+114 -56

src/lib/guestbookAuth.ts

reviewed

··· 12 12 scope: string, 13 13 } 14 14 15 15 - export const discord = { 16 16 - name: 'discord', 17 17 - getAuthUrl: (state: string, scopes: string[] = []) => { 18 18 - const client_id = env.DISCORD_CLIENT_ID 19 19 - const redir_uri = encodeURIComponent(callbackUrl) 20 20 - const scope = scopes.join("+") 21 21 - return `https://discord.com/oauth2/authorize?client_id=${client_id}&response_type=code&redirect_uri=${redir_uri}&scope=${scope}&state=${state}` 22 22 - }, 23 23 - getToken: async (code: string): Promise<TokenResponse> => { 24 24 - const api = `https://discord.com/api/oauth2/token` 25 25 - const body = new URLSearchParams({ 26 26 - client_id: env.DISCORD_CLIENT_ID, 27 27 - client_secret: env.DISCORD_CLIENT_SECRET, 28 28 - grant_type: 'authorization_code', 29 29 - redirect_uri: callbackUrl, 30 30 - code, 31 31 - }) 32 32 - const resp = await fetch(api, { method: 'POST', body }) 33 33 - if (resp.status !== 200) { 34 34 - throw new Error("woopsies, couldnt get oauth token") 35 35 - } 36 36 - const tokenResp: any = await resp.json() 15 15 + class OauthConfig { 16 16 + clientId: string; 17 17 + clientSecret: string; 18 18 + 19 19 + authUrl: URL; 20 20 + tokenUrl: URL; 21 21 + 22 22 + joinScopes: (scopes: string[]) => string = (scopes) => scopes.join("+"); 23 23 + getAuthParams: (params: Record<string, string>, config: OauthConfig) => Record<string, string> = (params) => { return params }; 24 24 + getTokenParams: (params: Record<string, string>, config: OauthConfig) => Record<string, string> = (params) => { return params }; 25 25 + extractTokenResponse: (tokenResp: any) => TokenResponse = (tokenResp) => { 37 26 return { 38 27 accessToken: tokenResp.access_token, 39 28 tokenType: tokenResp.token_type, 40 29 scope: tokenResp.scope, 41 30 } 42 42 - }, 31 31 + }; 32 32 + 33 33 + tokenReqHeaders: Record<string, string> = {}; 34 34 + 35 35 + constructor(clientId: string, clientSecret: string, authUrl: URL | string, tokenUrl: URL | string) { 36 36 + this.clientId = clientId; 37 37 + this.clientSecret = clientSecret; 38 38 + this.authUrl = typeof authUrl === 'string' ? new URL(authUrl) : authUrl 39 39 + this.tokenUrl = typeof tokenUrl === 'string' ? new URL(tokenUrl) : tokenUrl 40 40 + } 41 41 + 42 42 + withJoinScopes(f: typeof this.joinScopes) { 43 43 + this.joinScopes = f 44 44 + return this 45 45 + } 46 46 + withGetAuthParams(f: typeof this.getAuthParams) { 47 47 + this.getAuthParams = f 48 48 + return this 49 49 + } 50 50 + withGetTokenParams(f: typeof this.getTokenParams) { 51 51 + this.getTokenParams = f 52 52 + return this 53 53 + } 54 54 + withExtractTokenResponse(f: typeof this.extractTokenResponse) { 55 55 + this.extractTokenResponse = f 56 56 + return this 57 57 + } 58 58 + withTokenRequestHeaders(f: typeof this.tokenReqHeaders) { 59 59 + this.tokenReqHeaders = f 60 60 + return this 61 61 + } 62 62 + } 63 63 + 64 64 + const genericOauthClient = (oauthConfig: OauthConfig) => { 65 65 + return { 66 66 + getAuthUrl: (state: string, scopes: string[] = []) => { 67 67 + const redirect_uri = callbackUrl 68 68 + const scope = oauthConfig.joinScopes(scopes) 69 69 + const baseParams = { 70 70 + client_id: oauthConfig.clientId, 71 71 + redirect_uri, 72 72 + scope, 73 73 + state, 74 74 + } 75 75 + const params = oauthConfig.getAuthParams(baseParams, oauthConfig) 76 76 + const urlParams = new URLSearchParams(params) 77 77 + const urlRaw = `${oauthConfig.authUrl}?${urlParams.toString()}` 78 78 + return new URL(urlRaw) 79 79 + }, 80 80 + getToken: async (code: string): Promise<TokenResponse> => { 81 81 + const api = oauthConfig.tokenUrl 82 82 + const baseParams = { 83 83 + client_id: oauthConfig.clientId, 84 84 + client_secret: oauthConfig.clientSecret, 85 85 + redirect_uri: callbackUrl, 86 86 + code, 87 87 + } 88 88 + const body = new URLSearchParams(oauthConfig.getTokenParams(baseParams, oauthConfig)) 89 89 + const resp = await fetch(api, { method: 'POST', body, headers: oauthConfig.tokenReqHeaders }) 90 90 + if (resp.status !== 200) { 91 91 + throw new Error("woopsies, couldnt get oauth token") 92 92 + } 93 93 + const tokenResp: any = await resp.json() 94 94 + return oauthConfig.extractTokenResponse(tokenResp) 95 95 + } 96 96 + } 97 97 + } 98 98 + 99 99 + export const discord = { 100 100 + name: 'discord', 101 101 + ...genericOauthClient( 102 102 + new OauthConfig( 103 103 + env.DISCORD_CLIENT_ID, 104 104 + env.DISCORD_CLIENT_SECRET, 105 105 + 'https://discord.com/oauth2/authorize', 106 106 + 'https://discord.com/api/oauth2/token', 107 107 + ) 108 108 + .withGetAuthParams((params) => { return { ...params, response_type: 'code', prompt: 'none' } }) 109 109 + .withGetTokenParams((params) => { return { ...params, grant_type: 'authorization_code' } }) 110 110 + ), 43 111 identifyToken: async (tokenResp: TokenResponse): Promise<string> => { 44 112 const api = `https://discord.com/api/users/@me` 45 45 - const resp = await fetch(api, {headers: { 46 46 - 'Authorization': `${tokenResp.tokenType} ${tokenResp.accessToken}` 47 47 - }}) 113 113 + const resp = await fetch(api, { 114 114 + headers: { 115 115 + 'Authorization': `${tokenResp.tokenType} ${tokenResp.accessToken}` 116 116 + } 117 117 + }) 48 118 if (resp.status !== 200) { 49 119 throw new Error("woopsies, couldnt validate access token") 50 120 } ··· 52 122 return body.username 53 123 } 54 124 } 125 125 + 55 126 export const github = { 56 127 name: 'github', 57 57 - getAuthUrl: (state: string, scopes: string[] = []) => { 58 58 - const client_id = env.GITHUB_CLIENT_ID 59 59 - const redir_uri = encodeURIComponent(callbackUrl) 60 60 - const scope = encodeURIComponent(scopes.join(" ")) 61 61 - return `https://github.com/login/oauth/authorize?client_id=${client_id}&redirect_uri=${redir_uri}&scope=${scope}&state=${state}` 62 62 - }, 63 63 - getToken: async (code: string): Promise<TokenResponse> => { 64 64 - const api = `https://github.com/login/oauth/access_token` 65 65 - const body = new URLSearchParams({ 66 66 - client_id: env.GITHUB_CLIENT_ID, 67 67 - client_secret: env.GITHUB_CLIENT_SECRET, 68 68 - redirect_uri: callbackUrl, 69 69 - code, 70 70 - }) 71 71 - const resp = await fetch(api, { method: 'POST', body, headers: { 'Accept': 'application/json' } }) 72 72 - if (resp.status !== 200) { 73 73 - throw new Error("woopsies, couldnt get oauth token") 74 74 - } 75 75 - const tokenResp: any = await resp.json() 76 76 - return { 77 77 - accessToken: tokenResp.access_token, 78 78 - tokenType: tokenResp.token_type, 79 79 - scope: tokenResp.scope, 80 80 - } 81 81 - }, 128 128 + ...genericOauthClient( 129 129 + new OauthConfig( 130 130 + env.GITHUB_CLIENT_ID, 131 131 + env.GITHUB_CLIENT_SECRET, 132 132 + 'https://github.com/login/oauth/authorize', 133 133 + 'https://github.com/login/oauth/access_token', 134 134 + ) 135 135 + .withJoinScopes((s) => { return s.join(" ") }) 136 136 + .withTokenRequestHeaders({ 'Accept': 'application/json' }) 137 137 + ), 82 138 identifyToken: async (tokenResp: TokenResponse): Promise<string> => { 83 139 const api = `https://api.github.com/user` 84 84 - const resp = await fetch(api, {headers: { 85 85 - 'Authorization': `${tokenResp.tokenType} ${tokenResp.accessToken}` 86 86 - }}) 140 140 + const resp = await fetch(api, { 141 141 + headers: { 142 142 + 'Authorization': `${tokenResp.tokenType} ${tokenResp.accessToken}` 143 143 + } 144 144 + }) 87 145 if (resp.status !== 200) { 88 146 throw new Error("woopsies, couldnt validate access token") 89 147 } ··· 130 188 switch (name) { 131 189 case "discord": 132 190 return discord 133 133 - 191 191 + 134 192 case "github": 135 193 return github 136 136 - 194 194 + 137 195 default: 138 196 return null 139 197 }

+14 -20

src/routes/+layout.svelte

reviewed

··· 40 40 } 41 41 42 42 const title = getTitle(data.route); 43 43 + 44 44 + const svgSquiggles = [ 45 45 + [2], 46 46 + [3], 47 47 + [2], 48 48 + [3], 49 49 + [1], 50 50 + ] 43 51 </script> 44 52 45 53 <svelte:head> ··· 65 73 66 74 <svg xmlns="http://www.w3.org/2000/svg" version="1.1" class="absolute -z-50"> 67 75 <defs> 68 68 - <filter id="squiggly-0"> 69 69 - <feTurbulence id="turbulence" baseFrequency="0.02" numOctaves="3" result="noise" seed="0" /> 70 70 - <feDisplacementMap id="displacement" in="SourceGraphic" in2="noise" scale="2" /> 71 71 - </filter> 72 72 - <filter id="squiggly-1"> 73 73 - <feTurbulence id="turbulence" baseFrequency="0.02" numOctaves="3" result="noise" seed="1" /> 74 74 - <feDisplacementMap in="SourceGraphic" in2="noise" scale="3" /> 75 75 - </filter> 76 76 - <filter id="squiggly-2"> 77 77 - <feTurbulence id="turbulence" baseFrequency="0.02" numOctaves="3" result="noise" seed="2" /> 78 78 - <feDisplacementMap in="SourceGraphic" in2="noise" scale="2" /> 76 76 + {#each svgSquiggles as [scale], index} 77 77 + <filter id="squiggly-{index}"> 78 78 + <feTurbulence id="turbulence" baseFrequency="0.02" numOctaves="3" result="noise" seed={index} /> 79 79 + <feDisplacementMap in="SourceGraphic" in2="noise" {scale} /> 79 80 </filter> 80 80 - <filter id="squiggly-3"> 81 81 - <feTurbulence id="turbulence" baseFrequency="0.02" numOctaves="3" result="noise" seed="3" /> 82 82 - <feDisplacementMap in="SourceGraphic" in2="noise" scale="3" /> 83 83 - </filter> 84 84 - <filter id="squiggly-4"> 85 85 - <feTurbulence id="turbulence" baseFrequency="0.02" numOctaves="3" result="noise" seed="4" /> 86 86 - <feDisplacementMap in="SourceGraphic" in2="noise" scale="1" /> 87 87 - </filter> 81 81 + {/each} 88 82 </defs> 89 83 </svg> 90 84 ··· 92 86 <slot /> 93 87 </div> 94 88 95 95 - <nav class="w-full max-h-[6vh] fixed bottom-0 z-10 bg-ralsei-black"> 89 89 + <nav class="w-full min-h-[5vh] max-h-[6vh] fixed bottom-0 z-10 bg-ralsei-black"> 96 90 <div 97 91 class=" 98 92 max-w-full max-h-fit p-1 overflow-auto