UNPKG

nuxt-users

Version:

A comprehensive user management module for Nuxt 3 and Nuxt 4 applications with authentication, authorization, database support, and CLI tools

nuxt-users.webmania.cc

rrd108/nuxt-users

69 lines (68 loc) 3.24 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
import { defineEventHandler, sendRedirect, getQuery, setCookie } from "h3"; import { useRuntimeConfig } from "#imports"; import { createGoogleOAuth2Client, getGoogleUserFromCode, findOrCreateGoogleUser, createAuthTokenForUser } from "../../../../utils/google-oauth.js"; export default defineEventHandler(async (event) => { const { nuxtUsers } = useRuntimeConfig(); const options = nuxtUsers; const query = getQuery(event); if (!options.auth.google) { return sendRedirect(event, "/login?error=oauth_not_configured"); } if (query.error) { console.error("[Nuxt Users] Google OAuth error:", query.error); const errorRedirect = options.auth.google.errorRedirect || "/login?error=oauth_failed"; return sendRedirect(event, errorRedirect); } if (!query.code || typeof query.code !== "string") { console.error("[Nuxt Users] Missing authorization code in OAuth callback"); const errorRedirect = options.auth.google.errorRedirect || "/login?error=oauth_failed"; return sendRedirect(event, errorRedirect); } try { const baseUrl = getRequestURL(event).origin; const callbackPath = options.auth.google.callbackUrl || `${options.apiBasePath}/auth/google/callback`; const callbackUrl = `${baseUrl}${callbackPath}`; const oauth2Client = createGoogleOAuth2Client(options.auth.google, callbackUrl); const googleUser = await getGoogleUserFromCode(oauth2Client, query.code); const user = await findOrCreateGoogleUser(googleUser, options); if (!user) { console.warn(`[Nuxt Users] User not registered attempted Google OAuth login: ${googleUser.email}`); const errorRedirect = options.auth.google.errorRedirect || "/login?error=user_not_registered"; return sendRedirect(event, errorRedirect); } if (!user.active) { console.warn(`[Nuxt Users] Inactive user attempted Google OAuth login: ${user.email}`); const errorRedirect = options.auth.google.errorRedirect || "/login?error=account_inactive"; return sendRedirect(event, errorRedirect); } const token = await createAuthTokenForUser(user, options, true); const cookieOptions = { httpOnly: true, secure: process.env.NODE_ENV === "production", sameSite: "lax", path: "/", maxAge: 60 * 60 * 24 * (options.auth.rememberMeExpiration || 30) // 30 days default }; setCookie(event, "auth_token", token, cookieOptions); console.log(`[Nuxt Users] Google OAuth login successful for user: ${user.email}`); const successRedirect = options.auth.google.successRedirect || "/"; const redirectUrl = successRedirect.includes("?") ? `${successRedirect}&oauth_success=true` : `${successRedirect}?oauth_success=true`; return sendRedirect(event, redirectUrl); } catch (error) { console.error("[Nuxt Users] Google OAuth callback error:", error); const errorRedirect = options.auth.google?.errorRedirect || "/login?error=oauth_failed"; return sendRedirect(event, errorRedirect); } }); const getRequestURL = (event) => { const headers = event.node.req.headers; const host = headers.host || headers[":authority"]; const protocol = headers["x-forwarded-proto"] || "https"; return new URL(`${protocol}://${host}`); };