feat: basic oauth

2022-11-15 23:48:23 +08:00 · 2022-11-15 23:48:23 +08:00 · 7ab17001f0
commit 7ab17001f0
parent 72b13f5265
16 changed files with 199 additions and 106 deletions
--- a/server/api/[server]/oauth.ts
+++ b/server/api/[server]/oauth.ts
@ -1,29 +1,36 @@
 import { getQuery } from 'ufo'
+import { stringifyQuery } from 'vue-router'
 import { getApp } from '~/server/shared'
+import { HOST_DOMAIN } from '~/constants'

-export default defineEventHandler(async (event) => {
-  const server = event.context.params.server
+export default defineEventHandler(async ({ context, req, res }) => {
+  const server = context.params.server
  const app = await getApp(server)

  if (!app) {
-    event.res.statusCode = 400
+    res.statusCode = 400
    return `App not registered for server: ${server}`
  }

-  const query = getQuery(event.req.url!)
+  const query = getQuery(req.url!)
  const code = query.code

-  const res = await $fetch(`https://${server}/oauth/token`, {
+  const result: any = await $fetch(`https://${server}/oauth/token`, {
    method: 'POST',
    body: {
      client_id: app.client_id,
      client_secret: app.client_secret,
-      redirect_uri: 'urn:ietf:wg:oauth:2.0:oob',
+      redirect_uri: `${HOST_DOMAIN}/api/${server}/oauth`,
      grant_type: 'authorization_code',
      code,
      scope: 'read write follow push',
    },
  })

-  console.log({ res })
+  res.writeHead(302, {
+    Location: `${HOST_DOMAIN}/login/callback?${stringifyQuery({ server, token: result.access_token })}`,
+  })
+  res.end()
+
+  return result
 })
--- a/server/shared.ts
+++ b/server/shared.ts
@ -1,19 +1,17 @@
 import { $fetch } from 'ohmyfetch'
-
-export interface AppInfo {
-  id: string
-  name: string
-  website: string | null
-  redirect_uri: string
-  client_id: string
-  client_secret: string
-  vapid_key: string
-}
+import type { AppInfo } from '~/types'

 export const registeredApps: Record<string, AppInfo> = {}

 const promise = $fetch(process.env.APPS_JSON_URL || 'http://localhost:3000/registered-apps.json')
  .then(r => Object.assign(registeredApps, r))
+  .catch((e) => {
+    if (process.dev)
+      console.error('Failed to fetch registered apps,\nyou may need to run `nr register-apps` first')
+    else
+      console.error('Failed to fetch registered apps')
+    console.error(e)
+  })

 export async function getApp(server: string) {
  await promise