Pierre Fitness Platform MCP Server

Overview Schema Related Servers Score Discussions

api_keys.rs•5.2 kB

// ABOUTME: API key management route handlers for user self-service key operations // ABOUTME: Provides REST endpoints for creating, listing, and managing API keys with authentication // // SPDX-License-Identifier: MIT OR Apache-2.0 // Copyright (c) 2025 Pierre Fitness Intelligence //! API key management routes //! //! This module handles API key creation, listing, deactivation, and usage tracking //! for authenticated users. All handlers require valid JWT authentication. use crate::{ api_key_routes::ApiKeyRoutes as ApiKeyService, api_keys::CreateApiKeyRequestSimple, auth::AuthResult, errors::AppError, mcp::resources::ServerResources, security::cookies::get_cookie_value, }; use axum::{ extract::{Path, State}, http::{HeaderMap, StatusCode}, response::{IntoResponse, Response}, routing::{delete, get, post}, Json, Router, }; use std::{future, sync::Arc}; /// API key management routes pub struct ApiKeyRoutes; impl ApiKeyRoutes { /// Create all API key management routes pub fn routes(resources: Arc<ServerResources>) -> Router { Router::new() .route("/api/keys", post(Self::handle_create_api_key)) .route("/api/keys", get(Self::handle_list_api_keys)) .route("/api/keys/:key_id", delete(Self::handle_deactivate_api_key)) .route("/api/keys/usage", get(Self::handle_get_usage)) .with_state(resources) } /// Extract and authenticate user from authorization header or cookie async fn authenticate( headers: &HeaderMap, resources: &Arc<ServerResources>, ) -> Result<AuthResult, AppError> { // Try Authorization header first, then fall back to auth_token cookie let auth_value = if let Some(auth_header) = headers.get("authorization").and_then(|h| h.to_str().ok()) { auth_header.to_owned() } else if let Some(token) = get_cookie_value(headers, "auth_token") { // Fall back to auth_token cookie, format as Bearer token format!("Bearer {token}") } else { return Err(AppError::auth_invalid( "Missing authorization header or cookie", )); }; resources .auth_middleware .authenticate_request(Some(&auth_value)) .await .map_err(|e| AppError::auth_invalid(format!("Authentication failed: {e}"))) } /// Handle API key creation async fn handle_create_api_key( State(resources): State<Arc<ServerResources>>, headers: HeaderMap, Json(request): Json<CreateApiKeyRequestSimple>, ) -> Result<Response, AppError> { // Authenticate user from JWT token let auth = Self::authenticate(&headers, &resources).await?; // Create API key using service layer let service = ApiKeyService::new(resources); let response = service .create_api_key_simple(&auth, request) .await .map_err(|e| AppError::internal(format!("Failed to create API key: {e}")))?; Ok((StatusCode::CREATED, Json(response)).into_response()) } /// Handle listing user's API keys async fn handle_list_api_keys( State(resources): State<Arc<ServerResources>>, headers: HeaderMap, ) -> Result<Response, AppError> { // Authenticate user from JWT token let auth = Self::authenticate(&headers, &resources).await?; // List API keys using service layer let service = ApiKeyService::new(resources); let response = service .list_api_keys(&auth) .await .map_err(|e| AppError::internal(format!("Failed to list API keys: {e}")))?; Ok((StatusCode::OK, Json(response)).into_response()) } /// Handle API key deactivation async fn handle_deactivate_api_key( State(resources): State<Arc<ServerResources>>, headers: HeaderMap, Path(key_id): Path<String>, ) -> Result<Response, AppError> { // Authenticate user from JWT token let auth = Self::authenticate(&headers, &resources).await?; // Deactivate API key using service layer let service = ApiKeyService::new(resources); let response = service .deactivate_api_key(&auth, &key_id) .await .map_err(|e| AppError::internal(format!("Failed to deactivate API key: {e}")))?; Ok((StatusCode::OK, Json(response)).into_response()) } /// Handle getting API key usage statistics async fn handle_get_usage( State(resources): State<Arc<ServerResources>>, headers: HeaderMap, ) -> Result<Response, AppError> { // Authenticate user from JWT token (result unused - just validates auth) Self::authenticate(&headers, &resources).await?; // Note: get_api_key_usage requires api_key_id, start_date, end_date parameters // This endpoint needs query parameter support - stub for now future::ready(Err(AppError::internal( "API key usage endpoint requires query parameter implementation", ))) .await } }

Loading blob content...

Latest Blog Posts

Don't Use Large Strings as Cache Keys
By punkpeye on January 11, 2026.
markdown
node-js
cache
What are Claude Skills?
By punkpeye on January 10, 2026.
mcp
skills
How to Test MCP Streamable HTTP Endpoints Using cURL
By punkpeye on January 2, 2026.
tutorial
bash

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/jfarcand/pierre_mcp_server'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

api_keys.rs•5.2 kB