fregat/apollo-backend
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(auth): redirect messenger connect to success state

Browse Source
This commit is contained in:
Ruslan Bakiev
2026-04-03 18:25:12 +07:00
parent 6c5839d6ee
commit b62787c299
2 changed files with 25 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
src/auth.js
View File

@@ -179,7 +179,7 @@ export function verifyLoginChallengeCode({ challengeToken, code }) {
}; };
} }
export function createMessengerStartSession({ channel, email, userId }) { export function createMessengerStartSession({ channel, email, userId, redirectPath }) {
purgeExpiredMessengerStartSessions(); purgeExpiredMessengerStartSessions();
const startToken = crypto.randomBytes(24).toString('base64url'); const startToken = crypto.randomBytes(24).toString('base64url');
@@ -188,6 +188,7 @@ export function createMessengerStartSession({ channel, email, userId }) {
channel, channel,
email, email,
userId, userId,
redirectPath,
expiresAt, expiresAt,
}); });
@@ -210,6 +211,7 @@ export function consumeMessengerStartSession(startToken) {
channel: payload.channel, channel: payload.channel,
email: payload.email, email: payload.email,
userId: payload.userId, userId: payload.userId,
redirectPath: payload.redirectPath,
}; };
} }

23
src/server.js
View File

@@ -80,6 +80,14 @@ async function resolveUserForMessenger({ userId, email }) {
}); });
} }
function normalizeRedirectPath(value) {
const redirectPath = String(value || '').trim();
if (!redirectPath.startsWith('/')) {
return '';
}
return redirectPath;
}
async function resolveAuthenticatedUserFromRequest(req) { async function resolveAuthenticatedUserFromRequest(req) {
const authToken = extractAuthTokenFromRequest(req); const authToken = extractAuthTokenFromRequest(req);
const auth = verifyAccessToken(authToken); const auth = verifyAccessToken(authToken);
@@ -103,6 +111,7 @@ app.post('/auth/messenger-start', async (req, res) => {
const providedEmail = String(req.body?.email || '').trim().toLowerCase(); const providedEmail = String(req.body?.email || '').trim().toLowerCase();
const email = authenticatedUser?.email?.trim().toLowerCase() || providedEmail; const email = authenticatedUser?.email?.trim().toLowerCase() || providedEmail;
const userId = authenticatedUser?.id ?? null; const userId = authenticatedUser?.id ?? null;
const redirectPath = normalizeRedirectPath(req.body?.redirectPath);
if (!userId && !/^[^\s@]+@[^\s@]+\.[^\s@]+$/.test(email)) { if (!userId && !/^[^\s@]+@[^\s@]+\.[^\s@]+$/.test(email)) {
res.status(400).json({ error: 'A valid email is required.' }); res.status(400).json({ error: 'A valid email is required.' });
@@ -113,6 +122,7 @@ app.post('/auth/messenger-start', async (req, res) => {
channel, channel,
email, email,
userId, userId,
redirectPath,
}); });
res.json({ res.json({
@@ -179,7 +189,18 @@ app.post('/bot/messenger-login', async (req, res) => {
process.env.NUXT_PUBLIC_SITE_URL || process.env.NUXT_PUBLIC_SITE_URL ||
'http://localhost:3000' 'http://localhost:3000'
).replace(/\/$/, ''); ).replace(/\/$/, '');
const loginUrl = `${frontendUrl}/login?login_token=${encodeURIComponent(login.loginToken)}`; const nextPath = startSession.redirectPath || (
startSession.userId
? `/profile/notifications?status=success&connected=${channel.toLowerCase()}`
: ''
);
const loginQuery = new URLSearchParams({
login_token: login.loginToken,
});
if (nextPath) {
loginQuery.set('next', nextPath);
}
const loginUrl = `${frontendUrl}/login?${loginQuery.toString()}`;
if (!skipDispatch) { if (!skipDispatch) {
const dispatch = await sendMessengerMessage({ const dispatch = await sendMessengerMessage({