/api/client/[id]/key, /api/mek/share Endpoint 추가

2025-12-16 15:08:46 +00:00 · 2024-12-31 17:41:54 +09:00
parent 0d00e2476a
commit ccad4fbd8b
8 changed files with 187 additions and 57 deletions
--- a/src/lib/server/db/client.ts
+++ b/src/lib/server/db/client.ts
@@ -62,6 +62,16 @@ export const getUserClient = async (userId: number, clientId: number) => {
  return userClients[0] ?? null;
 };

+export const getUserClientWithDetails = async (userId: number, clientId: number) => {
+  const userClients = await db
+    .select()
+    .from(userClient)
+    .innerJoin(client, eq(userClient.clientId, client.id))
+    .where(and(eq(userClient.userId, userId), eq(userClient.clientId, clientId)))
+    .execute();
+  return userClients[0] ?? null;
+};
+
 export const setUserClientStateToPending = async (userId: number, clientId: number) => {
  await db
    .update(userClient)
--- a/src/lib/server/db/mek.ts
+++ b/src/lib/server/db/mek.ts
@@ -2,32 +2,21 @@ import { and, or, eq, lt, desc } from "drizzle-orm";
 import db from "./drizzle";
 import { mek, clientMek, userClient } from "./schema";

-interface ClientMek {
-  clientId: number;
-  encMek: string;
-}
-
 export const registerInitialMek = async (userId: number, createdBy: number, encMek: string) => {
  await db.transaction(async (tx) => {
-    await tx
-      .insert(mek)
-      .values({
-        userId,
-        version: 1,
-        createdBy,
-        createdAt: new Date(),
-        state: "active",
-      })
-      .execute();
-    await tx
-      .insert(clientMek)
-      .values({
-        userId,
-        clientId: createdBy,
-        mekVersion: 1,
-        encMek,
-      })
-      .execute();
+    await tx.insert(mek).values({
+      userId,
+      version: 1,
+      createdBy,
+      createdAt: new Date(),
+      state: "active",
+    });
+    await tx.insert(clientMek).values({
+      userId,
+      clientId: createdBy,
+      mekVersion: 1,
+      encMek,
+    });
  });
 };

@@ -35,7 +24,10 @@ export const registerActiveMek = async (
  userId: number,
  version: number,
  createdBy: number,
-  clientMeks: ClientMek[],
+  clientMeks: {
+    clientId: number;
+    encMek: string;
+  }[],
 ) => {
  await db.transaction(async (tx) => {
    // 1. Check if the clientMeks are valid
@@ -59,34 +51,35 @@ export const registerActiveMek = async (
        state: "retired",
        retiredAt: new Date(),
      })
-      .where(and(eq(mek.userId, userId), lt(mek.version, version), eq(mek.state, "active")))
-      .execute();
-    await tx
-      .insert(mek)
-      .values({
-        userId,
-        version,
-        createdBy,
-        createdAt: new Date(),
-        state: "active",
-      })
-      .execute();
+      .where(and(eq(mek.userId, userId), lt(mek.version, version), eq(mek.state, "active")));
+    await tx.insert(mek).values({
+      userId,
+      version,
+      createdBy,
+      createdAt: new Date(),
+      state: "active",
+    });

    // 3. Insert the new client MEKs
-    await tx
-      .insert(clientMek)
-      .values(
-        clientMeks.map(({ clientId, encMek }) => ({
-          userId,
-          clientId,
-          mekVersion: version,
-          encMek,
-        })),
-      )
-      .execute();
+    await tx.insert(clientMek).values(
+      clientMeks.map(({ clientId, encMek }) => ({
+        userId,
+        clientId,
+        mekVersion: version,
+        encMek,
+      })),
+    );
  });
 };

+export const getAllValidMeks = async (userId: number) => {
+  return await db
+    .select()
+    .from(mek)
+    .where(and(eq(mek.userId, userId), or(eq(mek.state, "active"), eq(mek.state, "retired"))))
+    .execute();
+};
+
 export const getInitialMek = async (userId: number) => {
  const meks = await db
    .select()
@@ -110,6 +103,54 @@ export const getNextActiveMekVersion = async (userId: number) => {
  return meks[0].version + 1;
 };

+export const registerClientMeks = async (
+  userId: number,
+  clientId: number,
+  clientMeks: {
+    version: number;
+    encMek: string;
+  }[],
+) => {
+  await db.transaction(async (tx) => {
+    // 1. Check if the client is valid
+    const userClients = await tx
+      .select()
+      .from(userClient)
+      .where(
+        and(
+          eq(userClient.userId, userId),
+          eq(userClient.clientId, clientId),
+          eq(userClient.state, "active"),
+        ),
+      );
+    if (userClients.length === 0) {
+      throw new Error("Invalid client");
+    }
+
+    // 2. Check if the clientMeks are valid
+    const meks = await tx
+      .select()
+      .from(mek)
+      .where(and(eq(mek.userId, userId), or(eq(mek.state, "active"), eq(mek.state, "retired"))));
+    if (
+      clientMeks.length !== meks.length ||
+      !clientMeks.every((clientMek) => meks.some((mek) => mek.version === clientMek.version))
+    ) {
+      throw new Error("Invalid key list");
+    }
+
+    // 3. Insert the client MEKs
+    await tx.insert(clientMek).values(
+      clientMeks.map(({ version, encMek }) => ({
+        userId,
+        clientId,
+        mekVersion: version,
+        encMek,
+      })),
+    );
+  });
+};
+
 export const getAllValidClientMeks = async (userId: number, clientId: number) => {
  return await db
    .select()
--- a/src/lib/server/db/schema/client.ts
+++ b/src/lib/server/db/schema/client.ts
@@ -4,7 +4,7 @@ import { user } from "./user";
 export const client = sqliteTable(
  "client",
  {
-    id: integer("id").primaryKey(),
+    id: integer("id").primaryKey({ autoIncrement: true }),
    encPubKey: text("encryption_public_key").notNull().unique(), // Base64
    sigPubKey: text("signature_public_key").notNull().unique(), // Base64
  },
--- a/src/lib/server/db/schema/user.ts
+++ b/src/lib/server/db/schema/user.ts
@@ -1,7 +1,7 @@
 import { sqliteTable, text, integer } from "drizzle-orm/sqlite-core";

 export const user = sqliteTable("user", {
-  id: integer("id").primaryKey(),
+  id: integer("id").primaryKey({ autoIncrement: true }),
  email: text("email").notNull().unique(),
  password: text("password").notNull(),
 });