Examples of com.denimgroup.threadfix.data.entities.APIKey

• com.denimgroup.threadfix.data.entities.APIKey

    apiKeyDao.saveOrUpdate(apiKey);
  }

  @Override
  public APIKey createAPIKey(String note, boolean restricted) {
    APIKey key = new APIKey();

    String editedNote = note;

    if (editedNote != null && editedNote.length() > 255)
      editedNote = editedNote.substring(0, 254);

    String keyString = generateNewSecureRandomKey();

    if (keyString != null && keyString.length() > 50)
      keyString = keyString.substring(0, 49);

    key.setNote(editedNote);
    key.setIsRestrictedKey(restricted);
    key.setApiKey(keyString);

    return key;
  }

  }

  @RequestMapping(method = RequestMethod.GET)
  public String index(HttpServletRequest request, Model model) {
    model.addAttribute("apiKeyList", apiKeyService.loadAll());
    model.addAttribute("apiKey", new APIKey());

    return "config/keys/index";
  }

                                                        @RequestParam(required = false) String note) {

        // checkboxes can be difficult
    boolean restricted = request.getParameter("isRestrictedKey") != null;

    APIKey newAPIKey = apiKeyService.createAPIKey(note, restricted);
    apiKeyService.storeAPIKey(newAPIKey);

    String currentUser = SecurityContextHolder.getContext().getAuthentication().getName();
    log.debug(currentUser + " has created an API key with the note " + note +
        ", and the ID " + newAPIKey.getId());

    return RestResponse.success(newAPIKey);
  }

  @RequestMapping(value = "/{keyId}/delete", method = RequestMethod.POST)
  public @ResponseBody RestResponse<String> delete(@PathVariable("keyId") int keyId) {

        // TODO validate authentication

    APIKey newAPIKey = apiKeyService.loadAPIKey(keyId);

    if (newAPIKey != null) {
      apiKeyService.deactivateApiKey(newAPIKey);
    } else {
      log.warn(ResourceNotFoundException.getLogMessage("API Key", keyId));

  }

  @RequestMapping(value = "/{keyId}/edit", method = RequestMethod.POST)
  public @ResponseBody RestResponse<APIKey> saveEdit(HttpServletRequest request,
      @PathVariable("keyId") int keyId, @RequestParam(required = false) String note) {
    APIKey apiKey = apiKeyService.loadAPIKey(keyId);

        String isRestrictedKeyStr= request.getParameter("isRestrictedKey");

    boolean restricted = (isRestrictedKeyStr != null && isRestrictedKeyStr.equalsIgnoreCase("true")) ? true : false ;

    if (note != null) {
      apiKey.setNote(note);
      apiKey.setIsRestrictedKey(restricted);
      apiKeyService.storeAPIKey(apiKey);

            return RestResponse.success(apiKey);
    } else {
      log.warn(ResourceNotFoundException.getLogMessage("API Key", keyId));

            log.warn("Request to " + request.getPathInfo()
                    + " did not contain an API Key(blank).");
            return API_KEY_NOT_FOUND_ERROR;
        }

    APIKey key = apiKeyService.loadAPIKey(apiKey);
    boolean validRequest = key != null;

    if (validRequest) {
      log.info("API key with ID: " + key.getId() + " authenticated successfully on path: "
          + request.getPathInfo() + " for methodName: " + methodName);

      if (key.getIsRestrictedKey() &&
        restrictedMethods.contains(methodName)) {
          log.info("The API key attempted to request a protected URL.");
          return RESTRICTED_URL_ERROR;
      } else {
        return API_KEY_SUCCESS;