Charles Driesler
105 lines
3.0 KiB
TypeScript
105 lines
3.0 KiB
TypeScript
/* eslint-disable camelcase */
|
|
|
|
import {
|
|
buildAuthorizeUrl,
|
|
exchangeCodeForTokens,
|
|
exchangeRefreshTokenForTokens,
|
|
generateCodeVerifier
|
|
} from '@/modules/acc/clients/autodesk'
|
|
import { sessionMiddlewareFactory } from '@/modules/auth/middleware'
|
|
import { corsMiddlewareFactory } from '@/modules/core/configs/cors'
|
|
import {
|
|
getAutodeskIntegrationClientId,
|
|
getAutodeskIntegrationClientSecret,
|
|
getServerOrigin
|
|
} from '@/modules/shared/helpers/envHelper'
|
|
import type { Express } from 'express'
|
|
|
|
export const setupAccOidcEndpoints = (app: Express) => {
|
|
const corsMiddleware = corsMiddlewareFactory()
|
|
const sessionMiddleware = sessionMiddlewareFactory()
|
|
|
|
app.post(
|
|
'/api/v1/acc/auth/login',
|
|
corsMiddleware,
|
|
sessionMiddleware,
|
|
async (req, res) => {
|
|
const { projectId } = req.body
|
|
req.session.projectId = projectId
|
|
|
|
const { codeVerifier, codeChallenge } = generateCodeVerifier()
|
|
req.session.codeVerifier = codeVerifier
|
|
|
|
const redirectUri = `${getServerOrigin()}/api/v1/acc/auth/callback`
|
|
|
|
const authorizeUrl = buildAuthorizeUrl({
|
|
clientId: getAutodeskIntegrationClientId(),
|
|
redirectUri,
|
|
codeChallenge,
|
|
scopes: ['user-profile:read', 'data:read', 'viewables:read', 'openid']
|
|
})
|
|
|
|
return res.json({ authorizeUrl })
|
|
}
|
|
)
|
|
|
|
app.get(
|
|
'/api/v1/acc/auth/callback',
|
|
corsMiddleware,
|
|
sessionMiddleware,
|
|
async (req, res) => {
|
|
const { code } = req.query
|
|
const codeVerifier = req.session.codeVerifier
|
|
|
|
if (!code || !codeVerifier) {
|
|
return res.status(400).send({ error: 'Missing code or verifier' })
|
|
}
|
|
|
|
try {
|
|
const tokens = await exchangeCodeForTokens({
|
|
code: String(code),
|
|
codeVerifier,
|
|
clientId: getAutodeskIntegrationClientId(),
|
|
clientSecret: getAutodeskIntegrationClientSecret(),
|
|
redirectUri: `${getServerOrigin()}/api/v1/acc/auth/callback`
|
|
})
|
|
|
|
req.session.accTokens = tokens
|
|
|
|
return res.redirect(`/projects/${req.session.projectId}/acc`)
|
|
} catch (error) {
|
|
console.error('Token exchange failed:', error)
|
|
return res.status(500).send({ error: 'Token exchange failed' })
|
|
}
|
|
}
|
|
)
|
|
|
|
app.get('/api/v1/acc/auth/status', corsMiddleware, sessionMiddleware, (req, res) => {
|
|
if (!req.session.accTokens) {
|
|
return res.status(404).send({ error: 'No ACC tokens found' })
|
|
}
|
|
res.send(req.session.accTokens)
|
|
})
|
|
|
|
app.post(
|
|
'/api/v1/acc/auth/refresh',
|
|
corsMiddleware,
|
|
sessionMiddleware,
|
|
async (req, res) => {
|
|
const { refresh_token } = req.session.accTokens || {}
|
|
if (!refresh_token) {
|
|
return res.status(401).json({ error: 'No refresh token found' })
|
|
}
|
|
|
|
try {
|
|
const newTokens = await exchangeRefreshTokenForTokens({ refresh_token })
|
|
req.session.accTokens = newTokens
|
|
res.json(newTokens)
|
|
} catch (error) {
|
|
console.error('Error refreshing token:', error)
|
|
res.status(500).json({ error: 'Error refreshing token' })
|
|
}
|
|
}
|
|
)
|
|
}
|