From 7c05f5f70e701e6f63da28029cffab06e9a6c522 Mon Sep 17 00:00:00 2001
From: wood chen <wood@czl.net>
Date: Thu, 20 Feb 2025 03:13:04 +0800
Subject: [PATCH] feat: Enhance OAuth authorization error handling with
 ErrorCard

- Add comprehensive error handling for invalid clients, disabled applications, and mismatched redirect URIs
- Implement ErrorCard component to display detailed error messages during OAuth authorization
- Improve user feedback with specific error types and descriptions
- Replace simple error text with structured error handling
---
 src/app/(oauth)/oauth/authorize/page.tsx | 39 +++++++++++++++++++++++-
 1 file changed, 38 insertions(+), 1 deletion(-)

diff --git a/src/app/(oauth)/oauth/authorize/page.tsx b/src/app/(oauth)/oauth/authorize/page.tsx
index b3cf9cf..00c54c1 100644
--- a/src/app/(oauth)/oauth/authorize/page.tsx
+++ b/src/app/(oauth)/oauth/authorize/page.tsx
@@ -3,6 +3,7 @@ import { redirect } from "next/navigation";
 import { getClientByClientId } from "@/lib/dto/client";
 import { getCurrentUser } from "@/lib/session";
 import { Authorizing } from "@/components/auth/authorizing";
+import { ErrorCard } from "@/components/auth/error-card";
 
 export interface AuthorizeParams {
   oauth: string;
@@ -25,7 +26,43 @@ export default async function AuthorizePage({
   if (!client) {
     return (
       <div className="flex min-h-screen items-center justify-center p-4">
-        <div className="text-center text-red-600">应用不存在</div>
+        <ErrorCard
+          title="应用不存在"
+          description="您尝试访问的应用不存在或已被删除"
+          redirectUri={searchParams.redirectUri}
+          error="invalid_client"
+          errorDescription="应用不存在"
+        />
+      </div>
+    );
+  }
+
+  // 检查应用是否被禁用
+  if (!client.enabled) {
+    return (
+      <div className="flex min-h-screen items-center justify-center p-4">
+        <ErrorCard
+          title="应用已禁用"
+          description="此应用已被管理员禁用，暂时无法使用"
+          redirectUri={searchParams.redirectUri}
+          error="access_denied"
+          errorDescription="此应用已被禁用"
+        />
+      </div>
+    );
+  }
+
+  // 检查回调地址是否匹配
+  if (client.redirectUri !== searchParams.redirectUri) {
+    return (
+      <div className="flex min-h-screen items-center justify-center p-4">
+        <ErrorCard
+          title="回调地址不匹配"
+          description="应用提供的回调地址与注册时不符"
+          redirectUri={searchParams.redirectUri}
+          error="invalid_request"
+          errorDescription="回调地址不匹配"
+        />
       </div>
     );
   }