coder
diff --git a/‎coderd/database/dbauthz/querier.go
Lines changed: 4 additions & 0 deletions b/‎coderd/database/dbauthz/querier.go
Lines changed: 4 additions & 0 deletions
diff --git a/‎coderd/database/dbauthz/querier_test.go
Lines changed: 10 additions & 0 deletions b/‎coderd/database/dbauthz/querier_test.go
Lines changed: 10 additions & 0 deletions
diff --git a/‎coderd/database/dbfake/databasefake.go
Lines changed: 15 additions & 0 deletions b/‎coderd/database/dbfake/databasefake.go
Lines changed: 15 additions & 0 deletions
diff --git a/‎coderd/database/dbgen/generator.go
Lines changed: 1 addition & 0 deletions b/‎coderd/database/dbgen/generator.go
Lines changed: 1 addition & 0 deletions
diff --git a/‎coderd/database/dump.sql
Lines changed: 2 additions & 3 deletions b/‎coderd/database/dump.sql
Lines changed: 2 additions & 3 deletions
diff --git a/‎coderd/database/migrations/000100_add_apikey_name.up.sql
Lines changed: 0 additions & 3 deletions b/‎coderd/database/migrations/000100_add_apikey_name.up.sql
Lines changed: 0 additions & 3 deletions
diff --git a/‎coderd/database/migrations/000100_add_apikey_name.down.sql renamed to ‎coderd/database/migrations/000101_add_apikey_name.down.sql b/‎coderd/database/migrations/000100_add_apikey_name.down.sql renamed to ‎coderd/database/migrations/000101_add_apikey_name.down.sql
diff --git a/‎coderd/database/migrations/000101_add_apikey_name.up.sql
Lines changed: 17 additions & 0 deletions b/‎coderd/database/migrations/000101_add_apikey_name.up.sql
Lines changed: 17 additions & 0 deletions
diff --git a/‎coderd/database/querier.go
Lines changed: 2 additions & 0 deletions b/‎coderd/database/querier.go
Lines changed: 2 additions & 0 deletions
diff --git a/‎coderd/database/queries.sql.go
Lines changed: 39 additions & 0 deletions b/‎coderd/database/queries.sql.go
Lines changed: 39 additions & 0 deletions
diff --git a/‎coderd/database/queries/apikeys.sql
Lines changed: 13 additions & 0 deletions b/‎coderd/database/queries/apikeys.sql
Lines changed: 13 additions & 0 deletions
diff --git a/‎coderd/database/unique_constraint.go
Lines changed: 1 addition & 1 deletion b/‎coderd/database/unique_constraint.go
Lines changed: 1 addition & 1 deletion
diff --git a/‎codersdk/apikey.go
Lines changed: 3 additions & 3 deletions b/‎codersdk/apikey.go
Lines changed: 3 additions & 3 deletions
@@ -36,6 +36,10 @@ func (q *querier) GetAPIKeyByID(ctx context.Context, id string) (database.APIKey
 	return fetch(q.log, q.auth, q.db.GetAPIKeyByID)(ctx, id)
 }
 
+func (q *querier) GetAPIKeyByName(ctx context.Context, arg database.GetAPIKeyByNameParams) (database.APIKey, error) {
+	return fetch(q.log, q.auth, q.db.GetAPIKeyByName)(ctx, arg)
+}
+
 func (q *querier) GetAPIKeysByLoginType(ctx context.Context, loginType database.LoginType) ([]database.APIKey, error) {
 	return fetchWithPostFilter(q.auth, q.db.GetAPIKeysByLoginType)(ctx, loginType)
 }
 
@@ -23,6 +23,16 @@ func (s *MethodTestSuite) TestAPIKey() {
 		key, _ := dbgen.APIKey(s.T(), db, database.APIKey{})
 		check.Args(key.ID).Asserts(key, rbac.ActionRead).Returns(key)
 	}))
+	s.Run("GetAPIKeyByName", s.Subtest(func(db database.Store, check *expects) {
+		key, _ := dbgen.APIKey(s.T(), db, database.APIKey{
+			TokenName: "marge-cat",
+			LoginType: database.LoginTypeToken,
+		})
+		check.Args(database.GetAPIKeyByNameParams{
+			TokenName: key.TokenName,
+			UserID:    key.UserID,
+		}).Asserts(key, rbac.ActionRead).Returns(key)
+	}))
 	s.Run("GetAPIKeysByLoginType", s.Subtest(func(db database.Store, check *expects) {
 		a, _ := dbgen.APIKey(s.T(), db, database.APIKey{LoginType: database.LoginTypePassword})
 		b, _ := dbgen.APIKey(s.T(), db, database.APIKey{LoginType: database.LoginTypePassword})
 
@@ -454,6 +454,21 @@ func (q *fakeQuerier) GetAPIKeyByID(_ context.Context, id string) (database.APIK
 	return database.APIKey{}, sql.ErrNoRows
 }
 
+func (q *fakeQuerier) GetAPIKeyByName(_ context.Context, params database.GetAPIKeyByNameParams) (database.APIKey, error) {
+	q.mutex.RLock()
+	defer q.mutex.RUnlock()
+
+	if params.TokenName == "" {
+		return database.APIKey{}, sql.ErrNoRows
+	}
+	for _, apiKey := range q.apiKeys {
+		if params.UserID == apiKey.UserID && params.TokenName == apiKey.TokenName {
+			return apiKey, nil
+		}
+	}
+	return database.APIKey{}, sql.ErrNoRows
+}
+
 func (q *fakeQuerier) GetAPIKeysLastUsedAfter(_ context.Context, after time.Time) ([]database.APIKey, error) {
 	q.mutex.RLock()
 	defer q.mutex.RUnlock()
 
@@ -90,6 +90,7 @@ func APIKey(t testing.TB, db database.Store, seed database.APIKey) (key database
 		UpdatedAt:       takeFirst(seed.UpdatedAt, database.Now()),
 		LoginType:       takeFirst(seed.LoginType, database.LoginTypePassword),
 		Scope:           takeFirst(seed.Scope, database.APIKeyScopeAll),
+		TokenName:       takeFirst(seed.TokenName),
 	})
 	require.NoError(t, err, "insert api key")
 	return key, fmt.Sprintf("%s-%s", key.ID, secret)
 
@@ -0,0 +1,17 @@
+BEGIN;
+
+ALTER TABLE ONLY api_keys
+  ADD COLUMN IF NOT EXISTS token_name text NOT NULL DEFAULT '';
+
+UPDATE
+  api_keys
+SET
+  token_name = gen_random_uuid ()::text
+WHERE
+  login_type = 'token';
+
+CREATE UNIQUE INDEX idx_api_key_name ON api_keys USING btree (user_id, token_name)
+WHERE
+  (login_type = 'token');
+
+COMMIT;
@@ -8,6 +8,19 @@ WHERE
 LIMIT
 	1;
 
+-- name: GetAPIKeyByName :one
+SELECT
+	*
+FROM
+	api_keys
+WHERE
+	user_id = @user_id AND
+	token_name = @token_name AND
+-- there is no unique constraint on empty token names
+	token_name != ''
+LIMIT
+	1;
+
 -- name: GetAPIKeysLastUsedAfter :many
 SELECT * FROM api_keys WHERE last_used > $1;
 
 
@@ -135,9 +135,9 @@ func (c *Client) APIKey(ctx context.Context, userID string, id string) (*APIKey,
 	return apiKey, json.NewDecoder(res.Body).Decode(apiKey)
 }
 
-// DeleteAPIKey deletes API key by id.
-func (c *Client) DeleteAPIKey(ctx context.Context, userID string, id string) error {
-	res, err := c.Request(ctx, http.MethodDelete, fmt.Sprintf("/api/v2/users/%s/keys/%s", userID, id), nil)
+// DeleteAPIKey deletes API key by name.
+func (c *Client) DeleteAPIKey(ctx context.Context, userID string, name string) error {
+	res, err := c.Request(ctx, http.MethodDelete, fmt.Sprintf("/api/v2/users/%s/keys/%s", userID, name), nil)
 	if err != nil {
 		return err
 	}
Original file line number	Diff line number	Diff line change
`@@ -36,6 +36,10 @@ func (q *querier) GetAPIKeyByID(ctx context.Context, id string) (database.APIKey`
`36`	`36`	`return fetch(q.log, q.auth, q.db.GetAPIKeyByID)(ctx, id)`
`37`	`37`	`}`
`38`	`38`
	`39`	`+func (q *querier) GetAPIKeyByName(ctx context.Context, arg database.GetAPIKeyByNameParams) (database.APIKey, error) {`
	`40`	`+ return fetch(q.log, q.auth, q.db.GetAPIKeyByName)(ctx, arg)`
	`41`	`+}`
	`42`	`+`
`39`	`43`	`func (q *querier) GetAPIKeysByLoginType(ctx context.Context, loginType database.LoginType) ([]database.APIKey, error) {`
`40`	`44`	`return fetchWithPostFilter(q.auth, q.db.GetAPIKeysByLoginType)(ctx, loginType)`
`41`	`45`	`}`
Original file line number	Diff line number	Diff line change
`@@ -135,9 +135,9 @@ func (c Client) APIKey(ctx context.Context, userID string, id string) (APIKey,`
`135`	`135`	`return apiKey, json.NewDecoder(res.Body).Decode(apiKey)`
`136`	`136`	`}`
`137`	`137`
`138`		`-// DeleteAPIKey deletes API key by id.`
`139`		`-func (c *Client) DeleteAPIKey(ctx context.Context, userID string, id string) error {`
`140`		`- res, err := c.Request(ctx, http.MethodDelete, fmt.Sprintf("/api/v2/users/%s/keys/%s", userID, id), nil)`
	`138`	`+// DeleteAPIKey deletes API key by name.`
	`139`	`+func (c *Client) DeleteAPIKey(ctx context.Context, userID string, name string) error {`
	`140`	`+ res, err := c.Request(ctx, http.MethodDelete, fmt.Sprintf("/api/v2/users/%s/keys/%s", userID, name), nil)`
`141`	`141`	`if err != nil {`
`142`	`142`	`return err`
`143`	`143`	`}`