || accessToken !== envVariables.taskiqAdminApiToken) {
+    throw createError({
+      status: 401,
+      statusMessage: "Unauthorized",
+      message: "Invalid access token",
+    })
+  }
   const params = await getValidatedRouterParams(
     event,
     taskRouteParamsSchema.parse
diff --git a/src/server/api/tasks/[id]/started.post.ts b/src/server/api/tasks/[id]/started.post.ts
@@ -1,15 +1,19 @@
-import {
-  defineEventHandler,
-  getValidatedRouterParams,
-  readValidatedBody,
-} from "h3"
 import {
   taskRouteParamsSchema,
   taskStartedRequestSchema,
 } from "../../../schemas/tasks"
 import { tasksRepository } from "../../../repositories/tasks"
+import { envVariables } from "~/server/env"
 
 export default defineEventHandler(async (event) => {
+  const accessToken = getRequestHeader(event, "access-token")
+  if (!accessToken || accessToken !== envVariables.taskiqAdminApiToken) {
+    throw createError({
+      status: 401,
+      statusMessage: "Unauthorized",
+      message: "Invalid access token",
+    })
+  }
   const params = await getValidatedRouterParams(
     event,
     taskRouteParamsSchema.parse
diff --git a/src/server/env.ts b/src/server/env.ts
@@ -0,0 +1,3 @@
+export const envVariables = {
+  taskiqAdminApiToken: process.env.TASKIQ_ADMIN_API_TOKEN!,
+}
diff --git a/src/server/tsconfig.json b/src/server/tsconfig.json
@@ -1,6 +1,3 @@
 {
-  "extends": "../.nuxt/tsconfig.server.json",
-  "compilerOptions": {
-    "strict": true
-  }
+  "extends": "../../.nuxt/tsconfig.server.json"
 }
diff --git a/tsconfig.json b/tsconfig.json
@@ -1,7 +1,4 @@
 {
   // https://nuxt.com/docs/guide/concepts/typescript
-  "extends": "./.nuxt/tsconfig.json",
-  "compilerOptions": {
-    "strict": true
-  }
+  "extends": "./.nuxt/tsconfig.json"
 }

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+export const envVariables = {`
	`2`	`+ taskiqAdminApiToken: process.env.TASKIQ_ADMIN_API_TOKEN!,`
	`3`	`+}`
Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,3 @@`
`1`	`1`	`{`
`2`		`- "extends": "../.nuxt/tsconfig.server.json",`
`3`		`- "compilerOptions": {`
`4`		`- "strict": true`
`5`		`- }`
	`2`	`+ "extends": "../../.nuxt/tsconfig.server.json"`
`6`	`3`	`}`
Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,4 @@`
`1`	`1`	`{`
`2`	`2`	`// https://nuxt.com/docs/guide/concepts/typescript`
`3`		`- "extends": "./.nuxt/tsconfig.json",`
`4`		`- "compilerOptions": {`
`5`		`- "strict": true`
`6`		`- }`
	`3`	`+ "extends": "./.nuxt/tsconfig.json"`
`7`	`4`	`}`