PxlLoewe/var-monorepo
1
0
Fork 0
Code Issues 22 Pull Requests Actions Packages Projects Releases 2 Wiki Activity
Files
00e432814ab5a2c0f6af6b5da86c0bb9948c7a31
var-monorepo/apps/hub/app/api/auth/accessToken/route.ts
PxlLoewe 00e432814a Fixed type errors in nextJS apps, added Docker files 
Co-authored-by: Nicolas <nocnico@users.noreply.github.com>
2025-05-24 14:12:58 -07:00

80 lines
2.1 KiB
TypeScript
Raw Blame History

import { NextRequest } from "next/server";
import { sign } from "jsonwebtoken";
import { prisma } from "@repo/db";
import { services } from "../../../../helper/authServices";
export const POST = async (req: NextRequest) => {
try {
if (!req.headers.get("content-type")?.includes("application/x-www-form-urlencoded")) {
return new Response("Unsupported Content-Type", { status: 415 });
}
const form = new URLSearchParams(await req.text());
const accessToken = form.get("token") || form.get("code");
const clientId = form.get("client_id");
const clientSecret = form.get("client_secret");
if (!accessToken) {
console.log("No access token provided", accessToken);
return new Response("No access token provided", { status: 400 });
}
if (!clientId) {
console.log("No client ID provided", clientId);
return new Response("No client ID provided", { status: 400 });
}
const service = services.find((s) => s.id === clientId);
if (!service || service.secret !== clientSecret) {
console.log("Invalid client ID or secret", clientId, clientSecret);
return new Response("Invalid client credentials", { status: 401 });
}
const accessRequest = await prisma.oAuthToken.findFirst({
where: {
accessToken: accessToken,
clientId: clientId,
},
include: {
user: true,
},
});
if (!accessRequest) {
console.log("Access token not found", accessToken);
return new Response("Access token not found", { status: 404 });
}
if (new Date().getTime() - accessRequest.createdAt.getTime() > 60 * 1000) {
await prisma.oAuthToken.delete({
where: {
id: accessRequest.id,
},
});
console.log("Code expired", accessRequest.id);
return new Response("Code expired", { status: 410 });
}
const jwt = sign(
{
...accessRequest.user,
},
process.env.NEXTAUTH_SECRET as string,
{
expiresIn: "30d",
},
);
return Response.json({
access_token: jwt,
token_type: "Bearer",
});
} catch (error) {
console.error("Error in accessToken route:", error);
return new Response((error as Error).message || "Internal Server Error", {
status: 500,
});
}
};
Reference in New Issue View Git Blame Copy Permalink