api/api-keys: add allowedServices to limit or extend access

it's useful for limiting access to services per key, or for overriding default list of enabled services with "all"
2025-06-26 22:20:09 +06:00
parent d69100c68d
commit 3243564f77
4 changed files with 44 additions and 5 deletions
--- a/api/src/core/api.js
+++ b/api/src/core/api.js
@@ -245,7 +245,10 @@ export const runAPI = async (express, app, __dirname, isPrimary = true) => {
            return fail(res, "error.api.invalid_body");
        }

-        const parsed = extract(normalizedRequest.url);
+        const parsed = extract(
+            normalizedRequest.url,
+            APIKeys.getAllowedServices(req.rateLimitKey),
+        );

        if (!parsed) {
            return fail(res, "error.api.link.invalid");