feat!: refactor swagger API authentication (0xfurai#210)

* feat: refactor swagger API authentication

- Updated security definitions in Swagger and Go files to replace BearerAuth with JwtAuth.
- Simplified API key and JWT authentication across various controllers and middleware.
- Removed unauthorized response handling from API documentation.
- Enhanced API key management documentation for clarity.
- Updated frontend SDK to reflect changes in API key and JWT authentication methods.

* refactor(auth_chain): update logging level for missing authentication headers

- Changed log level from Warn to Debug for missing authentication headers in AllAuth method to reduce log noise.
- Minor formatting adjustment in the code for improved readability.

* refactor(auth_chain): change logging levels for authentication routing

- Updated log level from Info to Debug for API key and JWT authentication routing to reduce log verbosity.
- Changed log level from Debug to Warn for missing authentication headers to highlight critical issues more effectively.

* fix(api_key): standardize error messages for invalid API keys

- Updated error messages in the ValidateKey method to use lowercase "invalid API key" for consistency.

* fix(api_key): update context usage in API key validation

- Changed the context parameter in the ValidateKey method call from the gin context to the request context for improved consistency and reliability in API key validation.

* feat(api_key): add comprehensive tests for API key service and middleware

- Introduced unit tests for the API key service, covering key creation, validation, expiration handling, and usage limits.
- Added middleware tests to ensure proper authentication flow and error handling for missing or invalid API keys.
- Implemented a mock service for testing middleware interactions, enhancing test coverage and reliability.

* feat(api_key): add integration tests for API key service functionality

- Introduced a new integration test suite for the API key service, covering key creation, validation, expiration handling, and usage limits.
- Implemented tests for middleware interactions with real HTTP requests to ensure proper authentication flow.
- Enhanced test coverage by validating key usage count updates and handling of expired keys.

Author: tafaust

apps/server/docs/docs.go

@@ -1367,31 +1367,27 @@ info:
 paths:
   /api-keys:
     get:
-      description: Get all API keys for the authenticated user
+      description: Get all API keys
       produces:
       - application/json
       responses:
         "200":
           description: OK
           schema:
             $ref: '#/definitions/utils.ApiResponse-array_api_key_APIKeyResponse'
-        "401":
-          description: Unauthorized
-          schema:
-            $ref: '#/definitions/utils.APIError'
         "500":
           description: Internal Server Error
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
       summary: Get API keys
       tags:
       - api-keys
     post:
       consumes:
       - application/json
-      description: Create a new API key for the authenticated user
+      description: Create a new API key
       parameters:
       - description: API key creation data
         in: body
@@ -1410,16 +1406,12 @@ paths:
           description: Bad Request
           schema:
             $ref: '#/definitions/utils.APIError'
-        "401":
-          description: Unauthorized
-          schema:
-            $ref: '#/definitions/utils.APIError'
         "500":
           description: Internal Server Error
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
       summary: Create API key
       tags:
       - api-keys
@@ -1435,10 +1427,6 @@ paths:
       responses:
         "204":
           description: No Content
-        "401":
-          description: Unauthorized
-          schema:
-            $ref: '#/definitions/utils.APIError'
         "404":
           description: Not Found
           schema:
@@ -1448,7 +1436,7 @@ paths:
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
       summary: Delete API key
       tags:
       - api-keys
@@ -1467,10 +1455,6 @@ paths:
           description: OK
           schema:
             $ref: '#/definitions/utils.ApiResponse-api_key_APIKeyResponse'
-        "401":
-          description: Unauthorized
-          schema:
-            $ref: '#/definitions/utils.APIError'
         "404":
           description: Not Found
           schema:
@@ -1480,7 +1464,7 @@ paths:
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
       summary: Get API key
       tags:
       - api-keys
@@ -1511,10 +1495,6 @@ paths:
           description: Bad Request
           schema:
             $ref: '#/definitions/utils.APIError'
-        "401":
-          description: Unauthorized
-          schema:
-            $ref: '#/definitions/utils.APIError'
         "404":
           description: Not Found
           schema:
@@ -1524,7 +1504,7 @@ paths:
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
       summary: Update API key
       tags:
       - api-keys
@@ -1567,6 +1547,8 @@ paths:
           description: Internal Server Error
           schema:
             $ref: '#/definitions/utils.APIError'
+      security:
+      - JwtAuth: []
       summary: Disable 2FA (TOTP) for user
       tags:
       - Auth
@@ -1596,6 +1578,8 @@ paths:
           description: Internal Server Error
           schema:
             $ref: '#/definitions/utils.APIError'
+      security:
+      - JwtAuth: []
       summary: Enable 2FA (TOTP) for user
       tags:
       - Auth
@@ -1625,6 +1609,8 @@ paths:
           description: Internal Server Error
           schema:
             $ref: '#/definitions/utils.APIError'
+      security:
+      - JwtAuth: []
       summary: Verify 2FA (TOTP) code for user
       tags:
       - Auth
@@ -1691,6 +1677,8 @@ paths:
           description: Internal Server Error
           schema:
             $ref: '#/definitions/utils.APIError'
+      security:
+      - JwtAuth: []
       summary: Update user password
       tags:
       - Auth
@@ -2056,7 +2044,8 @@ paths:
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
+      - ApiKeyAuth: []
       summary: Get maintenances
       tags:
       - Maintenances
@@ -2086,7 +2075,8 @@ paths:
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
+      - ApiKeyAuth: []
       summary: Create maintenance
       tags:
       - Maintenances
@@ -2344,7 +2334,8 @@ paths:
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
+      - ApiKeyAuth: []
       summary: Get monitors
       tags:
       - Monitors
@@ -2374,7 +2365,8 @@ paths:
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
+      - ApiKeyAuth: []
       summary: Create monitor
       tags:
       - Monitors
@@ -2732,7 +2724,8 @@ paths:
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
+      - ApiKeyAuth: []
       summary: Get monitors by IDs
       tags:
       - Monitors
@@ -2773,7 +2766,8 @@ paths:
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
+      - ApiKeyAuth: []
       summary: Get notification channels
       tags:
       - Notification channels
@@ -2803,7 +2797,8 @@ paths:
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
+      - ApiKeyAuth: []
       summary: Create notification channel
       tags:
       - Notification channels
@@ -2975,7 +2970,8 @@ paths:
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
+      - ApiKeyAuth: []
       summary: Test notification channel
       tags:
       - Notification channels
@@ -3016,7 +3012,8 @@ paths:
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
+      - ApiKeyAuth: []
       summary: Get proxies
       tags:
       - Proxies
@@ -3046,7 +3043,8 @@ paths:
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
+      - ApiKeyAuth: []
       summary: Create proxy
       tags:
       - Proxies
@@ -3215,7 +3213,8 @@ paths:
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
+      - ApiKeyAuth: []
       summary: Delete setting by key
       tags:
       - Settings
@@ -3242,7 +3241,8 @@ paths:
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
+      - ApiKeyAuth: []
       summary: Get setting by key
       tags:
       - Settings
@@ -3277,7 +3277,8 @@ paths:
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
+      - ApiKeyAuth: []
       summary: Set setting by key
       tags:
       - Settings
@@ -3314,7 +3315,8 @@ paths:
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
+      - ApiKeyAuth: []
       summary: Get all status pages
       tags:
       - Status Pages
@@ -3344,7 +3346,8 @@ paths:
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
+      - ApiKeyAuth: []
       summary: Create a new status page
       tags:
       - Status Pages
@@ -3372,7 +3375,8 @@ paths:
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
+      - ApiKeyAuth: []
       summary: Delete a status page
       tags:
       - Status Pages
@@ -3399,7 +3403,8 @@ paths:
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
+      - ApiKeyAuth: []
       summary: Get a status page by ID
       tags:
       - Status Pages
@@ -3438,7 +3443,8 @@ paths:
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
+      - ApiKeyAuth: []
       summary: Update a status page
       tags:
       - Status Pages
@@ -3583,7 +3589,8 @@ paths:
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
+      - ApiKeyAuth: []
       summary: Get tags
       tags:
       - Tags
@@ -3613,7 +3620,8 @@ paths:
           schema:
             $ref: '#/definitions/utils.APIError'
       security:
-      - BearerAuth: []
+      - JwtAuth: []
+      - ApiKeyAuth: []
       summary: Create tag
       tags:
       - Tags
@@ -3774,7 +3782,13 @@ paths:
       tags:
       - System
 securityDefinitions:
-  BearerAuth:
+  ApiKeyAuth:
+    description: API key authentication (pk_ prefix format)
+    in: header
+    name: X-API-Key
+    type: apiKey
+  JwtAuth:
+    description: JWT token authentication (Bearer token format)
     in: header
     name: Authorization
     type: apiKey

apps/server/docs/swagger.json

@@ -42,9 +42,14 @@ import (
 
 // @title			Peekaping API
 // @BasePath	/api/v1
-// @securityDefinitions.apikey BearerAuth
+// @securityDefinitions.apikey JwtAuth
 // @in header
 // @name Authorization
+// @description JWT token authentication (Bearer token format)
+// @securityDefinitions.apikey ApiKeyAuth
+// @in header
+// @name X-API-Key
+// @description API key authentication (pk_ prefix format)
 func main() {
 	docs.SwaggerInfo.Version = version.Version