coder · Kira-Pilot · Mar 16, 2023 · Mar 8, 2023 · Mar 9, 2023 · Mar 10, 2023
diff --git a/.vscode/settings.json b/.vscode/settings.json
@@ -136,6 +136,7 @@
     "thead",
     "tios",
     "tmpdir",
+    "tokenconfig",
     "tparallel",
     "trialer",
     "trimprefix",

diff --git a/coderd/apidoc/docs.go b/coderd/apidoc/docs.go
diff --git a/coderd/apidoc/swagger.json b/coderd/apidoc/swagger.json
diff --git a/coderd/apikey.go b/coderd/apikey.go
@@ -6,6 +6,7 @@ import (
 	"database/sql"
 	"errors"
 	"fmt"
+	"math"
 	"net"
 	"net/http"
 	"strconv"
@@ -339,6 +340,38 @@ func (api *API) deleteAPIKey(rw http.ResponseWriter, r *http.Request) {
 	httpapi.Write(ctx, rw, http.StatusNoContent, nil)
 }
 
+// @Summary Get token config
+// @ID get-token-config
+// @Security CoderSessionToken
+// @Produce json
+// @Tags General
+// @Param user path string true "User ID, name, or me"
+// @Success 200 {object} codersdk.TokenConfig
+// @Router /users/{user}/keys/tokens/tokenconfig [get]
+func (api *API) tokenConfig(rw http.ResponseWriter, r *http.Request) {
+	values, err := api.DeploymentValues.WithoutSecrets()
+	if err != nil {
+		httpapi.InternalServerError(rw, err)
+		return
+	}
+
+	var maxTokenLifetime time.Duration
+	// if --max-token-lifetime is unset (default value is math.MaxInt64)
+	// send back a falsy value
+	if values.MaxTokenLifetime.Value() == time.Duration(math.MaxInt64) {
+		maxTokenLifetime = 0
+	} else {
+		maxTokenLifetime = values.MaxTokenLifetime.Value()
+	}
+
+	httpapi.Write(
+		r.Context(), rw, http.StatusOK,
+		codersdk.TokenConfig{
+			MaxTokenLifetime: maxTokenLifetime,
+		},
+	)
+}
+
 // Generates a new ID and secret for an API key.
 func GenerateAPIKeyIDSecret() (id string, secret string, err error) {
 	// Length of an API Key ID.

diff --git a/coderd/coderd.go b/coderd/coderd.go
@@ -561,6 +561,7 @@ func New(options *Options) *API {
 						r.Route("/tokens", func(r chi.Router) {
 							r.Post("/", api.postToken)
 							r.Get("/", api.tokens)
+							r.Get("/tokenconfig", api.tokenConfig)
 							r.Route("/{keyname}", func(r chi.Router) {
 								r.Get("/", api.apiKeyByName)
 							})

diff --git a/coderd/coderdtest/authorize.go b/coderd/coderdtest/authorize.go
@@ -99,6 +99,7 @@ func AGPLRoutes(a *AuthTester) (map[string]string, map[string]RouteCheck) {
 			AssertObject: rbac.ResourceAPIKey,
 			AssertAction: rbac.ActionRead,
 		},
+		"GET:/api/v2/users/{user}/keys/tokens/tokenconfig": {NoAuthorize: true},
 		"GET:/api/v2/workspacebuilds/{workspacebuild}": {
 			AssertAction: rbac.ActionRead,
 			AssertObject: workspaceRBACObj,

diff --git a/codersdk/apikey.go b/codersdk/apikey.go
@@ -97,6 +97,10 @@ type APIKeyWithOwner struct {
 	Username string `json:"username"`
 }
 
+type TokenConfig struct {
+	MaxTokenLifetime time.Duration `json:"max_token_lifetime"`
+}
+
 // asRequestOption returns a function that can be used in (*Client).Request.
 // It modifies the request query parameters.
 func (f TokensFilter) asRequestOption() RequestOption {
@@ -161,3 +165,17 @@ func (c *Client) DeleteAPIKey(ctx context.Context, userID string, id string) err
 	}
 	return nil
 }
+
+// GetTokenConfig returns deployment options related to token management
+func (c *Client) GetTokenConfig(ctx context.Context, userID string) (TokenConfig, error) {
+	res, err := c.Request(ctx, http.MethodGet, fmt.Sprintf("/api/v2/users/%s/keys/tokens/tokenconfig", userID), nil)
+	if err != nil {
+		return TokenConfig{}, err
+	}
+	defer res.Body.Close()
+	if res.StatusCode > http.StatusOK {
+		return TokenConfig{}, ReadBodyAsError(res)
+	}
+	tokenConfig := TokenConfig{}
+	return tokenConfig, json.NewDecoder(res.Body).Decode(&tokenConfig)
+}
diff --git a/docs/api/general.md b/docs/api/general.md
@@ -516,3 +516,40 @@ curl -X GET http://coder-server:8080/api/v2/updatecheck \
 | Status | Meaning                                                 | Description | Schema                                                                 |
 | ------ | ------------------------------------------------------- | ----------- | ---------------------------------------------------------------------- |
 | 200    | [OK](https://tools.ietf.org/html/rfc7231#section-6.3.1) | OK          | [codersdk.UpdateCheckResponse](schemas.md#codersdkupdatecheckresponse) |
+
+## Get token config
+
+### Code samples
+
+```shell
+# Example request using curl
+curl -X GET http://coder-server:8080/api/v2/users/{user}/keys/tokens/tokenconfig \
+  -H 'Accept: application/json' \
+  -H 'Coder-Session-Token: API_KEY'
+```
+
+`GET /users/{user}/keys/tokens/tokenconfig`
+
+### Parameters
+
+| Name   | In   | Type   | Required | Description          |
+| ------ | ---- | ------ | -------- | -------------------- |
+| `user` | path | string | true     | User ID, name, or me |
+
+### Example responses
+
+> 200 Response
+
+```json
+{
+  "max_token_lifetime": 0
+}
+```
+
+### Responses
+
+| Status | Meaning                                                 | Description | Schema                                                 |
+| ------ | ------------------------------------------------------- | ----------- | ------------------------------------------------------ |
+| 200    | [OK](https://tools.ietf.org/html/rfc7231#section-6.3.1) | OK          | [codersdk.TokenConfig](schemas.md#codersdktokenconfig) |
+
+To perform this operation, you must be authenticated. [Learn more](authentication.md).
diff --git a/docs/api/schemas.md b/docs/api/schemas.md
@@ -3839,6 +3839,20 @@ Parameter represents a set value for the scope.
 | `type`   | `number` |
 | `type`   | `bool`   |
 
+## codersdk.TokenConfig
+
+    ```json
+{
+  "max_token_lifetime": 0
+}
+```
+
+### Properties
+
+| Name                 | Type    | Required | Restrictions | Description |
+| -------------------- | ------- | -------- | ------------ | ----------- |
+| `max_token_lifetime` | integer | false    |              |             |
+
 ## codersdk.TraceConfig
 
 ```json

diff --git a/site/src/AppRouter.tsx b/site/src/AppRouter.tsx
@@ -127,6 +127,10 @@ const TemplateVariablesPage = lazy(
   () => import("./pages/TemplateVariablesPage/TemplateVariablesPage"),
 )
 
+const CreateTokenPage = lazy(
+  () => import("./pages/CreateTokenPage/CreateTokenPage"),
+)
+
 export const AppRouter: FC = () => {
   return (
     <Suspense fallback={<FullScreenLoader />}>
@@ -215,7 +219,10 @@ export const AppRouter: FC = () => {
                 <Route path="account" element={<AccountPage />} />
                 <Route path="security" element={<SecurityPage />} />
                 <Route path="ssh-keys" element={<SSHKeysPage />} />
-                <Route path="tokens" element={<TokensPage />} />
+                <Route path="tokens">
+                  <Route index element={<TokensPage />} />
+                  <Route path="new" element={<CreateTokenPage />} />
+                </Route>
               </Route>
 
               <Route path="/@:username">

diff --git a/site/src/api/api.ts b/site/src/api/api.ts
@@ -153,10 +153,22 @@ export const getTokens = async (
   return response.data
 }
 
-export const deleteAPIKey = async (keyId: string): Promise<void> => {
+export const deleteToken = async (keyId: string): Promise<void> => {
   await axios.delete("/api/v2/users/me/keys/" + keyId)
 }
 
+export const createToken = async (
+  params: TypesGen.CreateTokenRequest,
+): Promise<TypesGen.GenerateAPIKeyResponse> => {
+  const response = await axios.post(`/api/v2/users/me/keys/tokens`, params)
+  return response.data
+}
+
+export const getTokenConfig = async (): Promise<TypesGen.TokenConfig> => {
+  const response = await axios.get("/api/v2/users/me/keys/tokens/tokenconfig")
+  return response.data
+}
+
 export const getUsers = async (
   options: TypesGen.UsersRequest,
 ): Promise<TypesGen.GetUsersResponse> => {

diff --git a/site/src/api/typesGenerated.ts b/site/src/api/typesGenerated.ts
@@ -847,6 +847,12 @@ export interface TemplateVersionsByTemplateRequest extends Pagination {
   readonly template_id: string
 }
 
+// From codersdk/apikey.go
+export interface TokenConfig {
+  // This is likely an enum in an external package ("time.Duration")
+  readonly max_token_lifetime: number
+}
+
 // From codersdk/apikey.go
 export interface TokensFilter {
   readonly include_all: boolean

diff --git a/site/src/components/Form/Form.tsx b/site/src/components/Form/Form.tsx
@@ -64,6 +64,7 @@ export const FormSection: FC<
     description: string | JSX.Element
     classes?: {
       root?: string
+      sectionInfo?: string
       infoTitle?: string
     }
   }
@@ -73,7 +74,12 @@ export const FormSection: FC<
 
   return (
     <div className={combineClasses([styles.formSection, classes.root])}>
-      <div className={styles.formSectionInfo}>
+      <div
+        className={combineClasses([
+          classes.sectionInfo,
+          styles.formSectionInfo,
+        ])}
+      >
         <h2
           className={combineClasses([
             styles.formSectionInfoTitle,

diff --git a/site/src/components/FullPageForm/FullPageHorizontalForm.tsx b/site/src/components/FullPageForm/FullPageHorizontalForm.tsx
@@ -11,7 +11,7 @@ import { makeStyles } from "@material-ui/core/styles"
 export interface FullPageHorizontalFormProps {
   title: string
   detail?: ReactNode
-  onCancel: () => void
+  onCancel?: () => void
 }
 
 export const FullPageHorizontalForm: FC<
@@ -23,9 +23,11 @@ export const FullPageHorizontalForm: FC<
     <Margins size="medium">
       <PageHeader
         actions={
-          <Button variant="outlined" size="small" onClick={onCancel}>
-            Cancel
-          </Button>
+          onCancel && (
+            <Button variant="outlined" size="small" onClick={onCancel}>
+              Cancel
+            </Button>
+          )
         }
       >
         <PageHeaderTitle>{title}</PageHeaderTitle>