hermes-web/app/api/account/authorize/route.ts

import axios from 'axios'
import { db } from "@/lib/db"
import { NextResponse } from "next/server";

export async function GET(req: Request) {
    try {
        const { searchParams } = new URL(req.url)
        const code = searchParams.get('code') as string
        const scope = searchParams.get('scope') as string
        const state = searchParams.get('state') as string

        if (!code || !scope || !state) {
            return new NextResponse("Bad Request", { status: 400 });
        }

        // Verify state against user id in user table.
        const user = await db.user.findFirst({
          where: {
            id: state
          }
        })

        if (!user) {
          return new NextResponse("Bad Request", { status: 400 });
        }

        // Post to https://id.twitch.tv/oauth2/token
        const token: { access_token:string, expires_in:number, refresh_token:string, token_type:string, scope:string[] } = (await axios.post("https://id.twitch.tv/oauth2/token", {
            client_id: process.env.TWITCH_BOT_CLIENT_ID,
            client_secret: process.env.TWITCH_BOT_CLIENT_SECRET,
            code: code,
            grant_type: "authorization_code",
            redirect_uri: "https://hermes.goblincaves.com/api/account/authorize"
        })).data

        // Fetch values from token.
        const { access_token, expires_in, refresh_token, token_type } = token

        if (!access_token || !refresh_token || token_type !== "bearer") {
            return new NextResponse("Unauthorized", { status: 401 });
        }

        let info = await axios.get("https://api.twitch.tv/helix/users?login=" + user.name, {
            headers: {
                "Authorization": "Bearer " + access_token,
                "Client-Id": process.env.TWITCH_BOT_CLIENT_ID
            }
        })
        const broadcasterId = info.data.data[0]['id']

        await db.twitchConnection.create({
          data: {
            broadcasterId: broadcasterId,
            accessToken: access_token,
            refreshToken: refresh_token,
            userId: state
          }
        })
        
        return new NextResponse("", { status: 200 });
    } catch (error) {
        console.log("[ACCOUNT]", error);
        return new NextResponse("Internal Error", { status: 500 });
    }
}