First working version of EVE-PI

src/pages/api/refresh.ts

@@ -0,0 +1,62 @@
+import { AccessToken } from "@/types";
+import { extractCharacterFromToken } from "@/utils";
+import { NextApiRequest, NextApiResponse } from "next";
+import crypto from "crypto-js";
+
+const EVE_SSO_TOKEN_URL = "https://login.eveonline.com/v2/oauth/token";
+const EVE_SSO_CLIENT_ID = process.env.EVE_SSO_CLIENT_ID ?? "";
+const EVE_SSO_SECRET = process.env.EVE_SSO_SECRET ?? "";
+
+const handler = async (req: NextApiRequest, res: NextApiResponse) => {
+  if (req.method === "POST") {
+    const accessToken: AccessToken = req.body;
+    const params = new URLSearchParams({
+      grant_type: "refresh_token",
+      refresh_token: crypto.AES.decrypt(
+        accessToken.refresh_token,
+        EVE_SSO_SECRET
+      ).toString(crypto.enc.Utf8),
+    }).toString();
+
+    const headers = {
+      "Content-Type": "application/x-www-form-urlencoded",
+      Authorization: `Basic ${Buffer.from(
+        `${EVE_SSO_CLIENT_ID}:${EVE_SSO_SECRET}`
+      ).toString("base64")}`,
+      Host: "login.eveonline.com",
+    };
+
+    try {
+      const response = await fetch(EVE_SSO_TOKEN_URL, {
+        method: "POST",
+        body: params,
+        headers,
+      }).then((res) => res.json());
+      const character = extractCharacterFromToken(response);
+
+      const token: AccessToken = {
+        access_token: response.access_token,
+        token_type: response.token_type,
+        refresh_token: crypto.AES.encrypt(
+          response.refresh_token,
+          EVE_SSO_SECRET
+        ).toString(),
+        expires_at: Date.now() + response.expires_in * 1000,
+        character,
+        needsLogin: false,
+        account: accessToken.account,
+      };
+
+      console.log("Refresh", character.name, character.characterId);
+
+      return res.json(token);
+    } catch (e) {
+      console.log(e);
+      res.json({ ...accessToken, needsLogin: true });
+    }
+  } else {
+    res.status(404).end();
+  }
+};
+
+export default handler;