.gitignore

-Original file line number
+Diff line change
@@ Expand Up / @@ -137,4 +137,7 @@ dist @@
     .yarn/build-state.yml
     .yarn/install-state.gz
     .yarn/releases
-    .pnp.*
+    .pnp.*
+    # Gun
+    radata

apps/server/.env.example

-Original file line number
+Diff line change
@@ -0,0 +1,10 @@
+    MASTER_KEY=
+    SESSION_KEY=
+    CLIENT_SECRET=
+    CLIENT_ID=
+    REDIS_URL=
+    MONGO_URL=
+    ALLOW_ORIGIN=
+    NODE_ENV=development
+    DOMAIN=
+    BOT_TOKEN=

apps/server/package.json

-Original file line number
+Diff line change
@@ -0,0 +1,23 @@
+    {
+        "name": "@disflow-team/server",
+        "description": "A simple express server for oauth2 flow.",
+        "dependencies": {
+            "connect-redis": "^9.0.0",
+            "cors": "^2.8.5",
+            "express": "^5.2.1",
+            "express-session": "^1.18.2",
+            "gun": "^0.2020.1241",
+            "mongoose": "^9.1.3",
+            "redis": "^5.10.0"
+        },
+        "devDependencies": {
+            "@disflow-team/tsconfig": "workspace:^",
+            "@types/cors": "^2.8.19",
+            "@types/express-session": "^1",
+            "tsup": "^8.5.1"
+        },
+        "scripts": {
+            "build": "tsup",
+            "dev": "tsup && node --env-file=.env dist/index.js"
+        }
+    }

apps/server/src/Schemas/DiscordUser.ts

-Original file line number
+Diff line change
@@ -0,0 +1,27 @@
+    import mongoose from "mongoose";
+    export const userSchema = new mongoose.Schema({
+        userId: {
+            type: String,
+            required: true,
+            unique: true
+        },
+        access_token: {
+            type: String,
+            required: true
+        },
+        expires_in: {
+            type: Number,
+            required: true
+        },
+        refresh_token: {
+            type: String,
+            required: true
+        },
+        token_type: {
+            type: String,
+            required: true
+        }
+    })
+    export const DiscordUser = mongoose.model("user", userSchema)

apps/server/src/encryption/encryption.ts

-Original file line number
+Diff line change
@@ -0,0 +1,42 @@
+    import crypto from "node:crypto";
+    const MASTER_KEY = Buffer.from(process.env.MASTER_KEY!, "hex");
+    export function createSeed(discordId: string) {
+        return crypto.createHmac("sha256", MASTER_KEY)
+            .update(discordId)
+            .digest()
+            .toString("hex");
+    }
+    // For Discord's Oauth2
+    export function generateRandomCode() {
+        return crypto.randomBytes(32).toString("hex");
+    }
+    export function encryptToken(token: string) {
+        const iv = crypto.randomBytes(12);
+        const cipher = crypto.createCipheriv("aes-256-gcm", MASTER_KEY, iv);
+        let encrypted = cipher.update(token, 'utf8', 'hex');
+        encrypted += cipher.final('hex');
+        const authTag = cipher.getAuthTag().toString('hex');
+        return `${iv.toString('hex')}:${authTag}:${encrypted}`;
+    }
+    export function decryptToken(encryptedData: string) {
+        const [ivHex, authTagHex, encryptedText] = encryptedData.split(':');
+        const iv = Buffer.from(ivHex, 'hex');
+        const authTag = Buffer.from(authTagHex, 'hex');
+        const decipher = crypto.createDecipheriv("aes-256-gcm", MASTER_KEY, iv);
+        decipher.setAuthTag(authTag);
+        let decrypted = decipher.update(encryptedText, 'hex', 'utf8');
+        decrypted += decipher.final('utf8');
+        return decrypted;
+    }

apps/server/src/index.ts

-Original file line number
+Diff line change
@@ -0,0 +1,104 @@
+    import express from "express";
+    import Gun from "gun";
+    import cors from "cors";
+    import { RedisStore } from "connect-redis";
+    import session from "express-session";
+    import { createClient } from "redis";
+    import discordRouter, { type DiscordUserInfo } from "./routers/Discord";
+    import cryptoRouter from "./routers/Crypto";
+    import mongoose from "mongoose";
+    async function getBotInfo(botId: string) {
+        const response = await fetch("https://discord.com/api/v10/users/" + botId, {
+            headers: {
+                "Authorization": `Bot ${process.env.BOT_TOKEN}`
+            }
+        })
+        if (!response.ok) return undefined;
+        let userData = await response.json() as DiscordUserInfo & {
+            bot: boolean
+        };
+        return userData;
+    }
+    const app = express();
+    const redisClient = createClient({
+        url: process.env.REDIS_URL!
+    });
+    const origin = process.env.NODE_ENV === "production" ? process.env.ALLOW_ORIGIN! : "http://localhost:5173";
+    console.log("ALLOWING ORIGIN " + origin)
+    app.use(cors({
+        origin: origin, // default vite URL for development purposes
+        credentials: true
+    }));
+    app.use(session({
+        store: new RedisStore({
+            client: redisClient
+        }),
+        secret: process.env.SESSION_KEY!,
+        resave: false,
+        saveUninitialized: false,
+        cookie: {
+            maxAge: 1000 * 60 * 60 * 24 * 7, // keep the user logged in for 7 days only
+            httpOnly: true,
+            secure: process.env.NODE_ENV === "production",
+            sameSite: "lax"
+        }
+    }));
+    app.use("/auth", discordRouter);
+    app.use("/crypto", cryptoRouter);
+    app.use((Gun as any).serve);
+    app.get("/applications/:id", async (req, res) => {
+        const appId = req.params.id;
+        const user = req.session.user;
+        if (req.headers.origin === origin) {
+            res.setHeader('Access-Control-Allow-Origin', req.headers.origin);
+        }
+        res.setHeader('Access-Control-Allow-Credentials', 'true');
+        res.setHeader('Access-Control-Allow-Methods', 'GET, POST, OPTIONS');
+        res.setHeader('Access-Control-Allow-Headers', 'Content-Type, Authorization');
+        if(!user) return res.status(401).json({
+            message: "Unauthenticated"
+        })
+        const botInfo = await getBotInfo(appId);
+        if(!botInfo) return res.status(500).json({
+            message: "Unable to fetch bot"
+        })
+        if(!botInfo.bot) return res.status(422).json({
+            message: "The ID is not a bot"
+        })
+        return res.json({
+            username: botInfo.username,
+            avatar: botInfo.avatar,
+            id: botInfo.id
+        })
+    })
+    const server = app.listen(process.env.PORT || 3000, () => {
+        console.log("Server started on " + (process.env.PORT || 3000))
+    });
+    mongoose.connect(process.env.MONGO_URL!).then(() => console.log("Connected to MongoDB!"))
+    redisClient.connect().then(() => console.log("Connected to Redis!"));
+    // set up gun relay server
+    Gun({
+        web: server
+    });

apps/server/src/routers/Crypto.ts

-Original file line number
+Diff line change
@@ -0,0 +1,24 @@
+    import { Router } from "express";
+    import { createSeed } from "../encryption/encryption";
+    const router = Router();
+    // Bridge OAUTH2 and GUN's SEA
+    router.get("/seed", (req, res) => {
+        if(!req.session.user) {
+            res.status(401).json({
+                message: "Login with Discord first",
+                status: 401
+            })
+            return;
+        }
+        const seed = createSeed(req.session.user.id);
+        res.json({
+            seed,
+            userId: req.session.user.id
+        })
+    });
+    export default router;

Implement Discord Login #7

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Draft

retrouser955 wants to merge 2 commits into main from feat/login

-Original file line number
+Diff line change
@@ Expand Up / @@ -137,4 +137,7 @@ dist @@
     .yarn/build-state.yml
     .yarn/install-state.gz
     .yarn/releases
-    .pnp.*
+    .pnp.*
+    # Gun
+    radata

-Original file line number
+Diff line change
@@ -0,0 +1,10 @@
+    MASTER_KEY=
+    SESSION_KEY=
+    CLIENT_SECRET=
+    CLIENT_ID=
+    REDIS_URL=
+    MONGO_URL=
+    ALLOW_ORIGIN=
+    NODE_ENV=development
+    DOMAIN=
+    BOT_TOKEN=

-Original file line number
+Diff line change
@@ -0,0 +1,23 @@
+    {
+        "name": "@disflow-team/server",
+        "description": "A simple express server for oauth2 flow.",
+        "dependencies": {
+            "connect-redis": "^9.0.0",
+            "cors": "^2.8.5",
+            "express": "^5.2.1",
+            "express-session": "^1.18.2",
+            "gun": "^0.2020.1241",
+            "mongoose": "^9.1.3",
+            "redis": "^5.10.0"
+        },
+        "devDependencies": {
+            "@disflow-team/tsconfig": "workspace:^",
+            "@types/cors": "^2.8.19",
+            "@types/express-session": "^1",
+            "tsup": "^8.5.1"
+        },
+        "scripts": {
+            "build": "tsup",
+            "dev": "tsup && node --env-file=.env dist/index.js"
+        }
+    }

-Original file line number
+Diff line change
@@ -0,0 +1,27 @@
+    import mongoose from "mongoose";
+    export const userSchema = new mongoose.Schema({
+        userId: {
+            type: String,
+            required: true,
+            unique: true
+        },
+        access_token: {
+            type: String,
+            required: true
+        },
+        expires_in: {
+            type: Number,
+            required: true
+        },
+        refresh_token: {
+            type: String,
+            required: true
+        },
+        token_type: {
+            type: String,
+            required: true
+        }
+    })
+    export const DiscordUser = mongoose.model("user", userSchema)

-Original file line number
+Diff line change
@@ -0,0 +1,42 @@
+    import crypto from "node:crypto";
+    const MASTER_KEY = Buffer.from(process.env.MASTER_KEY!, "hex");
+    export function createSeed(discordId: string) {
+        return crypto.createHmac("sha256", MASTER_KEY)
+            .update(discordId)
+            .digest()
+            .toString("hex");
+    }
+    // For Discord's Oauth2
+    export function generateRandomCode() {
+        return crypto.randomBytes(32).toString("hex");
+    }
+    export function encryptToken(token: string) {
+        const iv = crypto.randomBytes(12);
+        const cipher = crypto.createCipheriv("aes-256-gcm", MASTER_KEY, iv);
+        let encrypted = cipher.update(token, 'utf8', 'hex');
+        encrypted += cipher.final('hex');
+        const authTag = cipher.getAuthTag().toString('hex');
+        return `${iv.toString('hex')}:${authTag}:${encrypted}`;
+    }
+    export function decryptToken(encryptedData: string) {
+        const [ivHex, authTagHex, encryptedText] = encryptedData.split(':');
+        const iv = Buffer.from(ivHex, 'hex');
+        const authTag = Buffer.from(authTagHex, 'hex');
+        const decipher = crypto.createDecipheriv("aes-256-gcm", MASTER_KEY, iv);
+        decipher.setAuthTag(authTag);
+        let decrypted = decipher.update(encryptedText, 'hex', 'utf8');
+        decrypted += decipher.final('utf8');
+        return decrypted;
+    }

-Original file line number
+Diff line change
@@ -0,0 +1,104 @@
+    import express from "express";
+    import Gun from "gun";
+    import cors from "cors";
+    import { RedisStore } from "connect-redis";
+    import session from "express-session";
+    import { createClient } from "redis";
+    import discordRouter, { type DiscordUserInfo } from "./routers/Discord";
+    import cryptoRouter from "./routers/Crypto";
+    import mongoose from "mongoose";
+    async function getBotInfo(botId: string) {
+        const response = await fetch("https://discord.com/api/v10/users/" + botId, {
+            headers: {
+                "Authorization": `Bot ${process.env.BOT_TOKEN}`
+            }
+        })
+        if (!response.ok) return undefined;
+        let userData = await response.json() as DiscordUserInfo & {
+            bot: boolean
+        };
+        return userData;
+    }
+    const app = express();
+    const redisClient = createClient({
+        url: process.env.REDIS_URL!
+    });
+    const origin = process.env.NODE_ENV === "production" ? process.env.ALLOW_ORIGIN! : "http://localhost:5173";
+    console.log("ALLOWING ORIGIN " + origin)
+    app.use(cors({
+        origin: origin, // default vite URL for development purposes
+        credentials: true
+    }));
+    app.use(session({
+        store: new RedisStore({
+            client: redisClient
+        }),
+        secret: process.env.SESSION_KEY!,
+        resave: false,
+        saveUninitialized: false,
+        cookie: {
+            maxAge: 1000 * 60 * 60 * 24 * 7, // keep the user logged in for 7 days only
+            httpOnly: true,
+            secure: process.env.NODE_ENV === "production",
+            sameSite: "lax"
+        }
+    }));
+    app.use("/auth", discordRouter);
+    app.use("/crypto", cryptoRouter);
+    app.use((Gun as any).serve);
+    app.get("/applications/:id", async (req, res) => {
+        const appId = req.params.id;
+        const user = req.session.user;
+        if (req.headers.origin === origin) {
+            res.setHeader('Access-Control-Allow-Origin', req.headers.origin);
+        }
+        res.setHeader('Access-Control-Allow-Credentials', 'true');
+        res.setHeader('Access-Control-Allow-Methods', 'GET, POST, OPTIONS');
+        res.setHeader('Access-Control-Allow-Headers', 'Content-Type, Authorization');
+        if(!user) return res.status(401).json({
+            message: "Unauthenticated"
+        })
+        const botInfo = await getBotInfo(appId);
+        if(!botInfo) return res.status(500).json({
+            message: "Unable to fetch bot"
+        })
+        if(!botInfo.bot) return res.status(422).json({
+            message: "The ID is not a bot"
+        })
+        return res.json({
+            username: botInfo.username,
+            avatar: botInfo.avatar,
+            id: botInfo.id
+        })
+    })
+    const server = app.listen(process.env.PORT || 3000, () => {
+        console.log("Server started on " + (process.env.PORT || 3000))
+    });
+    mongoose.connect(process.env.MONGO_URL!).then(() => console.log("Connected to MongoDB!"))
+    redisClient.connect().then(() => console.log("Connected to Redis!"));
+    // set up gun relay server
+    Gun({
+        web: server
+    });

-Original file line number
+Diff line change
@@ -0,0 +1,24 @@
+    import { Router } from "express";
+    import { createSeed } from "../encryption/encryption";
+    const router = Router();
+    // Bridge OAUTH2 and GUN's SEA
+    router.get("/seed", (req, res) => {
+        if(!req.session.user) {
+            res.status(401).json({
+                message: "Login with Discord first",
+                status: 401
+            })
+            return;
+        }
+        const seed = createSeed(req.session.user.id);
+        res.json({
+            seed,
+            userId: req.session.user.id
+        })
+    });
+    export default router;

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Implement Discord Login #7

Uh oh!

Diff view

Diff view

There are no files selected for viewing

Uh oh!

Implement Discord Login #7

Are you sure you want to change the base?

Uh oh!

Implement Discord Login #7

Uh oh!

Uh oh!

Diff view

Diff view

There are no files selected for viewing

Uh oh!