api-client/packages/hoppscotch-backend/src/auth/auth.controller.ts

import {
  Body,
  Controller,
  Get,
  HttpException,
  HttpStatus,
  Post,
  Request,
  Res,
  UseGuards,
} from '@nestjs/common';
import { AuthService } from './auth.service';
import { signInMagicDto } from './dto/signin-magic.dto';
import { verifyMagicDto } from './dto/verify-magic.dto';
import { Response } from 'express';
import * as E from 'fp-ts/Either';
import { authCookieHandler, throwHTTPErr } from 'src/utils';
import { RTJwtAuthGuard } from './guards/rt-jwt-auth.guard';
import { GqlUser } from 'src/decorators/gql-user.decorator';
import { AuthUser } from 'src/types/AuthUser';
import { RTCookie } from 'src/decorators/rt-cookie.decorator';
import { AuthGuard } from '@nestjs/passport';

@Controller('auth')
export class AuthController {
  constructor(private authService: AuthService) {}

  /**
   ** Route to initiate magic-link auth for a users email
   */
  @Post('signin')
  async signInMagicLink(@Body() authData: signInMagicDto) {
    const deviceIdToken = await this.authService.signInMagicLink(
      authData.email,
    );
    if (E.isLeft(deviceIdToken)) throwHTTPErr(deviceIdToken.left);
    return deviceIdToken.right;
  }

  /**
   ** Route to verify and sign in a valid user via magic-link
   */
  @Post('verify')
  async verify(@Body() data: verifyMagicDto, @Res() res: Response) {
    const authTokens = await this.authService.verifyMagicLinkTokens(data);
    if (E.isLeft(authTokens)) throwHTTPErr(authTokens.left);
    authCookieHandler(res, authTokens.right, false);
  }

  /**
   ** Route to refresh auth tokens with Refresh Token Rotation
   * @see https://auth0.com/docs/secure/tokens/refresh-tokens/refresh-token-rotation
   */
  @Get('refresh')
  @UseGuards(RTJwtAuthGuard)
  async refresh(
    @GqlUser() user: AuthUser,
    @RTCookie() refresh_token: string,
    @Res() res,
  ) {
    const newTokenPair = await this.authService.refreshAuthTokens(
      refresh_token,
      user,
    );
    if (E.isLeft(newTokenPair)) throwHTTPErr(newTokenPair.left);
    authCookieHandler(res, newTokenPair.right, false);
  }

  /**
   ** Route to initiate SSO auth via Google
   */
  @Get('google')
  @UseGuards(AuthGuard('google'))
  async googleAuth(@Request() req) {}

  /**
   ** Callback URL for Google SSO
   * @see https://auth0.com/docs/get-started/authentication-and-authorization-flow/authorization-code-flow#how-it-works
   */
  @Get('google/callback')
  @UseGuards(AuthGuard('google'))
  async googleAuthRedirect(@Request() req, @Res() res) {
    const authTokens = await this.authService.generateAuthTokens(req.user.uid);
    if (E.isLeft(authTokens)) throwHTTPErr(authTokens.left);
    authCookieHandler(res, authTokens.right, true);
  }

  /**
   ** Route to initiate SSO auth via Github
   */
  @Get('github')
  @UseGuards(AuthGuard('github'))
  async githubAuth(@Request() req) {}

  /**
   ** Callback URL for Github SSO
   * @see https://auth0.com/docs/get-started/authentication-and-authorization-flow/authorization-code-flow#how-it-works
   */
  @Get('github/callback')
  @UseGuards(AuthGuard('github'))
  async githubAuthRedirect(@Request() req, @Res() res) {
    const authTokens = await this.authService.generateAuthTokens(req.user.uid);
    if (E.isLeft(authTokens)) throwHTTPErr(authTokens.left);
    authCookieHandler(res, authTokens.right, true);
  }

  /**
   ** Route to initiate SSO auth via Microsoft
   */
  @Get('microsoft')
  @UseGuards(AuthGuard('microsoft'))
  async microsoftAuth(@Request() req) {}

  /**
   ** Callback URL for Microsoft SSO
   * @see https://auth0.com/docs/get-started/authentication-and-authorization-flow/authorization-code-flow#how-it-works
   */
  @Get('microsoft/callback')
  @UseGuards(AuthGuard('microsoft'))
  async microsoftAuthRedirect(@Request() req, @Res() res) {
    const authTokens = await this.authService.generateAuthTokens(req.user.uid);
    if (E.isLeft(authTokens)) throwHTTPErr(authTokens.left);
    authCookieHandler(res, authTokens.right, true);
  }

  /**
   ** Log user out by clearing cookies containing auth tokens
   */
  @Get('logout')
  async logout(@Res() res: Response) {
    res.clearCookie('access_token');
    res.clearCookie('refresh_token');
    return res.status(200).send();
  }
}
refactor: created utlility functions for setting cookies and handling redirects 2023-01-10 11:30:39 +00:00			`import {`
			`Body,`
			`Controller,`
			`Get,`
			`HttpException,`
			`HttpStatus,`
			`Post,`
feat: /refresh route complete along with refresh token rotation 2023-01-11 13:59:33 +00:00			`Request,`
refactor: created utlility functions for setting cookies and handling redirects 2023-01-10 11:30:39 +00:00			`Res,`
feat: /refresh route complete along with refresh token rotation 2023-01-11 13:59:33 +00:00			`UseGuards,`
refactor: created utlility functions for setting cookies and handling redirects 2023-01-10 11:30:39 +00:00			`} from '@nestjs/common';`
chore: manually committing auth module to remoter 2023-01-09 13:32:14 +00:00			`import { AuthService } from './auth.service';`
			`import { signInMagicDto } from './dto/signin-magic.dto';`
			`import { verifyMagicDto } from './dto/verify-magic.dto';`
feat: magic-link auth complete 2023-01-10 10:36:42 +00:00			`import { Response } from 'express';`
refactor: created utlility functions for setting cookies and handling redirects 2023-01-10 11:30:39 +00:00			`import * as E from 'fp-ts/Either';`
			`import { authCookieHandler, throwHTTPErr } from 'src/utils';`
feat: /refresh route complete along with refresh token rotation 2023-01-11 13:59:33 +00:00			`import { RTJwtAuthGuard } from './guards/rt-jwt-auth.guard';`
			`import { GqlUser } from 'src/decorators/gql-user.decorator';`
			`import { AuthUser } from 'src/types/AuthUser';`
			`import { RTCookie } from 'src/decorators/rt-cookie.decorator';`
feat: google sso auth added 2023-01-12 19:22:29 +00:00			`import { AuthGuard } from '@nestjs/passport';`
chore: manually committing auth module to remoter 2023-01-09 13:32:14 +00:00
			`@Controller('auth')`
			`export class AuthController {`
			`constructor(private authService: AuthService) {}`

fix: fixed all issues raised in initial PR review 2023-01-30 13:25:53 +00:00			`/**`
			`** Route to initiate magic-link auth for a users email`
			`*/`
chore: manually committing auth module to remoter 2023-01-09 13:32:14 +00:00			`@Post('signin')`
fix: fixed all issues raised in initial PR review 2023-01-30 13:25:53 +00:00			`async signInMagicLink(@Body() authData: signInMagicDto) {`
			`const deviceIdToken = await this.authService.signInMagicLink(`
			`authData.email,`
			`);`
			`if (E.isLeft(deviceIdToken)) throwHTTPErr(deviceIdToken.left);`
			`return deviceIdToken.right;`
chore: manually committing auth module to remoter 2023-01-09 13:32:14 +00:00			`}`
feat: magic-link auth complete 2023-01-10 10:36:42 +00:00
fix: fixed all issues raised in initial PR review 2023-01-30 13:25:53 +00:00			`/**`
			`** Route to verify and sign in a valid user via magic-link`
			`*/`
feat: magic-link auth complete 2023-01-10 10:36:42 +00:00			`@Post('verify')`
			`async verify(@Body() data: verifyMagicDto, @Res() res: Response) {`
fix: fixed all issues raised in initial PR review 2023-01-30 13:25:53 +00:00			`const authTokens = await this.authService.verifyMagicLinkTokens(data);`
refactor: created utlility functions for setting cookies and handling redirects 2023-01-10 11:30:39 +00:00			`if (E.isLeft(authTokens)) throwHTTPErr(authTokens.left);`
			`authCookieHandler(res, authTokens.right, false);`
feat: magic-link auth complete 2023-01-10 10:36:42 +00:00			`}`
feat: /refresh route complete along with refresh token rotation 2023-01-11 13:59:33 +00:00
fix: fixed all issues raised in initial PR review 2023-01-30 13:25:53 +00:00			`/**`
			`** Route to refresh auth tokens with Refresh Token Rotation`
			`* @see https://auth0.com/docs/secure/tokens/refresh-tokens/refresh-token-rotation`
			`*/`
feat: /refresh route complete along with refresh token rotation 2023-01-11 13:59:33 +00:00			`@Get('refresh')`
			`@UseGuards(RTJwtAuthGuard)`
			`async refresh(`
			`@GqlUser() user: AuthUser,`
			`@RTCookie() refresh_token: string,`
			`@Res() res,`
			`) {`
			`const newTokenPair = await this.authService.refreshAuthTokens(`
			`refresh_token,`
			`user,`
			`);`
			`if (E.isLeft(newTokenPair)) throwHTTPErr(newTokenPair.left);`
			`authCookieHandler(res, newTokenPair.right, false);`
			`}`
feat: google sso auth added 2023-01-12 19:22:29 +00:00
fix: fixed all issues raised in initial PR review 2023-01-30 13:25:53 +00:00			`/**`
			`** Route to initiate SSO auth via Google`
			`*/`
feat: google sso auth added 2023-01-12 19:22:29 +00:00			`@Get('google')`
			`@UseGuards(AuthGuard('google'))`
			`async googleAuth(@Request() req) {}`

fix: fixed all issues raised in initial PR review 2023-01-30 13:25:53 +00:00			`/**`
			`** Callback URL for Google SSO`
			`* @see https://auth0.com/docs/get-started/authentication-and-authorization-flow/authorization-code-flow#how-it-works`
			`*/`
feat: google sso auth added 2023-01-12 19:22:29 +00:00			`@Get('google/callback')`
			`@UseGuards(AuthGuard('google'))`
			`async googleAuthRedirect(@Request() req, @Res() res) {`
refactor: logout route now just returning 200 status code not redirecting to app_domain 2023-01-19 09:43:55 +00:00			`const authTokens = await this.authService.generateAuthTokens(req.user.uid);`
feat: google sso auth added 2023-01-12 19:22:29 +00:00			`if (E.isLeft(authTokens)) throwHTTPErr(authTokens.left);`
			`authCookieHandler(res, authTokens.right, true);`
			`}`
feat: github login added 2023-01-12 20:41:42 +00:00
fix: fixed all issues raised in initial PR review 2023-01-30 13:25:53 +00:00			`/**`
			`** Route to initiate SSO auth via Github`
			`*/`
feat: github login added 2023-01-12 20:41:42 +00:00			`@Get('github')`
			`@UseGuards(AuthGuard('github'))`
			`async githubAuth(@Request() req) {}`

fix: fixed all issues raised in initial PR review 2023-01-30 13:25:53 +00:00			`/**`
			`** Callback URL for Github SSO`
			`* @see https://auth0.com/docs/get-started/authentication-and-authorization-flow/authorization-code-flow#how-it-works`
			`*/`
feat: github login added 2023-01-12 20:41:42 +00:00			`@Get('github/callback')`
			`@UseGuards(AuthGuard('github'))`
			`async githubAuthRedirect(@Request() req, @Res() res) {`
refactor: logout route now just returning 200 status code not redirecting to app_domain 2023-01-19 09:43:55 +00:00			`const authTokens = await this.authService.generateAuthTokens(req.user.uid);`
feat: github login added 2023-01-12 20:41:42 +00:00			`if (E.isLeft(authTokens)) throwHTTPErr(authTokens.left);`
			`authCookieHandler(res, authTokens.right, true);`
			`}`
fix: added scope for github strategy in auth module 2023-01-18 17:04:15 +00:00
fix: fixed all issues raised in initial PR review 2023-01-30 13:25:53 +00:00			`/**`
			`** Route to initiate SSO auth via Microsoft`
			`*/`
fix: added scope for github strategy in auth module 2023-01-18 17:04:15 +00:00			`@Get('microsoft')`
			`@UseGuards(AuthGuard('microsoft'))`
			`async microsoftAuth(@Request() req) {}`

fix: fixed all issues raised in initial PR review 2023-01-30 13:25:53 +00:00			`/**`
			`** Callback URL for Microsoft SSO`
			`* @see https://auth0.com/docs/get-started/authentication-and-authorization-flow/authorization-code-flow#how-it-works`
			`*/`
fix: added scope for github strategy in auth module 2023-01-18 17:04:15 +00:00			`@Get('microsoft/callback')`
			`@UseGuards(AuthGuard('microsoft'))`
			`async microsoftAuthRedirect(@Request() req, @Res() res) {`
refactor: logout route now just returning 200 status code not redirecting to app_domain 2023-01-19 09:43:55 +00:00			`const authTokens = await this.authService.generateAuthTokens(req.user.uid);`
fix: added scope for github strategy in auth module 2023-01-18 17:04:15 +00:00			`if (E.isLeft(authTokens)) throwHTTPErr(authTokens.left);`
			`authCookieHandler(res, authTokens.right, true);`
			`}`

fix: fixed all issues raised in initial PR review 2023-01-30 13:25:53 +00:00			`/**`
			`** Log user out by clearing cookies containing auth tokens`
			`*/`
fix: added scope for github strategy in auth module 2023-01-18 17:04:15 +00:00			`@Get('logout')`
			`async logout(@Res() res: Response) {`
			`res.clearCookie('access_token');`
			`res.clearCookie('refresh_token');`
refactor: logout route now just returning 200 status code not redirecting to app_domain 2023-01-19 09:43:55 +00:00			`return res.status(200).send();`
fix: added scope for github strategy in auth module 2023-01-18 17:04:15 +00:00			`}`
chore: manually committing auth module to remoter 2023-01-09 13:32:14 +00:00			`}`