@mikandev/next-discord-auth 0.0.1

package/README.md

@@ -0,0 +1,15 @@
+# next-discord-auth
+
+To install dependencies:
+
+```bash
+bun install
+```
+
+To run:
+
+```bash
+bun run index.ts
+```
+
+This project was created using `bun init` in bun v1.2.8. [Bun](https://bun.sh) is a fast all-in-one JavaScript runtime.

package/package.json

@@ -0,0 +1,23 @@
+{
+  "name": "@mikandev/next-discord-auth",
+  "module": "dist/index.ts",
+  "types": "dist/index.d.ts",
+  "version": "0.0.1",
+  "type": "module",
+  "scripts": {
+    "build": "tsc",
+    "format": "biome format --write ."
+  },
+  "devDependencies": {
+    "@biomejs/biome": "^1.9.4",
+    "@types/bun": "latest",
+    "@types/jsonwebtoken": "^9.0.9"
+  },
+  "peerDependencies": {
+    "typescript": "^5"
+  },
+  "dependencies": {
+    "jsonwebtoken": "^9.0.2",
+    "next": "^15.3.2"
+  }
+}

package/src/index.ts

@@ -0,0 +1,17 @@
+export interface Session {
+    user: {
+        id: string;
+        name: string;
+        email: string | null;
+        avatar: string;
+    }
+    expires: string;
+}
+
+export interface Config {
+    clientId: string;
+    clientSecret: string;
+    scopes: string[];
+    redirectUri: string;
+    jwtSecret: string;
+}

package/src/lib/oauth.ts

@@ -0,0 +1,35 @@
+import type { Config } from '../index';
+
+export const ExchangeCodeForTokens = async (config: Config, code: string) => {
+    const response = await fetch('https://discord.com/api/oauth2/token', {
+        method: 'POST',
+        headers: {
+            'Content-Type': 'application/x-www-form-urlencoded',
+        },
+        body: new URLSearchParams({
+            client_id: config.clientId,
+            client_secret: config.clientSecret,
+            grant_type: 'authorization_code',
+            code: code,
+            redirect_uri: config.redirectUri,
+            scope: config.scopes.join(' '),
+        }),
+    });
+
+    if (!response.ok) {
+        const error = await response.json() as { error_description?: string; message?: string };
+        throw new Error(`Failed to exchange code for token: ${error.error_description || error.message}`);
+    }
+
+    const data = await response.json() as {
+        access_token: string;
+        refresh_token: string;
+        expires_in: number;
+    };
+
+    return {
+        accessToken: data.access_token,
+        refreshToken: data.refresh_token,
+        expiresIn: data.expires_in,
+    };
+};

package/src/redirect.ts

@@ -0,0 +1,52 @@
+import { NextRequest, NextResponse } from "next/server";
+import type { Session, Config } from "./index";
+import { cookies } from "next/headers";
+import { ExchangeCodeForTokens } from "./lib/oauth";
+import jwt from "jsonwebtoken";
+
+export const handleRedirect = async (config: Config, req: NextRequest) => {
+    const cookieStore = await cookies();
+    const params = new URL(req.url).searchParams;
+    const code = params.get("code");
+
+    if (!code) {
+        return NextResponse.json({error: "Authorization code not found"}, {status: 400});
+    }
+
+    const response = await ExchangeCodeForTokens(config, code);
+
+    const sessionData = await fetch('https://discord.com/api/users/@me', {
+        headers: {
+            'Authorization': `Bearer ${response.accessToken}`,
+        },
+    });
+
+    if (!sessionData.ok) {
+        const error = await sessionData.json() as { error?: string; message?: string };
+        return NextResponse.json({error: error.message || "Failed to fetch user data"}, {status: 500});
+    }
+
+    const userData = await sessionData.json() as {
+        user: {
+            id: string;
+            username: string;
+            discriminator: string;
+            avatar: string | null;
+            email?: string;
+        }
+    };
+
+    const session: Session = {
+        user: {
+            id: userData.user.id,
+            name: `${userData.user.username}#${userData.user.discriminator}`,
+            email: userData.user.email || null,
+            avatar: `https://cdn.discordapp.com/avatars/${userData.user.id}/${userData.user.avatar}.png`,
+        },
+        expires: new Date(Date.now() + response.expiresIn * 1000).toISOString(),
+    };
+
+    const token = jwt.sign(session, config.jwtSecret, { expiresIn: response.expiresIn });
+
+    await cookieStore.set("AUTH_SESSION", token);
+}

package/src/server-actions.ts

@@ -0,0 +1,18 @@
+import type { NextRequest, NextResponse } from "next/server";
+import type { Session, Config } from "./index";
+import jwt from "jsonwebtoken";
+
+export const getSession = async (config: Config, req: NextRequest): Promise<Session | null> => {
+    const token = req.cookies.get("AUTH_SESSION")?.value;
+    if (!token) {
+        return null;
+    }
+
+    try {
+        const decoded = jwt.verify(token, config.jwtSecret) as Session;
+        return decoded;
+    } catch (error) {
+        console.error("Invalid token:", error);
+        return null;
+    }
+}

package/tsconfig.json

@@ -0,0 +1,28 @@
+{
+  "compilerOptions": {
+    // Environment setup & latest features
+    "lib": ["ESNext"],
+    "target": "ESNext",
+    "module": "ESNext",
+    "moduleDetection": "force",
+    "jsx": "react-jsx",
+    "allowJs": true,
+    "outDir": "./dist",
+    "rootDir": "./src",
+
+    // Bundler mode
+    "moduleResolution": "bundler",
+    "verbatimModuleSyntax": true,
+
+    // Best practices
+    "strict": true,
+    "skipLibCheck": true,
+    "noFallthroughCasesInSwitch": true,
+    "noUncheckedIndexedAccess": true,
+
+    // Some stricter flags (disabled by default)
+    "noUnusedLocals": false,
+    "noUnusedParameters": false,
+    "noPropertyAccessFromIndexSignature": false
+  }
+}