wood/Q58Connect
1
0
Fork 0
mirror of https://github.com/woodchen-ink/Q58Connect.git synced 2025-07-18 05:51:55 +08:00
Code Issues Packages Projects Releases Wiki Activity
Q58Connect/src/app/api/oauth/access_token/route.ts
Tuluobo 1069de389c refactor: Redesign the auth process
2024-09-15 20:05:32 +08:00

42 lines
1.2 KiB
TypeScript
Raw Blame History

import { NextResponse } from "next/server";
import { createAccessToken } from "@/lib/dto/accessToken";
import { deleteCode, getUnexpiredCodeByCode } from "@/lib/dto/code";
import { generateRandomKey } from "@/lib/utils";
export async function POST(req: Request) {
const formData = await req.formData();
// get code
const code = formData.get("code") as string;
if (!code) {
return new NextResponse("Invalid code params.", { status: 400 });
}
const authorizeCode = await getUnexpiredCodeByCode(code);
await deleteCode(code);
if (!authorizeCode) {
return new NextResponse("Invalid code credentials.", { status: 400 });
}
// verify redirect uri
if (authorizeCode.client.redirectUri !== formData.get("redirect_uri")) {
return new NextResponse("Invalid redirect uri.", { status: 400 });
}
// generate access token
const expiresIn = 3600 * 24 * 7;
const token = "at_" + generateRandomKey(32);
await createAccessToken({
token,
expiresAt: new Date(Date.now() + expiresIn * 1000),
clientId: authorizeCode.client.id,
userId: authorizeCode.user.id,
});
return Response.json({
access_token: token,
expires_in: expiresIn,
token_type: "bearer",
});
}
Reference in New Issue View Git Blame Copy Permalink