added oauth Route

2025-02-02 19:42:42 +01:00
parent 29f9cd7941
commit edcad748fb
23 changed files with 799 additions and 161 deletions
--- a/apps/hub/app/(auth)/oauth/_components/Authorize.tsx
+++ b/apps/hub/app/(auth)/oauth/_components/Authorize.tsx
@@ -0,0 +1,43 @@
+'use client';
+import { useSearchParams } from 'next/navigation';
+import { Service } from '../page';
+import { generateToken } from './action';
+
+export const Authorize = ({ service }: { service: Service }) => {
+  const searchParams = useSearchParams();
+  const legitimeUrl = service.approvedUrls.some((url) =>
+    searchParams.get('redirect_uri')?.startsWith(url)
+  );
+  if (!legitimeUrl)
+    return (
+      <div className="card-body">
+        <h1 className="text-4xl font-bold">Unerlaubter Zugriff</h1>
+        <p>Du greifst von einem ncith genehmigtem Server auf diese URL zu</p>
+      </div>
+    );
+
+  return (
+    <form className="card-body" onSubmit={(e) => e.preventDefault()}>
+      <h1 className="text-4xl font-bold">Zugriff zulassen</h1>
+      <p>
+        Die Anwendung <strong>{service.name}</strong> möchte auf deine Daten
+        zugreifen.
+      </p>
+      <div className="space-x-4">
+        <button type="button" className="btn">
+          Verweigern
+        </button>
+        <button
+          type="submit"
+          className="btn btn-primary"
+          onClick={async () => {
+            const code = await generateToken(service);
+            window.location.href = `${searchParams.get('redirect_uri')}?code=${code}`;
+          }}
+        >
+          Zulassen
+        </button>
+      </div>
+    </form>
+  );
+};
--- a/apps/hub/app/(auth)/oauth/_components/action.ts
+++ b/apps/hub/app/(auth)/oauth/_components/action.ts
@@ -0,0 +1,24 @@
+'use server';
+import { getServerSession } from '../../../api/auth/[...nextauth]/auth';
+import { Service } from '../page';
+import { PrismaClient } from '@repo/db';
+
+const prisma = new PrismaClient();
+
+export const generateToken = async (service: Service) => {
+  const session = await getServerSession();
+  if (!session) return null;
+
+  const accessToken = Array.from({ length: 10 }, () =>
+    Math.floor(Math.random() * 10)
+  ).join('');
+
+  const code = await prisma.oAuthToken.create({
+    data: {
+      clientId: service.id,
+      userId: session.user.id,
+      accessToken: accessToken,
+    },
+  });
+  return code;
+};
--- a/apps/hub/app/(auth)/oauth/page.tsx
+++ b/apps/hub/app/(auth)/oauth/page.tsx
@@ -0,0 +1,26 @@
+import { Authorize } from './_components/Authorize';
+
+export const services = [
+  {
+    id: '123456',
+    service: 'dispatch',
+    name: 'Leitstellendisposition',
+    approvedUrls: ['http://localhost:3001'],
+  },
+];
+export type Service = (typeof services)[number];
+
+export default async ({
+  searchParams,
+}: {
+  searchParams: Promise<{ [key: string]: string | string[] | undefined }>;
+}) => {
+  const { service: serviceId } = await searchParams;
+  const service = services.find((service) => service.id === serviceId);
+
+  if (!service) {
+    return <div>Service not found</div>;
+  }
+
+  return <Authorize service={service} />;
+};