george/bibdle
1
0
Fork 0
mirror of https://github.com/pupperpowell/bibdle.git synced 2026-04-05 17:33:31 -04:00
Code Issues Packages Projects Releases Wiki Activity

switched to Bun.env for apple-auth.ts

Browse Source
This commit is contained in:
George Powell
2026-02-13 01:47:29 -05:00
parent 885adad756
commit 1719e0bbbf
1 changed files with 7 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
src/lib/server/apple-auth.ts
View File

@@ -1,14 +1,12 @@
import { encodeBase64url } from '@oslojs/encoding'; import { encodeBase64url } from '@oslojs/encoding';
import { env } from '$env/dynamic/private';
import { env as publicEnv } from '$env/dynamic/public';
const APPLE_AUTH_URL = 'https://appleid.apple.com/auth/authorize'; const APPLE_AUTH_URL = 'https://appleid.apple.com/auth/authorize';
const APPLE_TOKEN_URL = 'https://appleid.apple.com/auth/token'; const APPLE_TOKEN_URL = 'https://appleid.apple.com/auth/token';
export function getAppleAuthUrl(state: string): string { export function getAppleAuthUrl(state: string): string {
const params = new URLSearchParams({ const params = new URLSearchParams({
client_id: env.APPLE_ID!, client_id: Bun.env.APPLE_ID!,
redirect_uri: `${publicEnv.PUBLIC_SITE_URL}/auth/apple/callback`, redirect_uri: `${Bun.env.PUBLIC_SITE_URL}/auth/apple/callback`,
response_type: 'code', response_type: 'code',
response_mode: 'form_post', response_mode: 'form_post',
scope: 'name email', scope: 'name email',
@@ -18,14 +16,14 @@ export function getAppleAuthUrl(state: string): string {
} }
export async function generateAppleClientSecret(): Promise<string> { export async function generateAppleClientSecret(): Promise<string> {
const header = { alg: 'ES256', kid: env.APPLE_KEY_ID! }; const header = { alg: 'ES256', kid: Bun.env.APPLE_KEY_ID! };
const now = Math.floor(Date.now() / 1000); const now = Math.floor(Date.now() / 1000);
const payload = { const payload = {
iss: env.APPLE_TEAM_ID!, iss: Bun.env.APPLE_TEAM_ID!,
iat: now, iat: now,
exp: now + 86400 * 180, exp: now + 86400 * 180,
aud: 'https://appleid.apple.com', aud: 'https://appleid.apple.com',
sub: env.APPLE_ID! sub: Bun.env.APPLE_ID!
}; };
const encodedHeader = encodeBase64url(new TextEncoder().encode(JSON.stringify(header))); const encodedHeader = encodeBase64url(new TextEncoder().encode(JSON.stringify(header)));
@@ -33,7 +31,7 @@ export async function generateAppleClientSecret(): Promise<string> {
const signingInput = `${encodedHeader}.${encodedPayload}`; const signingInput = `${encodedHeader}.${encodedPayload}`;
// Import PEM private key // Import PEM private key
const pemBody = env.APPLE_PRIVATE_KEY!.replace(/-----BEGIN PRIVATE KEY-----/, '') const pemBody = Bun.env.APPLE_PRIVATE_KEY!.replace(/-----BEGIN PRIVATE KEY-----/, '')
.replace(/-----END PRIVATE KEY-----/, '') .replace(/-----END PRIVATE KEY-----/, '')
.replace(/\s/g, ''); .replace(/\s/g, '');
const keyBuffer = Uint8Array.from(atob(pemBody), (c) => c.charCodeAt(0)); const keyBuffer = Uint8Array.from(atob(pemBody), (c) => c.charCodeAt(0));
@@ -108,7 +106,7 @@ export async function exchangeAppleCode(
const clientSecret = await generateAppleClientSecret(); const clientSecret = await generateAppleClientSecret();
const params = new URLSearchParams({ const params = new URLSearchParams({
client_id: env.APPLE_ID!, client_id: Bun.env.APPLE_ID!,
client_secret: clientSecret, client_secret: clientSecret,
code, code,
grant_type: 'authorization_code', grant_type: 'authorization_code',