use dynamic metadata and remove old api endpoints

nimbus-town · Nov 28, 2024 · 4d97151 · 4d97151
1 parent 76af988
commit 4d97151
Show file tree

Hide file tree

Showing 6 changed files with 38 additions and 65 deletions.
diff --git a/composables/users.ts b/composables/users.ts
@@ -9,6 +9,7 @@ import { withoutProtocol } from 'ufo'
 import type { PushNotificationPolicy, PushNotificationRequest } from '~/composables/push-notifications/types'
 import {
   DEFAULT_POST_CHARS_LIMIT,
+  OAUTH_SCOPE,
   STORAGE_KEY_CURRENT_USER_HANDLE,
   STORAGE_KEY_NODES,
   STORAGE_KEY_NOTIFICATION,
@@ -364,16 +365,14 @@ export function clearUserLocalStorage(account?: ProfileViewDetailed) {
   })
 }
 
-const OAUTH_SCOPE = 'atproto transition:generic transition:chat.bsky'
-
 function isLoopbackHost(host: string) {
   return host === 'localhost' || host === '127.0.0.1' || host === '[::1]'
 }
 
 async function loadOAuthClient(): Promise<BrowserOAuthClient> {
   const isLocalDev = typeof window !== 'undefined' && isLoopbackHost(window.location.hostname)
 
-  let clientId = `${window.location.protocol}//${window.location.host}/oauth/client-metadata.json`
+  let clientId = `${window.location.protocol}//${window.location.host}/api/oauth/client-metadata.json`
 
   if (isLocalDev) {
     const redirectUri = encodeURIComponent(

diff --git a/constants/index.ts b/constants/index.ts
@@ -37,3 +37,5 @@ export const THEME_COLORS = {
   backgroundDark: '#fafafa',
   backgroundLight: '#111111',
 } as const
+
+export const OAUTH_SCOPE = 'atproto transition:generic transition:chat.bsky'
diff --git a/public/oauth/client-metadata.json b/public/oauth/client-metadata.json
diff --git a/server/api/[server]/login.ts b/server/api/[server]/login.ts
diff --git a/server/api/[server]/oauth/[origin].ts b/server/api/[server]/oauth/[origin].ts
diff --git a/server/api/oauth/client-metadata.json.get.ts b/server/api/oauth/client-metadata.json.get.ts
@@ -0,0 +1,34 @@
+import { OAUTH_SCOPE } from '~/constants'
+
+export default defineEventHandler(async (event) => {
+  const requestUrl = getRequestURL(event)
+
+  const proto = getHeader(event, 'x-forwarded-proto')
+  const host = getHeader(event, 'x-forwarded-host')
+  if (proto && host) {
+    const { protocol, hostname, port } = new URL(`${proto}://${host}`)
+    requestUrl.protocol = protocol
+    requestUrl.hostname = hostname
+    requestUrl.port = port
+  }
+
+  return {
+    client_id: requestUrl.href,
+    client_uri: new URL('/', requestUrl).href,
+    redirect_uris: [new URL('/', requestUrl).href],
+    response_types: ['code'],
+    grant_types: ['authorization_code'],
+    token_endpoint_auth_method: 'none',
+    scope: OAUTH_SCOPE,
+    dpop_bound_access_tokens: true,
+    application_type: 'web',
+    client_name: 'Nimbus',
+    logo_uri: new URL(
+      '/pwa-192x192.png',
+      requestUrl,
+    ).href,
+    // tos_uri: 'https://example.com/tos',
+    // policy_uri: 'https://example.com/policy',
+    // jwks_uri: 'https://example.com/jwks',
+  }
+})