erman/scan-wave
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Security fixes to lib files

Browse Source
This commit is contained in:
Roman Krček
2025-07-03 00:02:35 +02:00
parent 81e2e53cc5
commit 6debb8a7ce
11 changed files with 55 additions and 23 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
src/routes/private/api/google/auth/refresh/+server.ts
View File

@@ -1,6 +1,6 @@
import { json } from '@sveltejs/kit';
import type { RequestHandler } from './$types';
import { authServer } from '$lib/google/index.js';
import { getOAuthClient } from '$lib/google/server.js';
export const POST: RequestHandler = async ({ request }) => {
try {
@@ -10,7 +10,7 @@ export const POST: RequestHandler = async ({ request }) => {
return json({ error: 'Refresh token is required' }, { status: 400 });
}
const oauth = authServer.getOAuthClient();
const oauth = getOAuthClient();
oauth.setCredentials({ refresh_token: refreshToken });
const { credentials } = await oauth.refreshAccessToken();

4
src/routes/private/api/google/auth/userinfo/+server.ts
View File

@@ -1,6 +1,6 @@
import { json } from '@sveltejs/kit';
import type { RequestHandler } from './$types';
import { authServer } from '$lib/google/index.js';
import { getOAuthClient } from '$lib/google/server.js';
import { google } from 'googleapis';
export const GET: RequestHandler = async ({ request }) => {
@@ -14,7 +14,7 @@ export const GET: RequestHandler = async ({ request }) => {
const accessToken = authHeader.slice(7);
// Create OAuth client with the token
const oauth = authServer.getOAuthClient();
const oauth = getOAuthClient();
oauth.setCredentials({ access_token: accessToken });
// Call the userinfo endpoint to get user details