package discord import ( "encoding/json" "errors" "fmt" "net/http" "net/url" "strings" ) const API_ENDPOINT = "https://discord.com/api/v10" const CLIENT_ID = "1268013769578119208" // TODO: good GOD change this later please i beg you. we've already broken // the rules by doing this at all const CLIENT_SECRET = "JUEZnixhN7BxmLIHmbECiKETMP85VT0E" const REDIRECT_URI = "https://discord.com/oauth2/authorize?client_id=1268013769578119208&response_type=code&redirect_uri=http%3A%2F%2F127.0.0.1%3A8080%2Fapi%2Fv1%2Fadmin%2Flogin&scope=identify" // TODO: change before prod const MY_REDIRECT_URI = "http://127.0.0.1:8080/api/v1/admin/login" type ( AccessTokenResponse struct { TokenType string `json:"token_type"` AccessToken string `json:"access_token"` ExpiresIn int `json:"expires_in"` RefreshToken string `json:"refresh_token"` Scope string `json:"scope"` } AuthInfoResponse struct { Application struct { Id string Name string Icon string Description string Hook bool BotPublic bool botRequireCodeGrant bool VerifyKey bool } Scopes []string Expires string User DiscordUser } DiscordUser struct { Id string Username string Avatar string Discriminator string GlobalName string PublicFlags int } ) func GetOAuthTokenFromCode(code string) (string, error) { // let's get an oauth token! req, err := http.NewRequest(http.MethodPost, fmt.Sprintf("%s/oauth2/token", API_ENDPOINT), strings.NewReader(url.Values{ "client_id": {CLIENT_ID}, "client_secret": {CLIENT_SECRET}, "grant_type": {"authorization_code"}, "code": {code}, "redirect_uri": {MY_REDIRECT_URI}, }.Encode())) req.Header.Add("Content-Type", "application/x-www-form-urlencoded") res, err := http.DefaultClient.Do(req) if err != nil { return "", errors.New(fmt.Sprintf("Failed while contacting discord API: %s", err)) } oauth := AccessTokenResponse{} err = json.NewDecoder(res.Body).Decode(&oauth) if err != nil { return "", errors.New(fmt.Sprintf("Failed to parse OAuth response data from discord: %s\n", err)) } res.Body.Close() return oauth.AccessToken, nil } func GetDiscordUserFromAuth(token string) (DiscordUser, error) { // let's get authorisation information! req, err := http.NewRequest(http.MethodGet, fmt.Sprintf("%s/oauth2/@me", API_ENDPOINT), nil) req.Header.Add("Authorization", "Bearer " + token) res, err := http.DefaultClient.Do(req) if err != nil { return DiscordUser{}, errors.New(fmt.Sprintf("Failed to retrieve discord auth information: %s\n", err)) } auth_info := AuthInfoResponse{} err = json.NewDecoder(res.Body).Decode(&auth_info) if err != nil { return DiscordUser{}, errors.New(fmt.Sprintf("Failed to parse auth information from discord: %s\n", err)) } defer res.Body.Close() return auth_info.User, nil }