feat: added discord login callback

2025-12-15 14:10:22 +00:00 · 2021-01-27 16:46:14 +09:00 · 2021-01-27 16:46:14 +09:00 · f2db2a2a0a
commit f2db2a2a0a
parent 19d79086c1
1 changed files with 60 additions and 4 deletions
--- a/pages/api/auth/discord/callback.ts
+++ b/pages/api/auth/discord/callback.ts
@ -1,8 +1,64 @@
-import { NextApiHandler, NextApiRequest, NextApiResponse } from 'next'
+import { NextApiRequest, NextApiResponse } from 'next'
+import nc from 'next-connect'
+import fetch from 'node-fetch'
+import cookie from 'cookie'

-const Callback: NextApiHandler = (_req: NextApiRequest, res: NextApiResponse) => {
-	res.statusCode = 200
-	res.json({ happy: 'hacking' })
+import { DiscordEnpoints } from '@utils/Constants'
+import { formData } from '@utils/Tools'
+import { OauthCallbackSchema } from '@utils/Yup'
+import ResponseWrapper from '@utils/ResponseWrapper'
+import { DiscordTokenInfo, DiscordUserInfo } from '@types'
+import { update } from '@utils/Query'
+import { verify } from '@utils/Jwt'
+
+const Callback = nc<ApiRequest, NextApiResponse>()
+	.get(async(req, res) => {
+		const validate = await OauthCallbackSchema.validate(req.query).then(r=> r).catch((e) => {
+			ResponseWrapper(res, { code: 400, errors: e.errors })
+			return null
+		})
+		
+		if(!validate) return
+		
+		res.statusCode = 200
+		const token:DiscordTokenInfo = await fetch(DiscordEnpoints.Token, {
+			method: 'POST',
+			body: formData({
+				client_id: process.env.DISCORD_CLIENT_ID,
+				redirect_uri: process.env.KOREANBOTS_URL + '/api/auth/discord/callback',
+				client_secret: process.env.DISCORD_CLIENT_SECRET,
+				scope: process.env.DISCORD_SCOPE,
+				grant_type: 'authorization_code',
+				code: req.query.code
+
+			}),
+			headers: {
+				'Content-Type': 'application/x-www-form-urlencoded'
+			}
+		}).then(r=> r.json())
+		if(token.error) return ResponseWrapper(res, { code: 400, errors: ['올바르지 않은 코드입니다.'] })
+
+		const user:DiscordUserInfo = await fetch(DiscordEnpoints.Me, {
+			method: 'GET',
+			headers: {
+				Authorization: `${token.token_type} ${token.access_token}`
+			}
+		}).then(r => r.json())
+
+		const userToken = await update.assignToken({ id: user.id, access_token: token.access_token, expires_in: token.expires_in, refresh_token: token.refresh_token, email: user.email, username: user.username, discriminator: user.discriminator  })
+		const info = verify(userToken)
+		res.setHeader('set-cookie', cookie.serialize('token', userToken, {
+			expires: new Date(info.exp * 1000),
+			secure: process.env.NODE_ENV === 'production',
+			path: '/'
+		}))
+		res.redirect(301, '/')
+	})
+
+interface ApiRequest extends NextApiRequest {
+	query: {
+		code: string
+	}
 }

 export default Callback