src/discord.ts

import {
  RESTGetAPIOAuth2CurrentAuthorizationResult,
  RESTPostOAuth2AccessTokenResult,
  RESTPostOAuth2RefreshTokenResult,
  Snowflake,
} from 'discord-api-types/v10';
import { Bindings } from './worker-configuration';
import * as storage from './storage';

export function getOAuthUrl(env: any) {
  const state = crypto.randomUUID();
  const url = new URL('https://discord.com/api/oauth2/authorize');

  url.searchParams.set('client_id', env.DISCORD_APPLICATION_ID);
  url.searchParams.set('redirect_uri', env.WORKER_URL + '/oauth-callback');
  url.searchParams.set('response_type', 'code');
  url.searchParams.set('state', state);
  url.searchParams.set(
    'scope',
    'role_connections.write identify guilds email'
  );
  url.searchParams.set('prompt', 'consent');

  return {
    state,
    url: url.toString(),
  };
}

export async function getOAuthTokens(code: string | undefined, env: Bindings) {
  if (!code) {
    throw new Error('no code provided');
  }
  const url = 'https://discord.com/api/v10/oauth2/token';

  const body = new URLSearchParams({
    client_id: env.DISCORD_APPLICATION_ID,
    client_secret: env.DISCORD_CLIENT_SECRET,
    grant_type: 'authorization_code',
    code: code,
    redirect_uri: env.WORKER_URL + '/oauth-callback',
  });

  const response = await fetch(url, {
    body,
    method: 'POST',
    headers: {
      'Content-Type': 'application/x-www-form-urlencoded',
    },
  });

  if (response.ok) {
    const data = await response.json() as RESTPostOAuth2AccessTokenResult;

    return data;
  } else {
    console.error('error at fetching OAuth tokens');
    console.error(await response.json());
  }
}

export async function getAccessToken(
  userId: Snowflake,
  tokens: storage.Tokens,
  env: Bindings
) {
  if (Date.now() > tokens.expires_in) {
    const url = 'https://discord.com/api/v10/oauth2/token';

    const body = new URLSearchParams({
      client_id: env.DISCORD_APPLICATION_ID,
      client_secret: env.DISCORD_CLIENT_SECRET,
      grant_type: 'refresh_token',
      refresh_token: tokens.refresh_token,
    });

    const response = await fetch(url, {
      body,
      method: 'POST',
      headers: {
        'Content-Type': 'application/x-www-form-urlencoded',
      },
    });

    if (response.ok) {
      const tokens = await response.json() as RESTPostOAuth2RefreshTokenResult;

      tokens.expires_in = Date.now() + tokens.expires_in * 1000;

      await storage.storeDiscordTokens(userId, tokens, env.TOKEN_STORE);

      return tokens.access_token;
    } else {
      console.error('error at refreshing token');
      console.error(await response.json());
    }
  }

  return tokens.access_token;
}

export async function getUserData(tokens: RESTPostOAuth2AccessTokenResult) {
  const url = 'https://discord.com/api/v10/oauth2/@me';

  const response = await fetch(url, {
    headers: {
      Authorization: `Bearer ${tokens.access_token}`,
    },
  });

  if (response.ok) {
    const data =
      await response.json() as RESTGetAPIOAuth2CurrentAuthorizationResult;

    return data;
  } else {
    console.error('error at fetching user data');
    console.error(await response.json());
  }
}

export async function getMetadata(
  userId: Snowflake,
  tokens: any,
  env: Bindings
) {
  const url = `https://discord.com/api/v10/users/@me/applications/${env.DISCORD_APPLICATION_ID}/role-connection`;

  const accessToken = await getAccessToken(userId, tokens, env);

  const response = await fetch(url, {
    headers: {
      Authorization: `Bearer ${accessToken}`,
    },
  });

  if (response.ok) {
    const data = await response.json();

    console.log('ok');

    return data;
  } else {
    console.error('error at getting metadata');
    console.error(await response.json());
  }
}

export async function pushMetadata(
  userId: Snowflake,
  tokens: storage.Tokens,
  body: Object,
  env: Bindings
) {
  const url = `https://discord.com/api/v10/users/@me/applications/${env.DISCORD_APPLICATION_ID}/role-connection`;

  const accessToken = await getAccessToken(userId, tokens, env);

  const response = await fetch(url, {
    method: 'PUT',
    body: JSON.stringify(body),
    headers: {
      Authorization: `Bearer ${accessToken}`,
      'Content-Type': 'application/json',
    },
  });

  if (!response.ok) {
    console.error('error at pushing metadata');
    console.error(await response.json());
  }
}