user: add a permission to disable changing api key authentication

also implement the missing APIs to enable/disable api key authentication
2025-12-06 22:30:56 +03:00 · 2021-09-06 18:46:35 +02:00
parent 101c2962ab
commit 7bad65a43e
11 changed files with 479 additions and 8 deletions
--- a/httpd/httpd.go
+++ b/httpd/httpd.go
@@ -55,6 +55,7 @@ const (
 	adminPath                              = "/api/v2/admins"
 	adminPwdPath                           = "/api/v2/admin/changepwd"
 	adminPwdCompatPath                     = "/api/v2/changepwd/admin"
+	adminManageAPIKeyPath                  = "/api/v2/admin/apikeyauth"
 	userPwdPath                            = "/api/v2/user/changepwd"
 	userPublicKeysPath                     = "/api/v2/user/publickeys"
 	userFolderPath                         = "/api/v2/user/folder"
@@ -73,6 +74,7 @@ const (
 	userTOTPValidatePath                   = "/api/v2/user/totp/validate"
 	userTOTPSavePath                       = "/api/v2/user/totp/save"
 	user2FARecoveryCodesPath               = "/api/v2/user/2fa/recoverycodes"
+	userManageAPIKeyPath                   = "/api/v2/user/apikeyauth"
 	healthzPath                            = "/healthz"
 	webRootPathDefault                     = "/"
 	webBasePathDefault                     = "/web"