Add API Key Management and Backend Enhancements

Introduced API key management for programmatic plugin uploads, including generation, validation, and revocation. Added `GenerateApiKeyHandler`, `GenerateApiKeyRequest`, `GenerateApiKeyResponse`, and `GenerateApiKeyValidator` for backend handling. Updated `MediatorExtensions` and `ApiKeys.cs` to support API key operations.

Enhanced `IApiKeyService` and `ApiKeyService` with permissions and plugin restrictions. Updated `StatsApiService` to validate API keys during plugin uploads. Added `ICurrentUserService` for user authentication and role management.

Improved the UI with a new "API Keys" page (`ApiKeys.razor`) and modals for creating and revoking keys. Updated `app.css` for better button styles and modal appearance.

Refactored `ApiKeyService` to simplify API key creation logic. Fixed `ApiClient` to support cancellation tokens. Updated `ApplicationContext` to normalize `DateTime` values to UTC and improve exception handling.

Registered new services (`IApiKeyClientService`, `ICurrentUserService`) in `ServiceCollectionExtensions` and `Program.cs`. Added `CreateApiKeyDialog.razor` for API key creation with expiration, permissions, and plugin restrictions.

#45

Author: ziagham

src/FlowSynx.PluginRegistry.Application/Extensions/MediatorExtensions.cs

@@ -1,4 +1,5 @@
-using FlowSynx.PluginRegistry.Application.Features.Plugins.Command.SetPluginVersionActiveStatus;
+using FlowSynx.PluginRegistry.Application.Features.ApiKeys.Command.GenerateKey;
+using FlowSynx.PluginRegistry.Application.Features.Plugins.Command.SetPluginVersionActiveStatus;
 using FlowSynx.PluginRegistry.Application.Features.Plugins.Query.PluginDetails;
 using FlowSynx.PluginRegistry.Application.Features.Plugins.Query.PluginIcon;
 using FlowSynx.PluginRegistry.Application.Features.Plugins.Query.PluginLocation;
@@ -134,4 +135,12 @@ public static Task<Result<Unit>> IncreaseDownloadCountAsync(
         return mediator.Send(request, cancellationToken);
     }
     #endregion
+
+    #region ApiKeys
+    public static Task<Result<GenerateApiKeyResponse>> GenerateApiKey(
+    this IMediator mediator, GenerateApiKeyRequest request, CancellationToken cancellationToken)
+    {
+        return mediator.Send(request, cancellationToken);
+    }
+    #endregion
 }

src/FlowSynx.PluginRegistry.Application/Features/ApiKeys/Command/GenerateKey/GenerateApiKeyHandler.cs

@@ -0,0 +1,85 @@
+using FlowSynx.PluginRegistry.Application.Services;
+using FlowSynx.PluginRegistry.Application.Wrapper;
+using FlowSynx.PluginRegistry.Domain.ApiKey;
+using FlowSynx.PluginRegistry.Domain.Plugin;
+using FlowSynx.PluginRegistry.Domain.Profile;
+using MediatR;
+using Microsoft.Extensions.Logging;
+
+namespace FlowSynx.PluginRegistry.Application.Features.ApiKeys.Command.GenerateKey;
+
+internal class GenerateApiKeyHandler : IRequestHandler<GenerateApiKeyRequest, Result<GenerateApiKeyResponse>>
+{
+    private readonly ILogger<GenerateApiKeyHandler> _logger;
+    private readonly IPluginVersionService _pluginVersionService;
+    private readonly IProfileService _profileService;
+    private readonly ICurrentUserService _currentUserService;
+    private readonly IApiKeyService _apiKeyService;
+
+    public GenerateApiKeyHandler(
+        ILogger<GenerateApiKeyHandler> logger, 
+        IPluginVersionService pluginVersionService,
+        IProfileService profileService,
+        ICurrentUserService currentUserService,
+        IApiKeyService apiKeyService)
+    {
+        ArgumentNullException.ThrowIfNull(logger);
+        ArgumentNullException.ThrowIfNull(pluginVersionService);
+        ArgumentNullException.ThrowIfNull(profileService);
+        ArgumentNullException.ThrowIfNull(currentUserService);
+        ArgumentNullException.ThrowIfNull(apiKeyService);
+        _logger = logger;
+        _pluginVersionService = pluginVersionService;
+        _profileService = profileService;
+        _currentUserService = currentUserService;
+        _apiKeyService = apiKeyService;
+    }
+
+    public async Task<Result<GenerateApiKeyResponse>> Handle(GenerateApiKeyRequest request, CancellationToken cancellationToken)
+    {
+        try
+        {
+            _currentUserService.ValidateAuthentication();
+
+            var profileId = await GetCurrentUserProfileId(cancellationToken);
+            if (profileId == Guid.Empty)
+                return await Result<GenerateApiKeyResponse>.FailAsync("User profile not found");
+
+            var result = await _apiKeyService.GenerateKey(
+                request.Name,
+                profileId,
+                request.CanPushNewPlugins,
+                request.CanPushPluginVersions,
+                request.ExpiresAt,
+                request.PluginIds,
+                cancellationToken);
+
+            var response = new GenerateApiKeyResponse
+            {
+                Id = result.Id,
+                Name = result.Name,
+                RawKey = result.RawKey,
+                Key = result.Key,
+                CreatedAt = result.CreatedOn,
+                ExpiresAt = result.ExpiresAt,
+                IsRevoked = result.IsRevoked,
+                CanPushNewPlugins = result.CanPushNewPlugins,
+                CanPushPluginVersions = result.CanPushPluginVersions,
+                AssignedPlugins = result.PluginAssignments?.Select(p => p.PluginId.ToString()).ToList() ?? new()
+            };
+
+            return await Result<GenerateApiKeyResponse>.SuccessAsync(response, "API key generating successfully");
+        }
+        catch (Exception ex)
+        {
+            _logger.LogError(ex, "Error generating API key");
+            return await Result<GenerateApiKeyResponse>.FailAsync($"Error generating API key: {ex.Message}");
+        }
+    }
+
+    private async Task<Guid> GetCurrentUserProfileId(CancellationToken cancellationToken)
+    {
+        var profile = await _profileService.GetByUserId(_currentUserService.UserId(), cancellationToken);
+        return profile?.Id ?? Guid.Empty;
+    }
+}

src/FlowSynx.PluginRegistry.Application/Features/ApiKeys/Command/GenerateKey/GenerateApiKeyRequest.cs

@@ -0,0 +1,13 @@
+using FlowSynx.PluginRegistry.Application.Wrapper;
+using MediatR;
+
+namespace FlowSynx.PluginRegistry.Application.Features.ApiKeys.Command.GenerateKey;
+
+public class GenerateApiKeyRequest : IRequest<Result<GenerateApiKeyResponse>>
+{
+    public string Name { get; set; } = string.Empty;
+    public DateTime? ExpiresAt { get; set; }
+    public bool CanPushNewPlugins { get; set; } = false;
+    public bool CanPushPluginVersions { get; set; } = true;
+    public List<Guid> PluginIds { get; set; } = new();
+}

src/FlowSynx.PluginRegistry.Application/Features/ApiKeys/Command/GenerateKey/GenerateApiKeyResponse.cs

@@ -0,0 +1,17 @@
+namespace FlowSynx.PluginRegistry.Application.Features.ApiKeys.Command.GenerateKey;
+
+public class GenerateApiKeyResponse
+{
+    public Guid Id { get; set; }
+    public string RawKey { get; set; } = string.Empty;
+    public string Name { get; set; } = string.Empty;
+    public string Key { get; set; } = string.Empty;
+    public DateTime CreatedAt { get; set; }
+    public DateTime? ExpiresAt { get; set; }
+    public bool IsRevoked { get; set; }
+    public bool CanPushNewPlugins { get; set; }
+    public bool CanPushPluginVersions { get; set; }
+    public bool IsExpired => ExpiresAt.HasValue && ExpiresAt.Value <= DateTime.UtcNow;
+    public bool IsActive => !IsRevoked && !IsExpired;
+    public List<string> AssignedPlugins { get; set; } = new();
+}

src/FlowSynx.PluginRegistry.Application/Features/ApiKeys/Command/GenerateKey/GenerateApiKeyValidator.cs

@@ -0,0 +1,14 @@
+using FluentValidation;
+
+namespace FlowSynx.PluginRegistry.Application.Features.ApiKeys.Command.GenerateKey;
+
+public class GenerateApiKeyValidator : AbstractValidator<GenerateApiKeyRequest>
+{
+    public GenerateApiKeyValidator()
+    {
+        RuleFor(x => x.Name)
+            .NotNull()
+            .NotEmpty()
+            .WithMessage("API key name is required");
+    }
+}

src/FlowSynx.PluginRegistry.Application/Features/Plugins/Query/PluginsListByProfile/PluginsListByProfileHandler.cs

@@ -33,6 +33,7 @@ public async Task<PaginatedResult<PluginsListByProfileResponse>> Handle(PluginsL
 
             var response = plugins.Data.Select(p => new PluginsListByProfileResponse
             {
+                Id = p.Id,
                 Type = p.Type,
                 Version = p.LatestVersion!.Version,
                 Owners = p.Owners.Select(x => x.Profile!.UserName),

src/FlowSynx.PluginRegistry.Application/Features/Plugins/Query/PluginsListByProfile/PluginsListByProfileResponse.cs

@@ -2,6 +2,7 @@
 
 public class PluginsListByProfileResponse
 {
+    public required Guid Id { get; set; }
     public required string Type { get; set; }
     public required string Version { get; set; }
     public string? Description { get; set; }

src/FlowSynx.PluginRegistry.Application/Services/ICurrentUserService.cs

@@ -0,0 +1,10 @@
+namespace FlowSynx.PluginRegistry.Application.Services;
+
+public interface ICurrentUserService
+{
+    string UserId();
+    string UserName();
+    bool IsAuthenticated();
+    List<string> Roles();
+    void ValidateAuthentication();
+}

src/FlowSynx.PluginRegistry.Domain/ApiKey/IApiKeyService.cs

@@ -6,8 +6,14 @@ public interface IApiKeyService
 
     Task Add(ApiKeyEntity apiKeyEntity, CancellationToken cancellationToken);
 
-    Task<(string rawKey, ApiKeyEntity savedKey)> GenerateKey(string name, Guid profileId, DateTime? expiresAt, 
-        List<Guid>? pluginIds, CancellationToken cancellationToken);
+    Task<ApiKeyEntity> GenerateKey(
+        string name, 
+        Guid profileId, 
+        bool? canPushNewPlugins,
+        bool? canPushPluginVersions,
+        DateTime? expiresAt, 
+        List<Guid>? pluginIds, 
+        CancellationToken cancellationToken);
 
     Task<bool> ValidateApiKeyAsync(string rawKey, Guid pluginId, CancellationToken cancellationToken);
 

src/FlowSynx.PluginRegistry.Infrastructure/Contexts/ApplicationContext.cs

@@ -46,6 +46,7 @@ public ApplicationContext(DbContextOptions<ApplicationContext> contextOptions,
         {
             HandleSoftDelete();
             ApplyAuditing();
+            NormalizeDateTimes();
 
             var userId = GetUserId();
             if (string.IsNullOrEmpty(userId))
@@ -55,7 +56,7 @@ public ApplicationContext(DbContextOptions<ApplicationContext> contextOptions,
         }
         catch (Exception ex)
         {
-            throw new Exception(ex.Message);
+            throw new Exception(ex.Message, ex);
         }
     }
 
@@ -72,7 +73,7 @@ private void HandleSoftDelete()
         }
         catch (Exception ex)
         {
-            throw new Exception(ex.Message);
+            throw new Exception(ex.Message, ex);
         }
     }
 
@@ -104,7 +105,35 @@ private void ApplyAuditing()
         }
         catch (Exception ex)
         {
-            throw new Exception(ex.Message);
+            throw new Exception(ex.Message, ex);
+        }
+    }
+
+    private void NormalizeDateTimes()
+    {
+        try
+        {
+            var entries = ChangeTracker.Entries()
+                .Where(e => e.State == EntityState.Added || e.State == EntityState.Modified);
+
+            foreach (var entry in entries)
+            {
+                foreach (var property in entry.Properties)
+                {
+                    if (property.CurrentValue is DateTime dateTime && dateTime.Kind == DateTimeKind.Unspecified)
+                    {
+                        var utcDateTime = DateTime.SpecifyKind(dateTime, DateTimeKind.Utc);
+                        // For nullable DateTime properties, explicitly cast to object to ensure proper boxing
+                        property.CurrentValue = property.Metadata.ClrType == typeof(DateTime?) 
+                            ? (DateTime?)utcDateTime 
+                            : utcDateTime;
+                    }
+                }
+            }
+        }
+        catch (Exception ex)
+        {
+            throw new Exception(ex.Message, ex);
         }
     }
 
@@ -120,7 +149,7 @@ protected override void OnModelCreating(ModelBuilder builder)
         }
         catch (Exception ex)
         {
-            throw new Exception(ex.Message);
+            throw new Exception(ex.Message, ex);
         }
     }
 }