fix: api key prefix rename, revoke fix, and webhook validation

Rename API key prefix from asn_ to asa_, fix key revoke by aligning response property names with frontend interface, and add server/client validation to prevent enabling webhooks without a URL.
author: Fuwn <[email protected]> 2026-02-07 05:03:35 -0800
committer: Fuwn <[email protected]> 2026-02-07 05:03:35 -0800
commit: 17f0f1877764e9c1d79a2b86dac8ff2110aa6a34 (patch)
tree: 1cabf70d230dc614c3ee2408bdc0acaf13a502d8 /apps/web/lib
parent: feat: dynamically compute sidebar max width from item text widths (diff)
download: asa.news-17f0f1877764e9c1d79a2b86dac8ff2110aa6a34.tar.xz
asa.news-17f0f1877764e9c1d79a2b86dac8ff2110aa6a34.zip
2 files changed, 2 insertions, 2 deletions
diff --git a/apps/web/lib/api-auth.ts b/apps/web/lib/api-auth.ts
index 3f819f2..d2efdd7 100644
--- a/apps/web/lib/api-auth.ts
+++ b/apps/web/lib/api-auth.ts
@@ -25,7 +25,7 @@ export async function authenticateApiRequest(
 
   const apiKey = authorizationHeader.slice(7)
 
-  if (!apiKey.startsWith("asn_")) {
+  if (!apiKey.startsWith("asa_")) {
     return { authenticated: false, status: 401, error: "invalid api key format" }
   }
 
diff --git a/apps/web/lib/api-key.ts b/apps/web/lib/api-key.ts
index ce59f89..f5beaac 100644
--- a/apps/web/lib/api-key.ts
+++ b/apps/web/lib/api-key.ts
@@ -1,6 +1,6 @@
 import { randomBytes, createHash } from "crypto"
 
-const API_KEY_PREFIX = "asn_"
+const API_KEY_PREFIX = "asa_"
 
 export function generateApiKey(): {
   fullKey: string
author	Fuwn <[email protected]>	2026-02-07 05:03:35 -0800
committer	Fuwn <[email protected]>	2026-02-07 05:03:35 -0800
commit	17f0f1877764e9c1d79a2b86dac8ff2110aa6a34 (patch)
tree	1cabf70d230dc614c3ee2408bdc0acaf13a502d8 /apps/web/lib
parent	feat: dynamically compute sidebar max width from item text widths (diff)
download	asa.news-17f0f1877764e9c1d79a2b86dac8ff2110aa6a34.tar.xz asa.news-17f0f1877764e9c1d79a2b86dac8ff2110aa6a34.zip