LukeParke/website
1
0
Fork 0
mirror of https://github.com/LukeHagar/website.git synced 2025-12-11 04:22:19 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
0714b9cbffe74ece6f500d381e6632502eb43a10
website/src/routes/docs/tutorials/sveltekit-ssr-auth/step-7/+page.markdoc
Steven Nguyen 0714b9cbff fix(tutorial): update redirect in SvelteKit SSR auth tutorial 
The current redirect status code is 301, but that is a permanent
redirect. The problem with this is the browser will cache the redirect
and redirect for every request without even making a request to the
server.

Instead, we should use a 302 status code, which is a temporary redirect.
So, when the user hits the home page, the browser will hit the server
so that the server checks whether the user is logged in or not and
redirect accordingly instead of always redirecting to the same page.
2024-08-16 21:38:30 +00:00

86 lines
2.5 KiB
Plaintext
Raw Blame History

---
layout: tutorial
title: OAuth authentication with SSR
description: Add authentication to a SvelteKit project using Appwrite.
step: 7
---
To support the OAuth flow, we first redirect the user to the OAuth provider, and then handle the callback from the OAuth provider.
To redirect, add a button to our sign up page that redirects the user to the OAuth provider.
```svelte
<!-- src/routes/signup/+page.svelte -->
<!-- ... existing sign up form -->
<form action="?/oauth" method="post">
<button type="submit">Sign up with GitHub</button>
</form>
```
Add a new server route to handle the redirect.
```js
// src/routes/signup/+page.server.js
import { SESSION_COOKIE, createAdminClient, createSessionClient } from "$lib/server/appwrite.js";
import { redirect } from "@sveltejs/kit";
import { ID, OAuthProvider } from "node-appwrite";
export const actions = {
// ... existing email sign up action
oauth: async (event) => {
const { account } = createAdminClient();
const redirectUrl = await account.createOAuth2Token(
OAuthProvider.Github,
`${event.url.origin}/oauth`,
`${event.url.origin}/signup`
);
redirect(302, redirectUrl);
},
};
```
The `createOAuth2Token` method redirects the user to the OAuth provider, and then the OAuth provider redirects the user back to the `/oauth` route with the `userId` and `secret` URL query parameters.
Handle the callback and create a session for the user. Create a new server route at `src/routes/oauth/+server.js`:
```js
// src/routes/oauth/+server.js
import { SESSION_COOKIE, createAdminClient } from "$lib/server/appwrite";
export async function GET(event) {
// We should have a `userId` and `secret` query parameters in the URL
const userId = event.url.searchParams.get("userId");
const secret = event.url.searchParams.get("secret");
if (!userId || !secret) {
return new Response("Missing `userId` or `secret` query parameters", {
status: 400,
});
}
// Exchange the token `userId` and `secret` for a session
const { account } = createAdminClient();
const session = await account.createSession(userId, secret);
// Redirect to the account page, and set the session cookie
const headers = new Headers({
location: "/account",
"set-cookie": event.cookies.serialize(SESSION_COOKIE, session.secret, {
sameSite: "strict",
expires: new Date(session.expire),
secure: true,
path: "/",
}),
});
return new Response(null, { status: 302, headers });
}
```
Reference in New Issue View Git Blame Copy Permalink