Finish functionality to generate API key and authenticate with it#3
Merged
Finish functionality to generate API key and authenticate with it#3
Conversation
Contributor
There was a problem hiding this comment.
Pull Request Overview
This PR implements complete API key functionality, enabling users to generate API keys through the frontend and authenticate with them on the backend. The implementation replaces the previous mock/placeholder functionality with a full working system.
- Replaces mock API key generation with real backend integration
- Adds database support for storing API keys with unique constraints
- Implements API key authentication filter for secure access
Reviewed Changes
Copilot reviewed 9 out of 9 changed files in this pull request and generated 2 comments.
Show a summary per file
| File | Description |
|---|---|
| frontend/src/pages/Profile.tsx | Replaces mock API key generation with real backend API call |
| backend/src/main/resources/db/migration/V3__add_api_key_column.sql | Adds API key column and unique index to user_account table |
| backend/src/main/java/net/hackyourfuture/coursehub/web/model/ApiKeyResponse.java | Creates response model for API key generation endpoint |
| backend/src/main/java/net/hackyourfuture/coursehub/web/UserAuthenticationController.java | Adds POST endpoint for generating API keys |
| backend/src/main/java/net/hackyourfuture/coursehub/service/UserAuthenticationService.java | Implements secure API key generation and user lookup by API key |
| backend/src/main/java/net/hackyourfuture/coursehub/security/ApiKeyAuthenticationFilter.java | Creates authentication filter for API key-based requests |
| backend/src/main/java/net/hackyourfuture/coursehub/repository/UserAccountRepository.java | Adds database methods for API key storage and retrieval |
| backend/src/main/java/net/hackyourfuture/coursehub/data/UserAccountEntity.java | Updates entity to include API key field |
| backend/src/main/java/net/hackyourfuture/coursehub/SecurityConfig.java | Integrates API key authentication filter into security chain |
Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.
backend/src/main/java/net/hackyourfuture/coursehub/web/UserAuthenticationController.java
Outdated
Show resolved
Hide resolved
backend/src/main/java/net/hackyourfuture/coursehub/security/ApiKeyAuthenticationFilter.java
Show resolved
Hide resolved
Breus
force-pushed
the
api-key-generation-authentication
branch
from
11b0dce to
e3aa5e8
Compare
Contributor
There was a problem hiding this comment.
Pull Request Overview
Copilot reviewed 9 out of 9 changed files in this pull request and generated 2 comments.
Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.
backend/src/main/java/net/hackyourfuture/coursehub/security/ApiKeyAuthenticationFilter.java
Show resolved
Hide resolved
backend/src/main/java/net/hackyourfuture/coursehub/service/UserAuthenticationService.java
Outdated
Show resolved
Hide resolved
| public class ApiKeyAuthenticationFilter extends OncePerRequestFilter { | ||
|
|
||
| private final UserAuthenticationService userAuthenticationService; | ||
| private static final String API_KEY_HEADER = "X-API-Key"; |
Collaborator
There was a problem hiding this comment.
Why not use standard Authorization: <api-key> header?
gavlyukovskiy
approved these changes
Oct 19, 2025
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
No description provided.