mirror of
https://github.com/Akif9748/akf-forum.git
synced 2024-11-01 11:25:04 +03:00
98 lines
No EOL
3.5 KiB
JavaScript
98 lines
No EOL
3.5 KiB
JavaScript
const { Router } = require("express")
|
|
const { UserModel } = require("../models");
|
|
const fetch = require("node-fetch");
|
|
const app = Router();
|
|
const { host, discord_auth, email_auth } = require("../config.json")
|
|
|
|
app.get("/discord", async (req, res) => {
|
|
const client_id = discord_auth;
|
|
if (!client_id) return res.error(404, "Discord auth is disabled")
|
|
const { code } = req.query;
|
|
if (!code) return res.error(400, "No code provided");
|
|
try {
|
|
const response = await fetch('https://discord.com/api/v10/oauth2/token', {
|
|
method: 'POST',
|
|
body: new URLSearchParams({
|
|
client_id, code,
|
|
client_secret: process.env.DISCORD_SECRET,
|
|
grant_type: 'authorization_code',
|
|
redirect_uri: host + "/auth/discord",
|
|
scope: 'identify',
|
|
}).toString(),
|
|
headers: {
|
|
'Content-Type': 'application/x-www-form-urlencoded',
|
|
},
|
|
});
|
|
|
|
if (!response.ok) return res.error(500, "Bad request to discord");
|
|
|
|
const { access_token, token_type } = await response.json();
|
|
|
|
const discord = await fetch('https://discord.com/api/users/@me', {
|
|
headers: { authorization: `${token_type} ${access_token}` }
|
|
}).then(res => res.json());
|
|
|
|
const forum = await UserModel.findOne({ discordID: discord.id });
|
|
|
|
if (req.user) {
|
|
if (req.user.discordID)
|
|
return res.error(403, "Your forum account is already linked to a discord account.");
|
|
|
|
if (forum)
|
|
return res.error(409, "This discord account is already linked to a forum account.");
|
|
|
|
req.user.discordID = discord.id;
|
|
req.user.discord_code = code;
|
|
await req.user.save();
|
|
return res.redirect(`/users/${req.user.id}`)
|
|
}
|
|
|
|
|
|
if (forum) {
|
|
req.session.userID = forum.id;
|
|
return res.redirect("/");
|
|
}
|
|
|
|
let name = discord.username + discord.discriminator;
|
|
while (await UserModel.findOne({ name }))
|
|
name += Math.floor(Math.random() * 2);
|
|
|
|
const user2 = new UserModel({
|
|
name, discordID: discord.id, discord_code: code,
|
|
avatar: `https://cdn.discordapp.com/avatars/${discord.id}/${discord.avatar}.png?size=256`
|
|
});
|
|
|
|
await user2.takeId();
|
|
await user2.save();
|
|
|
|
req.session.userID = user2.id;
|
|
|
|
res.redirect("/");
|
|
} catch (error) {
|
|
res.error(500, "Something went wrong");
|
|
console.error(error);
|
|
}
|
|
});
|
|
|
|
app.delete("/discord", async (req, res) => {
|
|
if (!req.user) return res.error(401, "You are not logged in");
|
|
if (!req.user.discordID) return res.error(403, "You don't have a discord account linked to your forum account.");
|
|
req.user.discordID = undefined;
|
|
req.user.discord_code = undefined;
|
|
await req.user.save();
|
|
res.send("Your discord account has been unlinked from your forum account.");
|
|
});
|
|
|
|
app.get("/email", async (req, res) => {
|
|
if (!email_auth) return res.error(404, "Email auth is disabled");
|
|
if (!req.user) return res.error(401, "You are not logged in");
|
|
if (req.user.email) return res.error(403, "You already have an email linked to your account.");
|
|
const { code } = req.query;
|
|
if (!code) return res.error(400, "No code provided");
|
|
if (code !== req.user.email_code) return res.error(403, "Invalid code");
|
|
req.user.approved = true;
|
|
await req.user.save();
|
|
res.send("Your email has been linked to your forum account.");
|
|
});
|
|
|
|
module.exports = app; |