spot2gether/backend/api/auth.mjs

import { Client, Player } from "spotify-api.js";
import { store } from "../store.mjs";
import { randomString } from "../lib/randomString.js";
import axios from "axios";

export const applyAuthRoutes = (router) => {

  router.post('/', async (req, res) => {
    if (!req.body.code || !req.body.state) {
      res.status(400);
      res.send({ message: 'code or state missing ' });
      return;
    }
    const { code, state } = req.body;
    try {
      const params = new URLSearchParams();
      params.append('grant_type', 'authorization_code');
      params.append('code', code);
      params.append('redirect_uri', store.redirectURL);

      const config = {
        headers: {
          'Authorization': 'Basic ' + (new Buffer(store.clientID + ':' + store.clientSecret).toString('base64')),
          'Content-Type': 'application/x-www-form-urlencoded',
        }
      };

      const tokens = (await axios.post('https://accounts.spotify.com/api/token', params, config))?.data;

      const client = await Client.create({
        token: {
          clientID: store.clientID,
          clientSecret: store.clientSecret,
          redirectURL: store.redirectURL,
          refreshToken: tokens.refresh_token,
        },
      });
      const player = new Player(client);
      const accessToken = randomString(64);
      store.users.push({ client, player, accessToken, listeners: [], role: 'none' });
      res.status(200);
      res.send({ message: 'authorized', accessToken });
    } catch (e) {
      console.log(e.message);
      res.status(500);
      res.send({ message: 'unauthorized' });
    }
  });

};
add backend files 2 years ago			`import { Client, Player } from "spotify-api.js";`
			`import { store } from "../store.mjs";`
			`import { randomString } from "../lib/randomString.js";`
			`import axios from "axios";`

			`export const applyAuthRoutes = (router) => {`

			`router.post('/', async (req, res) => {`
			`if (!req.body.code \|\| !req.body.state) {`
			`res.status(400);`
			`res.send({ message: 'code or state missing ' });`
			`return;`
			`}`
			`const { code, state } = req.body;`
			`try {`
			`const params = new URLSearchParams();`
			`params.append('grant_type', 'authorization_code');`
			`params.append('code', code);`
			`params.append('redirect_uri', store.redirectURL);`

			`const config = {`
			`headers: {`
			`'Authorization': 'Basic ' + (new Buffer(store.clientID + ':' + store.clientSecret).toString('base64')),`
			`'Content-Type': 'application/x-www-form-urlencoded',`
			`}`
			`};`

			`const tokens = (await axios.post('https://accounts.spotify.com/api/token', params, config))?.data;`

			`const client = await Client.create({`
			`token: {`
			`clientID: store.clientID,`
			`clientSecret: store.clientSecret,`
			`redirectURL: store.redirectURL,`
			`refreshToken: tokens.refresh_token,`
			`},`
			`});`
			`const player = new Player(client);`
			`const accessToken = randomString(64);`
			`store.users.push({ client, player, accessToken, listeners: [], role: 'none' });`
			`res.status(200);`
			`res.send({ message: 'authorized', accessToken });`
			`} catch (e) {`
			`console.log(e.message);`
			`res.status(500);`
			`res.send({ message: 'unauthorized' });`
			`}`
			`});`

			`};`