UNPKG

next-auth-pubkey

Version:

A light-weight Lightning and Nostr auth provider for your Next.js app that's entirely self-hosted and plugs seamlessly into the next-auth framework.

github.com/jowo-io/next-auth-pubkey/

jowo-io/next-auth-pubkey

155 lines (154 loc) 6.28 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
"use client"; import { useState, useEffect } from "react"; import { useRouter } from "next/router"; import { hardConfig } from "../main/config/hard.js"; import { cleanParams } from "../main/utils/params.js"; import { formatLightningAuth } from "../utils/lnurl.js"; import { maxNetworkRequestsFailures } from "./constants.js"; /** * A React hook that, on mount, will trigger an API request and create a new Lightning auth session. * Thereafter, it'll poll the API and checks if the Lightning auth QR has been scanned. * If enough time elapses without a sign in attempt, the Lightning auth session will be refreshed. * Once a success status is received from polling, the user will be redirected to the `next-auth` redirect url. * * This hook is designed for use in the pages router, it's not recommended for use in the app router. * * @returns {Object} * @returns {String} lnurl - the raw LNURL, should be made available for copy-pasting * @returns {String} qr - a url pointing the lnurl-auth QR Code image, should be used in the src prop of img tags * @returns {String} button - a deep-link that will open in Lightning enabled wallets, should be used in the href prop of anchor tags */ export function useLightningAuth() { const router = useRouter(); const [lnurl, setUrl] = useState(""); useEffect(() => { if (!router.isReady) return; const { state = "", redirect_uri: redirectUri = "" } = cleanParams(router.query); let session; let pollTimeoutId; let createIntervalId; let networkRequestCount = 0; let errorUrl; const pollController = new AbortController(); const createController = new AbortController(); // cleanup when the hook unmounts of polling is successful const cleanup = () => { clearTimeout(pollTimeoutId); clearInterval(createIntervalId); pollController.abort(); createController.abort(); }; // redirect user to error page if something goes wrong function error(e) { console.error(e); if (errorUrl) { router.replace(errorUrl); } else { // if no errorUrl exists send to defaul `next-auth` error page const params = new URLSearchParams(); params.append("error", "OAuthSignin"); router.replace(`/api/auth/error?${params.toString()}`); } } // poll the api to see if the user has successfully authenticated function poll() { if (!session || !session.k1) return; const k1 = session.k1; const params = new URLSearchParams({ k1 }); return fetch(hardConfig.apis.poll, { method: "POST", headers: { "content-type": "application/x-www-form-urlencoded" }, body: params, cache: "default", signal: pollController.signal, }) .then((r) => { if (r.status === 410) { // if resource not found throw error immediately, // this means the user's auth session has been deleted. networkRequestCount = maxNetworkRequestsFailures; } return r.json(); }) .catch((e) => { // if there are more than X network errors, then trigger redirect networkRequestCount++; if (networkRequestCount >= maxNetworkRequestsFailures) { pollTimeoutId = setTimeout(poll, session.pollInterval); throw e; } }) .then((d) => { if (d && d.error) { if (d.url) errorUrl = d.url; throw new Error(d.message || d.error); } if (!redirectUri || !state) throw new Error("Missing query params"); if (d) networkRequestCount = 0; if (d && d.message) throw new Error(d.message); pollTimeoutId = setTimeout(poll, session.pollInterval); if (d && d.success) { cleanup(); let url = new URL(redirectUri); url.searchParams.append("state", state); url.searchParams.append("code", k1); router.replace(url); } }) .catch((e) => { if (!pollController.signal.aborted) { error(e); } }); } // create a new lnurl and set it to state function create() { const params = new URLSearchParams({ state }); if (session && session.k1) { params.append("k1", session.k1); } return fetch(hardConfig.apis.create, { method: "POST", headers: { "content-type": "application/x-www-form-urlencoded" }, body: params, cache: "default", signal: createController.signal, }) .then((r) => r.json()) .then((d) => { if (d && d.error) { if (d.url) errorUrl = d.url; throw new Error(d.message || d.error); } session = d; if (!session) return; // setup intervals and create first qr code pollTimeoutId = setTimeout(poll, session?.pollInterval); createIntervalId = setInterval(create, session?.createInterval); setUrl(session.lnurl); }) .catch((e) => { if (!createController.signal.aborted) { error(e); } }); } create(); return () => cleanup(); }, [router.isReady]); const { qr, button } = formatLightningAuth(lnurl); return { lnurl, qr, button, }; }