mirror of
https://github.com/zoriya/Kyoo.git
synced 2025-05-24 02:02:36 -04:00
62 lines
996 B
Plaintext
62 lines
996 B
Plaintext
# perm check
|
|
POST {{host}}/keys
|
|
{
|
|
"name": "dryflower",
|
|
"claims": {
|
|
"isAdmin": true,
|
|
"permissions": ["core.read"]
|
|
}
|
|
}
|
|
HTTP 401
|
|
|
|
POST {{host}}/keys
|
|
# this is created from the gh workflow file's env var
|
|
X-API-KEY: hurl-1234apikey
|
|
{
|
|
"name": "dryflower",
|
|
"claims": {
|
|
"isAdmin": true,
|
|
"permissions": ["apikeys.read"]
|
|
}
|
|
}
|
|
HTTP 201
|
|
[Captures]
|
|
id: jsonpath "$.id"
|
|
token: jsonpath "$.token"
|
|
|
|
GET {{host}}/jwt
|
|
X-API-KEY: {{token}}
|
|
HTTP 200
|
|
[Captures]
|
|
jwt: jsonpath "$.token"
|
|
|
|
# Duplicates email
|
|
POST {{host}}/keys
|
|
X-API-KEY: hurl-1234apikey
|
|
{
|
|
"name": "dryflower",
|
|
"claims": {
|
|
"isAdmin": true,
|
|
"permissions": ["core.read"]
|
|
}
|
|
}
|
|
HTTP 409
|
|
|
|
# List
|
|
GET {{host}}/keys
|
|
Authorization: Bearer {{jwt}}
|
|
HTTP 200
|
|
[Asserts]
|
|
jsonpath "$.items[0].id" == {{id}}
|
|
jsonpath "$.items[0].name" == "dryflower"
|
|
jsonpath "$.items[0].claims.permissions" contains "apikeys.read"
|
|
|
|
|
|
DELETE {{host}}/keys/{{id}}
|
|
Authorization: Bearer {{jwt}}
|
|
HTTP 403
|
|
|
|
DELETE {{host}}/keys/{{id}}
|
|
X-API-KEY: hurl-1234apikey
|
|
HTTP 200
|