-
Notifications
You must be signed in to change notification settings - Fork 1
Expand file tree
/
Copy pathconnect.js
More file actions
128 lines (107 loc) · 4.02 KB
/
connect.js
File metadata and controls
128 lines (107 loc) · 4.02 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
const express = require('express')
const axios = require('axios')
const baseURL = require('./strava-api').baseURL
function connect({ clientId, clientSecret, afterUrl }) {
const app = express()
app.get('/connect', function(req, res) {
const thisUrl = `http://${req.headers.host}${req.originalUrl}`
const tokenUrl = `${thisUrl.substring(0, thisUrl.lastIndexOf('/'))}/token`
const authUrl = `${baseURL}/oauth/authorize?client_id=${clientId}&response_type=code&redirect_uri=${tokenUrl}`
respondUrl(req, res, authUrl)
})
app.get('/disconnect', function(req, res) {
const token = connect.getToken(req)
if (token) {
axios.post('/oauth/deauthorize', {}, {
baseURL,
headers: {
"Authorization": "Bearer " + token
}
}).then(response => {
res.cookie('stravaToken', '', { path: '/', httpOnly: true })
respondUrl(req, res, afterUrl)
}).catch(responseError(res))
} else {
respondUrl(req, res, afterUrl)
}
})
app.get('/token', function(req, res) {
const errorMessage = req.query.error
if (errorMessage) {
console.log(`error: ${errorMessage}`)
res.status(500).send(errorMessage)
return
}
const code = req.query.code
console.log(`code: ${code}`)
const data = {
client_id: clientId,
client_secret: clientSecret,
code
}
axios.post('/oauth/token', data, { baseURL }).then(response => {
const expires = new Date()
expires.setFullYear(expires.getFullYear() + 1)
res.cookie('stravaToken', response.data.access_token, { path: '/', httpOnly: true, expires })
res.redirect(afterUrl)
}).catch(responseError(res))
})
app.get('/settings', function(req, res) {
sendJson(res, connect.getSettings(req));
})
app.options('/settings', respondCORS)
app.post('/settings', function(req, res) {
const { startDate, startAge } = req.body
const settingsCookie = JSON.stringify({ startDate, startAge })
res.cookie('stravaSettings', settingsCookie, { path: '/', httpOnly: true })
sendJson(res, {});
})
return app
}
connect.getToken = function getToken(req) {
return req.cookies.stravaToken
}
connect.getSettings = function getSettings(req) {
const settingsCookie = req.cookies.stravaSettings
return settingsCookie ?
JSON.parse(settingsCookie)
: {};
}
function responseError(res) {
return function (err) {
if (err.response) {
res.status(err.response.status).send(`${err.response.status} - ${err.response.statusText}`);
} else {
res.status(500).send(JSON.stringify(err));
}
}
}
function respondUrl(req, res, url) {
if (isJson(req)) {
res.setHeader('Access-Control-Allow-Origin', 'http://localhost:8888');
res.setHeader('Access-Control-Allow-Methods', 'GET');
res.setHeader('Access-Control-Allow-Headers', 'Content-Type');
res.setHeader('Access-Control-Allow-Credentials', true);
res.send({ url });
} else {
res.redirect(url)
}
}
function isJson(req) {
return req.get('Accept').indexOf('application/json') !== -1
}
function respondCORS(req, res) {
sendJson(res, {});
}
function sendJson(res, data) {
res.setHeader('Access-Control-Allow-Origin', 'http://localhost:8888');
res.setHeader('Access-Control-Allow-Methods', 'GET,PUT,POST,DELETE');
res.setHeader('Access-Control-Allow-Headers', 'Content-Type');
res.setHeader('Access-Control-Allow-Credentials', true);
res.setHeader('Cache-Control', 'nocache');
res.setHeader('Last-Modified', (new Date()).toUTCString());
res.setHeader("Pragma", "no-cache");
res.setHeader("Expires", 0);
res.send(data);
}
module.exports = connect