The latest articles on Forem by Rafid Hamid (@imoxto). https://forem.com/imoxto https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F952271%2Faba760f2-cbc4-44bf-8da2-d16a573b7dcd.png https://forem.com/imoxto en Rafid Hamid Mon, 05 Dec 2022 07:54:34 +0000 https://forem.com/reinforz/how-to-automatically-receive-messages-in-discord-when-a-platform-is-down-3ii https://forem.com/reinforz/how-to-automatically-receive-messages-in-discord-when-a-platform-is-down-3ii <h4> Automating the process of getting notified in discord if a platform's status is down by using DevOps utilities like Webhooks, Cron jobs, SSH. </h4> <h2> Table of contents </h2> <ul> <li>Table of contents</li> <li>Introduction</li> <li>Requirements</li> <li> Make the Script <ul> <li>Webhook</li> <li>Make the script:</li> </ul> </li> <li>Make the AWS EC2 instance</li> <li> Setup the AWS EC2 instance <ul> <li>Logging in</li> <li>Set up node</li> <li>Cron job in EC2 instance</li> <li>Adding scripts</li> </ul> </li> <li>Deploy to EC2 instance</li> <li>Conclusion</li> </ul> <h2> Introduction </h2> <p>Hello everyone! In this blog, we will look at how to automate the process of getting notified in discord if a platform's status is down. It is very helpful as it notifies developers in discord when their website is down. We will learn about the following topics in this blog:</p> <ul> <li>Using DevOps utilities like webhooks, cron jobs, SSH</li> <li>Automating deployment to a remote host like an Amazon EC2 Instance</li> </ul> <h2> Requirements </h2> <p>Anyone with a basic knowledge of any coding languages can follow along with this blog. Having a basic knowledge of Git is recommended as well.</p> <h2> Make the Script </h2> <p>Firstly, we need to make the script we want to run. The script will be a simple Node.js platform status checker running regularly in the background and report to Discord if any of the platforms are down. You can make any script you want. Of course, absolute beginners are urged to follow along with the blog.</p> <h3> Webhook </h3> <p>We will use a webhook to message us in discord if any of our servers are down. A webhook is an HTTP-based callback function that allows lightweight, event-driven communication between 2 application programming interfaces (APIs). You can learn more about it <a href="https://www.redhat.com/en/topics/automation/what-is-a-webhook" rel="noopener noreferrer">here</a>.</p> <p>To create a webhook for a discord server go to a Discord server's settings and follow the path of "<code>Apps</code> &gt; <code>Integrations</code> &gt; <code>Webhooks</code> &gt; <code>New Webhook</code>". The webhook should be created now. Click on it and then click on "<code>Copy Url</code>" as we need it to send messages to discord.</p> <p>We also have to make HTTP requests in our script. There are a lot of packages available in NPM but I will go with <code>node-fetch</code> in this tutorial. The <code>node-fetch</code> package only needs to be installed if your node version is less than <code>18</code> as it is build into <code>node</code> otherwise. We will install it by using the following command:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm <span class="nb">install </span>node-fetch </code></pre> </div> <h3> Make the script: </h3> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">import</span> <span class="nx">fetch</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">node-fetch</span><span class="dl">"</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">postplatformstatus</span><span class="p">()</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">allPlatforms</span> <span class="o">=</span> <span class="p">[</span> <span class="c1">// use any urls and check their status </span> <span class="dl">'</span><span class="s1">https://api.reinforz.ai/ping</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">https://app.reinforz.ai</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">https://reinforz.ai</span><span class="dl">'</span><span class="p">,</span> <span class="p">];</span> <span class="kd">const</span> <span class="nx">messages</span> <span class="o">=</span> <span class="p">[];</span> <span class="c1">// array containing the messages to send</span> <span class="k">for </span><span class="p">(</span><span class="kd">const</span> <span class="nx">platform</span> <span class="k">of</span> <span class="nx">allPlatforms</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">fetch</span><span class="p">(</span><span class="nx">platform</span><span class="p">);</span> <span class="c1">// We will only notify people if an error has occurred</span> <span class="k">if </span><span class="p">(</span><span class="nx">response</span><span class="p">.</span><span class="nx">status</span> <span class="o">&gt;=</span> <span class="mi">400</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// If the status code sent by the response is 400 or higher,</span> <span class="c1">// then it means an error is happening and we will notify relevent people with the platform </span> <span class="kd">const</span> <span class="nx">singleMessage</span> <span class="o">=</span> <span class="s2">`</span><span class="p">${</span><span class="nx">platform</span><span class="p">}</span><span class="s2"> is down. Status: </span><span class="p">${</span><span class="nx">response</span><span class="p">.</span><span class="nx">status</span><span class="p">}</span><span class="s2"> 🔴`</span> <span class="c1">// If any error response is recieved add it to messages</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="nx">singleMessage</span><span class="p">);</span> <span class="nx">messages</span><span class="p">.</span><span class="nf">push</span><span class="p">(</span><span class="nx">singleMessage</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> <span class="kd">const</span> <span class="nx">ROLE_ID</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">&lt;copy a role Id from discord&gt;</span><span class="dl">'</span><span class="p">;</span> <span class="k">if </span><span class="p">(</span><span class="nx">messages</span><span class="p">.</span><span class="nx">length</span> <span class="o">!==</span> <span class="mi">0</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// use the send a message to discord using the webhook URL to see if which servers are inactive.</span> <span class="k">await</span> <span class="nf">fetch</span><span class="p">(</span> <span class="dl">'</span><span class="s1">&lt;the copied webhook url&gt;</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">method</span><span class="p">:</span> <span class="dl">'</span><span class="s1">POST</span><span class="dl">'</span><span class="p">,</span> <span class="na">headers</span><span class="p">:</span> <span class="p">{</span> <span class="dl">'</span><span class="s1">Content-Type</span><span class="dl">'</span><span class="p">:</span> <span class="dl">'</span><span class="s1">application/json</span><span class="dl">'</span><span class="p">,</span> <span class="p">},</span> <span class="na">body</span><span class="p">:</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">({</span> <span class="c1">// &lt;@ROLE_ID&gt; is used to notify members with a specific discord role</span> <span class="na">content</span><span class="p">:</span> <span class="s2">`&lt;@&amp;</span><span class="p">${</span><span class="nx">ROLE_ID</span><span class="p">}</span><span class="s2">&gt;\n</span><span class="p">${</span><span class="nx">messages</span><span class="p">.</span><span class="nf">join</span><span class="p">(</span><span class="dl">'</span><span class="se">\n</span><span class="dl">'</span><span class="p">)}</span><span class="s2">`</span><span class="p">,</span> <span class="p">}),</span> <span class="p">}</span> <span class="p">);</span> <span class="p">}</span> <span class="p">}</span> <span class="nf">postplatformstatus</span><span class="p">();</span> </code></pre> </div> <blockquote> <p><strong>Note</strong>: Make an empty GitHub repository and push the new repository changes.</p> </blockquote> <h2> Make the AWS EC2 instance </h2> <p>We need a remote host to deploy the script. We are going to use an Amazon EC2 instance for this. It's important to note that while EC2 is a popular choice for hosting virtual machines in the cloud, you can use other hosting providers if you prefer. Creating an EC2 instance involves several steps, which are explained in the <a href="https://docs.aws.amazon.com/efs/latest/ug/gs-step-one-create-ec2-resources.html" rel="noopener noreferrer">official AWS documentation</a>. In general, you will need to select an instance type and size that meets your computing needs, configure your security and networking settings, and then launch the instance. Once your instance is running, you can connect to it using SSH or other remote access tools.</p> <h2> Setup the AWS EC2 instance </h2> <h3> Logging in </h3> <p>After the EC2 instance is up and running, we need to be able to log in to it on our local machine. We will use <a href="https://en.wikipedia.org/wiki/Secure_Shell" rel="noopener noreferrer">SSH</a> to establish a cryptographic network protocol to securely connect to our remote host. To connect to the EC2 instance using SSH, you will need to do the following:</p> <ol> <li><p>Download and install an SSH client on your local computer. If you are using a Mac or Linux system or the latest Windows versions, you can use the built-in terminal and SSH command. Older Windows users can use a program like PuTTY.</p></li> <li><p>Locate your EC2 instance's public DNS or IP address. You can find this information in the EC2 Management Console, or by using the ec2-describe-instances command if you are using the AWS CLI.</p></li> <li><p>Use the SSH client to connect to your EC2 instance. The exact command will vary depending on your client and the operating system of your EC2 instance. For example, on a Linux or Mac system you can use the following command:<br> </p></li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>ssh <span class="nt">-i</span> /path/to/your/private/key.pem ec2-user@your-instance-public-ip </code></pre> </div> <ol> <li>If this is your first time connecting to the instance, you may be prompted to add the host key to your local SSH known_hosts file. Type <code>yes</code> and press enter to continue.</li> </ol> <p>You should now be logged in to your EC2 instance and able to run commands on the remote system. It's important to note that the exact steps and commands may vary depending on the specific setup of your EC2 instance and your local computer. If you are having trouble connecting, you can check the <a href="https://docs.aws.amazon.com/efs/latest/ug/gs-step-one-create-ec2-resources.html" rel="noopener noreferrer">official AWS documentation</a> or seek help from a qualified AWS professional.</p> <p>Also, to use the command without linking the <code>/path/to/your/private/key.pem</code> every time like:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>ssh ec2-user@your-instance-public-ip </code></pre> </div> <p>Add or Edit the following into the config file in your <code>.ssh</code> folder</p> <blockquote> <p><strong>Note:</strong> The path of the file is <code>C:\Users\&lt;Username&gt;\.ssh\config</code> in Windows.<br> </p> </blockquote> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Host &lt;your-instance-public-ip&gt; HostName &lt;your-instance-public-ip&gt; User ec2-user IdentityFile "/path/to/your/private/key.pem" </code></pre> </div> <p>To get the private key .pem file that is used in the <code>config</code> file, the SSH connection process, you will need to do the following:</p> <ol> <li><p>In the EC2 Management Console, go to the <code>Key Pairs</code> section under the <code>Network &amp; Security</code> menu.</p></li> <li><p>Click on the <code>Create Key Pair</code> button and give your key pair a name. This will download the private key <code>.pem</code> file to your local computer.</p></li> <li><p>Save the <code>.pem</code> file in a safe and secure location on your local computer. You will need this file to connect to your EC2 instance using SSH.</p></li> </ol> <p>It's important to note that the private key <code>.pem</code> file is essential for accessing your EC2 instance. You should treat it like a password and keep it safe and secure. If you lose the <code>.pem</code> file, you will not be able to connect to your EC2 instance. You should also never share your <code>.pem</code> file with anyone else, as it gives them access to your EC2 instance.</p> <h3> Set up node </h3> <p>Set up the softwares needed to run your script. I am using node so I will install it. First, I will install Node Version Manager (NVM). It is a command-line utility that allows you to install and manage multiple versions of the Node.js JavaScript runtime on a single computer. We are using NVM to allow our remote host to be able to run other Node.js programs if they require different node versions.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>curl <span class="nt">-o-</span> https://raw.githubusercontent.com/nvm-sh/nvm/v0.39.2/install.sh | bash </code></pre> </div> <blockquote> <p><strong>Note:</strong> This will install version 0.39.2, to get the updated one go to this link: <a href="https://github.com/nvm-sh/nvm#installing-and-updating" rel="noopener noreferrer">https://github.com/nvm-sh/nvm#installing-and-updating</a>.</p> </blockquote> <p>Next, we will install the <code>16.x</code> version of Node with the command <code>nvm install 16</code>. Afterwards, verify if node and npm are installed using the commands <code>node -v</code> and <code>npm -v</code> in the terminal of the EC2 instance.<br> If node and npm are not being recognized do the following:</p> <ul> <li>for node: </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> <span class="nb">sudo ln</span> <span class="nt">-s</span> /home/&lt;my_user&gt;/.nvm/versions/node/&lt;my_node_version&gt;/bin/node /usr/bin/node </code></pre> </div> <ul> <li>for npm: </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> <span class="nb">sudo ln</span> <span class="nt">-s</span> /home/&lt;my_user&gt;/.nvm/versions/node/&lt;my_node_version&gt;/bin/npm /usr/bin/npm </code></pre> </div> <p>The above commands link the actual node and npm scripts to <code>/usr/bin/</code> because bash recognizes scripts from there.</p> <h3> Cron job in EC2 instance </h3> <p>We will now set up a cron job to run on our server. Cron jobs are a standard method of scheduling tasks to run on a machine. Cron is a service running in the background that will execute commands (jobs) at a specified time, or at a regular interval. More details about it can be found <a href="https://www.hostdime.com/kb/hd/command-line/working-with-cron-jobs" rel="noopener noreferrer">here</a>.</p> <p>Type the following in the terminal to setup a cronjob:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>crontab <span class="nt">-e</span> </code></pre> </div> <p>Add the following in a new line and save and exit the file using <code>:wq</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>*/7 * * * * bash /home/myCronScript.sh </code></pre> </div> <p>This runs the script <code>/home/myCronScript.sh</code> every 7 minutes. Of course, we don't have the bash script now. So let's set them up next.</p> <h3> Adding scripts </h3> <p>We need two bash scripts in our EC2 instance: One for the cron job discussed above and another for the Deployment Script. Deployment to a production server typically involves a number of steps, such as building and packaging the application, transferring the package to the production server, and configuring the server to run the application. We need the deployment script to automate installing dependencies on our production server so that it runs without issues.</p> <ul> <li>The cron script in <code>/home/myCronScript.sh</code>: </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> <span class="c">#!/bin/bash</span> <span class="nv">RED</span><span class="o">=</span><span class="s1">'\033[0;31m'</span> <span class="nv">NC</span><span class="o">=</span><span class="s1">'\033[0m'</span> <span class="nb">cd</span> /home/platform-status <span class="k">if</span> <span class="o">!</span> <span class="o">(</span>node /home/platform-status/index.js<span class="o">)</span> <span class="k">then </span><span class="nb">printf</span> <span class="s2">"</span><span class="k">${</span><span class="nv">RED</span><span class="k">}</span><span class="s2">Failed to run platform status checker</span><span class="k">${</span><span class="nv">NC</span><span class="k">}</span><span class="se">\n</span><span class="s2">"</span> <span class="nb">exit </span>1 <span class="k">fi</span> </code></pre> </div> <ul> <li>The deployment script in <code>/home/myDeployScript.sh</code>: </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> <span class="c">#!/bin/bash</span> <span class="nv">RED</span><span class="o">=</span><span class="s1">'\033[0;31m'</span> <span class="nv">NC</span><span class="o">=</span><span class="s1">'\033[0m'</span> <span class="nb">cd</span> /home/platform-status <span class="k">if</span> <span class="o">!</span> <span class="o">(</span>npm <span class="nb">install</span> <span class="nt">--production</span><span class="o">)</span> <span class="k">then </span><span class="nb">printf</span> <span class="s2">"</span><span class="k">${</span><span class="nv">RED</span><span class="k">}</span><span class="s2">Failed to install dependencies</span><span class="k">${</span><span class="nv">NC</span><span class="k">}</span><span class="se">\n</span><span class="s2">"</span> <span class="nb">exit </span>1 <span class="k">fi</span> </code></pre> </div> <h2> Deploy to EC2 instance </h2> <p>Finally, we have to find a way to upload to the remote server and run the deploy script automatically. One way to do them is to use GitHub Actions.<br> GitHub Actions is a continuous integration and continuous delivery (CI/CD) platform that allows us to automate our build, test, and deployment pipeline. Check out <a href="https://docs.github.com/en/actions" rel="noopener noreferrer">their documentation</a> if you want to know more about it.</p> <p>We are going to add a simple GitHub action to automate deploying to our EC2 instance. Add new folders <code>.github\workflows\</code> in the project directory and put a <code>.yml</code> file on the path, <code>.github\workflows\deploy.yml</code>, and add the following to it:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">name</span><span class="pi">:</span> <span class="s">Deploy Script</span> <span class="c1"># run the deployment process if any changes come to a js file</span> <span class="na">on</span><span class="pi">:</span> <span class="na">push</span><span class="pi">:</span> <span class="na">branches</span><span class="pi">:</span> <span class="pi">-</span> <span class="s1">'</span><span class="s">master'</span> <span class="na">paths</span><span class="pi">:</span> <span class="pi">-</span> <span class="s1">'</span><span class="s">**.js'</span> <span class="pi">-</span> <span class="s1">'</span><span class="s">**.json'</span> <span class="na">jobs</span><span class="pi">:</span> <span class="na">deploy</span><span class="pi">:</span> <span class="na">runs-on</span><span class="pi">:</span> <span class="s">ubuntu-latest</span> <span class="na">steps</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Checkout branch</span> <span class="na">uses</span><span class="pi">:</span> <span class="s">actions/checkout@v1</span> <span class="c1"># upload to the ec2 host</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Upload to Server</span> <span class="na">uses</span><span class="pi">:</span> <span class="s">easingthemes/ssh-deploy@main</span> <span class="na">env</span><span class="pi">:</span> <span class="na">SSH_PRIVATE_KEY</span><span class="pi">:</span> <span class="s">${{ secrets.SSH_PRIVATE_KEY }}</span> <span class="na">ARGS</span><span class="pi">:</span> <span class="s2">"</span><span class="s">-rltgoDzvO</span><span class="nv"> </span><span class="s">--delete"</span> <span class="na">SOURCE</span><span class="pi">:</span> <span class="s2">"</span><span class="s">"</span> <span class="na">REMOTE_HOST</span><span class="pi">:</span> <span class="s">${{ secrets.REMOTE_HOST }}</span> <span class="na">REMOTE_USER</span><span class="pi">:</span> <span class="s">${{ secrets.SSH_USERNAME }}</span> <span class="na">TARGET</span><span class="pi">:</span> <span class="s2">"</span><span class="s">/home/platform-status/"</span> <span class="na">EXCLUDE</span><span class="pi">:</span> <span class="s2">"</span><span class="s">/node_modules/,</span><span class="nv"> </span><span class="s">/.github/,</span><span class="nv"> </span><span class="s">/.gitignore,</span><span class="nv"> </span><span class="s">/README.md"</span> <span class="c1"># deploy to the ec2 host</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Deploy to production</span> <span class="na">uses</span><span class="pi">:</span> <span class="s">appleboy/ssh-action@v0.1.2</span> <span class="na">with</span><span class="pi">:</span> <span class="na">host</span><span class="pi">:</span> <span class="s">${{ secrets.REMOTE_HOST }}</span> <span class="na">key</span><span class="pi">:</span> <span class="s">${{ secrets.SSH_PRIVATE_KEY }}</span> <span class="na">username</span><span class="pi">:</span> <span class="s">${{ secrets.SSH_USERNAME }}</span> <span class="na">script</span><span class="pi">:</span> <span class="pi">|</span> <span class="s">bash /home/myDeployScript.sh</span> </code></pre> </div> <p>As you may have noticed, we need to add the secrets of our EC2 instance to our GitHub repository to make this GitHub Action work. Otherwise, it will not know where our server is. To add the secrets go to your repository, and follow the path: <code>settings</code> &gt; <code>secrets</code> &gt; <code>actions</code>. Then, click on <code>New Repository Secret</code> and add the following secrets:</p> <ul> <li> <code>REMOTE_HOST</code>: the IP address of your remote host</li> <li> <code>SSH_PRIVATE_KEY</code>: the private key needed to ssh into the server</li> <li> <code>SSH_USERNAME</code>: the username of the user on the remote machine.</li> </ul> <p>Finally, commit and push all your changes and observe the GitHub action running in GitHub. It should run and end successfully.</p> <h2> Conclusion </h2> <p>Thank you for reading! The github repository for containing the blog is: <a href="https://github.com/Reinforz/platform-status-blog" rel="noopener noreferrer">github.com/Reinforz/platform-status-blog</a>. If you have any questions or face any problems while doing the steps written in this blog, don't hesitate to comment down below. Also, check out our website at <a href="https://www.reinforz.ai/" rel="noopener noreferrer">reinforz.ai</a>.</p> <p><em>Written by <a href="https://github.com/imoxto" rel="noopener noreferrer">Rafid Hamid</a></em></p> watercooler Rafid Hamid Fri, 21 Oct 2022 11:22:57 +0000 https://forem.com/reinforz/implementing-authentication-with-twitter-oauth-20-using-typescript-node-js-express-js-and-next-js-in-a-full-stack-application-353d https://forem.com/reinforz/implementing-authentication-with-twitter-oauth-20-using-typescript-node-js-express-js-and-next-js-in-a-full-stack-application-353d <h2> Implementing Authentication with Twitter OAuth 2.0 using Typescript, Node.js, Express.js and Next.js in a Full Stack Application </h2> <h2> Table of contents </h2> <ul> <li>Table of contents</li> <li>What will we learn</li> <li>Requirements</li> <li> Project Setup <ul> <li>Client setup</li> <li>Server setup</li> </ul> </li> <li> Twitter OAuth2 Implementation <ul> <li>Setup twitter user authentication settings</li> <li> Client <ul> <li>Frontend authentication button</li> <li>Me query</li> <li>Styling</li> </ul> </li> <li> Server <ul> <li>Getting the access token with the code</li> <li>Getting the Twitter User from access token</li> <li>Checking if they work</li> </ul> </li> </ul> </li> <li>Finishing the web app</li> <li>Conclusion</li> </ul> <h2> What will we learn </h2> <p>Here, we will learn to implement authentication using Twitter OAuth 2.0 on a minimal working full-stack web application. We will not be using Passport.js or similar libraries to handle authentication for us. As a result, we will understand the OAuth 2.0 flow better. We will also learn about the following stacks:</p> <ul> <li> <a href="https://expressjs.com/" rel="noopener noreferrer">express.js</a> backend framework</li> <li> <a href="https://www.prisma.io/" rel="noopener noreferrer">prisma</a> to create and login users, you can really use anything to communicate with any database.</li> <li> <a href="https://nextjs.org/" rel="noopener noreferrer">next.js</a>, a <a href="https://reactjs.org/" rel="noopener noreferrer">React.js</a> framework, for the frontend</li> <li> <a href="https://www.typescriptlang.org/" rel="noopener noreferrer">typescript</a> (optional) type-safety for javascript</li> </ul> <h2> Requirements </h2> <p>Anyone with a basic knowledge of javascript can follow along with this blog.<br> If you already have a similar project setup, you can also jump straight to the Twitter OAuth2 Implementation section.</p> <h2> Project Setup </h2> <p>Firstly, let's add a <code>package.json</code> file at the root directory and add the following content:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"private"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"workspaces"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="w"> </span><span class="s2">"server"</span><span class="p">,</span><span class="w"> </span><span class="s2">"client"</span><span class="w"> </span><span class="p">],</span><span class="w"> </span><span class="nl">"scripts"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"client:dev"</span><span class="p">:</span><span class="w"> </span><span class="s2">"yarn workspace client dev"</span><span class="p">,</span><span class="w"> </span><span class="nl">"server:dev"</span><span class="p">:</span><span class="w"> </span><span class="s2">"yarn workspace server dev"</span><span class="p">,</span><span class="w"> </span><span class="nl">"client:add"</span><span class="p">:</span><span class="w"> </span><span class="s2">"yarn workspace client add"</span><span class="p">,</span><span class="w"> </span><span class="nl">"server:add"</span><span class="p">:</span><span class="w"> </span><span class="s2">"yarn workspace server add"</span><span class="p">,</span><span class="w"> </span><span class="nl">"migrate-db"</span><span class="p">:</span><span class="w"> </span><span class="s2">"yarn workspace server prisma-migrate"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <p>You can set up version control in this directory, but that is optional. Either way, we will now add a client and server for our web app.</p> <h3> Client setup </h3> <p>Make a Next.js app by running the following commands:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>yarn create next-app <span class="nt">--typescript</span> client </code></pre> </div> <p>Skip the <code>--typescript</code> flag if you want to work with javascript.</p> <p>This will create a <code>client</code> folder in the project directory. Navigate there and delete the files we don't need, i.e. <code>client\styles\Home.module.css</code> and <code>client\pages\api</code>. Also, let's replace all the code in <code>client\pages\index.ts</code> with the following:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">NextPage</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">next</span><span class="dl">"</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">Home</span><span class="p">:</span> <span class="nx">NextPage</span> <span class="o">=</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">return </span><span class="p">(</span> <span class="o">&lt;</span><span class="nx">div</span> <span class="nx">className</span><span class="o">=</span><span class="dl">"</span><span class="s2">column-container</span><span class="dl">"</span><span class="o">&gt;</span> <span class="o">&lt;</span><span class="nx">p</span><span class="o">&gt;</span><span class="nx">Hello</span><span class="o">!&lt;</span><span class="sr">/p</span><span class="err">&gt; </span> <span class="o">&lt;</span><span class="sr">/div</span><span class="err">&gt; </span> <span class="p">);</span> <span class="p">};</span> <span class="k">export</span> <span class="k">default</span> <span class="nx">Home</span><span class="p">;</span> </code></pre> </div> <p>Starting the client with our command <code>yarn client:dev</code> and going to the address at <a href="http://www.localhost:3000/" rel="noopener noreferrer">http://www.localhost:3000/</a> should display a webpage saying <code>Hello!</code></p> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fd823z4n1vzhq93g89zjb.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fd823z4n1vzhq93g89zjb.png" alt="Web page saying hello!" width="549" height="291"></a></p> <p>Now that the frontend is set up, let's move on to our backend.</p> <h3> Server setup </h3> <p>Make a directory called <code>server</code> and make a <code>package.json</code> file in the project directory with the following content:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"name"</span><span class="p">:</span><span class="w"> </span><span class="s2">"server"</span><span class="p">,</span><span class="w"> </span><span class="nl">"version"</span><span class="p">:</span><span class="w"> </span><span class="s2">"1.0.0"</span><span class="p">,</span><span class="w"> </span><span class="nl">"scripts"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"start"</span><span class="p">:</span><span class="w"> </span><span class="s2">"node dist/index.js"</span><span class="p">,</span><span class="w"> </span><span class="nl">"build"</span><span class="p">:</span><span class="w"> </span><span class="s2">"tsc --sourceMap false"</span><span class="p">,</span><span class="w"> </span><span class="nl">"build:watch"</span><span class="p">:</span><span class="w"> </span><span class="s2">"tsc -w"</span><span class="p">,</span><span class="w"> </span><span class="nl">"start:watch"</span><span class="p">:</span><span class="w"> </span><span class="s2">"nodemon dist/index.js"</span><span class="p">,</span><span class="w"> </span><span class="nl">"dev"</span><span class="p">:</span><span class="w"> </span><span class="s2">"concurrently </span><span class="se">\"</span><span class="s2">yarn build:watch</span><span class="se">\"</span><span class="s2"> </span><span class="se">\"</span><span class="s2">yarn start:watch</span><span class="se">\"</span><span class="s2"> --names </span><span class="se">\"</span><span class="s2">tsc,node</span><span class="se">\"</span><span class="s2"> -c </span><span class="se">\"</span><span class="s2">blue,green</span><span class="se">\"</span><span class="s2">"</span><span class="p">,</span><span class="w"> </span><span class="nl">"prisma-migrate"</span><span class="p">:</span><span class="w"> </span><span class="s2">"prisma migrate dev"</span><span class="p">,</span><span class="w"> </span><span class="nl">"prisma-gen"</span><span class="p">:</span><span class="w"> </span><span class="s2">"prisma generate"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <p>Here, we added various scripts to help us in our development stage. We will mostly use the <code>dev</code> and the <code>migrate-db</code> scripts. They allow us to start the server in watch mode and let us migrate the database respectively. Now we can return to the workspace directory and use our <code>yarn server:add</code> to add packages. So its time to install the required dependencies using the following commands in the terminal:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>yarn server:add @prisma/client argon2 axios cookie-parser cors dotenv express jsonwebtoken </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>yarn server:add <span class="nt">-D</span> nodemon prisma typescript concurrently @types/cookie-parser @types/cors @types/express @types/jsonwebtoken @types/node </code></pre> </div> <p>After installing the dependencies we need, make a few files to have a minimal running express server:</p> <ul> <li> <code>server/tsconfig.json</code> Edit according to preferences or skip if not using typescript </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"compilerOptions"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"target"</span><span class="p">:</span><span class="w"> </span><span class="s2">"ES2018"</span><span class="p">,</span><span class="w"> </span><span class="nl">"module"</span><span class="p">:</span><span class="w"> </span><span class="s2">"commonjs"</span><span class="p">,</span><span class="w"> </span><span class="nl">"lib"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="w"> </span><span class="s2">"esnext"</span><span class="p">,</span><span class="w"> </span><span class="s2">"esnext.asynciterable"</span><span class="w"> </span><span class="p">],</span><span class="w"> </span><span class="nl">"strict"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"skipLibCheck"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"sourceMap"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"declaration"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"moduleResolution"</span><span class="p">:</span><span class="w"> </span><span class="s2">"node"</span><span class="p">,</span><span class="w"> </span><span class="nl">"noImplicitAny"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"strictNullChecks"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"strictFunctionTypes"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"noImplicitThis"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"noUnusedLocals"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"noUnusedParameters"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"noImplicitReturns"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"noFallthroughCasesInSwitch"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"allowSyntheticDefaultImports"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"esModuleInterop"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"emitDecoratorMetadata"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"experimentalDecorators"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"resolveJsonModule"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"incremental"</span><span class="p">:</span><span class="w"> </span><span class="kc">false</span><span class="p">,</span><span class="w"> </span><span class="nl">"baseUrl"</span><span class="p">:</span><span class="w"> </span><span class="s2">"./src"</span><span class="p">,</span><span class="w"> </span><span class="nl">"watch"</span><span class="p">:</span><span class="w"> </span><span class="kc">false</span><span class="p">,</span><span class="w"> </span><span class="nl">"removeComments"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"outDir"</span><span class="p">:</span><span class="w"> </span><span class="s2">"./dist"</span><span class="p">,</span><span class="w"> </span><span class="nl">"rootDir"</span><span class="p">:</span><span class="w"> </span><span class="s2">"./src"</span><span class="w"> </span><span class="p">},</span><span class="w"> </span><span class="nl">"types"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="s2">"node"</span><span class="p">],</span><span class="w"> </span><span class="nl">"include"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="s2">"./src/**/*.ts"</span><span class="p">],</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <ul> <li> <code>server/src/index.ts</code> to listen to the server. </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code> <span class="k">import</span> <span class="p">{</span> <span class="nx">CLIENT_URL</span><span class="p">,</span> <span class="nx">SERVER_PORT</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">./config</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="nx">cookieParser</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">cookie-parser</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="nx">cors</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">cors</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="nx">express</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">express</span><span class="dl">"</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">app</span> <span class="o">=</span> <span class="nf">express</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">origin</span> <span class="o">=</span> <span class="p">[</span><span class="nx">CLIENT_URL</span><span class="p">];</span> <span class="nx">app</span><span class="p">.</span><span class="nf">use</span><span class="p">(</span><span class="nf">cookieParser</span><span class="p">());</span> <span class="nx">app</span><span class="p">.</span><span class="nf">use</span><span class="p">(</span><span class="nf">cors</span><span class="p">({</span> <span class="nx">origin</span><span class="p">,</span> <span class="na">credentials</span><span class="p">:</span> <span class="kc">true</span> <span class="p">}))</span> <span class="nx">app</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">"</span><span class="s2">/ping</span><span class="dl">"</span><span class="p">,</span> <span class="p">(</span><span class="nx">_</span><span class="p">,</span> <span class="nx">res</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="nx">res</span><span class="p">.</span><span class="nf">json</span><span class="p">(</span><span class="dl">"</span><span class="s2">pong</span><span class="dl">"</span><span class="p">));</span> <span class="nx">app</span><span class="p">.</span><span class="nf">listen</span><span class="p">(</span><span class="nx">SERVER_PORT</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="s2">`Server listening on port </span><span class="p">${</span><span class="nx">SERVER_PORT</span><span class="p">}</span><span class="s2">`</span><span class="p">))</span> </code></pre> </div> <ul> <li> <code>server/src/config.ts</code> to export some constant configuration variables </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code> <span class="k">import</span> <span class="p">{</span> <span class="nx">PrismaClient</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">@prisma/client</span><span class="dl">"</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">CLIENT_URL</span> <span class="o">=</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">CLIENT_URL</span><span class="o">!</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">SERVER_PORT</span> <span class="o">=</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">SERVER_PORT</span><span class="o">!</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">prisma</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">PrismaClient</span><span class="p">()</span> </code></pre> </div> <ul> <li> <code>server/.env</code> to setup the port, client URL and database URL for the server. Make sure to ignore this file if you are working with version control </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code> DATABASE_URL=postgres://postgres:postgres@localhost:5432/twitter-oauth2 CLIENT_URL=http://www.localhost:3000 SERVER_PORT=3001 </code></pre> </div> <ul> <li> <code>server/prisma/schema.prisma</code> to let prisma handle the database structure </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code> generator client { provider = "prisma-client-js" } datasource db { provider = "postgresql" url = env("DATABASE_URL") } enum UserType { local twitter } model User { id String @id @default(uuid()) name String username String @unique type UserType @default(local) } </code></pre> </div> <p>Now migrate the database using the <code>yarn migrate-db</code> command, and then we can run the server using <code>yarn server:dev</code>.</p> <p>We should now be able to ping our server at <a href="http://localhost:3001/ping" rel="noopener noreferrer">http://localhost:3001/ping</a></p> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F3mjz19vsn7g93dqriuqf.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F3mjz19vsn7g93dqriuqf.png" alt="Response of the request is " width="571" height="200"></a></p> <h2> Twitter OAuth2 Implementation </h2> <p>We are ready to implement authentication via Twitter OAuth 2.0 into our app. We will follow <a href="https://developer.twitter.com/en/docs/authentication/oauth-2-0/authorization-code" rel="noopener noreferrer">this</a> approach to do so. <br> Firstly, we have to make an app on Twitter.</p> <h3> Setup twitter user authentication settings </h3> <p>Head over to <a href="https://developer.twitter.com/en/portal/dashboard" rel="noopener noreferrer">twitter's developer portal</a> and make a project and a development app in the project with any name. Twitter will show you the things needed. It may take a few hours to get approval from Twitter to make these apps. Once it is done, head over to the settings page of the app to set some necessary fields.<br> Set up or edit the user authentication as needed by your app.</p> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fzzw5vwm9n71wrnnizgb8.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fzzw5vwm9n71wrnnizgb8.png" alt="Edit user authentication set up" width="602" height="173"></a></p> <p>As I only need to read profile information for this minimal web app, these are the settings I used:</p> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fyhpscnhcebx4jxp9vhcr.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fyhpscnhcebx4jxp9vhcr.png" alt="App permissions: Read, no request emails; App type: Web app" width="491" height="509"></a></p> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fx6238fp2dtnrshnfdq0u.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fx6238fp2dtnrshnfdq0u.png" alt="Callback URI: http://www.localhost:3001/oauth/twitter, Website URL: http://www.localhost:3000" width="513" height="256"></a></p> <p>Save the Twitter Client ID and client secret securely.</p> <blockquote> <p><strong>Note</strong>: <a href="http://www.localhost:3000" rel="noopener noreferrer">http://www.localhost:3000</a> works but not <a href="http://localhost:3000" rel="noopener noreferrer">http://localhost:3000</a>. <br> So, I added <code>www.</code> in both websites.</p> </blockquote> <h3> Client </h3> <h4> Frontend authentication button </h4> <p>Now we add the button in the client, which will lead to our backend for authentication.<br> To do so, we need to use a valid Twitter OAuth URL getter function and a button to go to the URL.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="nx">twitterIcon</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">../public/twitter.svg</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="nx">Image</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">next/image</span><span class="dl">"</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">TWITTER_CLIENT_ID</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">T1dLaHdFSWVfTnEtQ2psZThTbnI6MTpjaQ</span><span class="dl">"</span> <span class="c1">// give your twitter client id here</span> <span class="c1">// twitter oauth Url constructor</span> <span class="kd">function</span> <span class="nf">getTwitterOauthUrl</span><span class="p">()</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">rootUrl</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">https://twitter.com/i/oauth2/authorize</span><span class="dl">"</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">options</span> <span class="o">=</span> <span class="p">{</span> <span class="na">redirect_uri</span><span class="p">:</span> <span class="dl">"</span><span class="s2">http://www.localhost:3001/oauth/twitter</span><span class="dl">"</span><span class="p">,</span> <span class="c1">// client url cannot be http://localhost:3000/ or http://127.0.0.1:3000/</span> <span class="na">client_id</span><span class="p">:</span> <span class="nx">TWITTER_CLIENT_ID</span><span class="p">,</span> <span class="na">state</span><span class="p">:</span> <span class="dl">"</span><span class="s2">state</span><span class="dl">"</span><span class="p">,</span> <span class="na">response_type</span><span class="p">:</span> <span class="dl">"</span><span class="s2">code</span><span class="dl">"</span><span class="p">,</span> <span class="na">code_challenge</span><span class="p">:</span> <span class="dl">"</span><span class="s2">y_SfRG4BmOES02uqWeIkIgLQAlTBggyf_G7uKT51ku8</span><span class="dl">"</span><span class="p">,</span> <span class="na">code_challenge_method</span><span class="p">:</span> <span class="dl">"</span><span class="s2">S256</span><span class="dl">"</span><span class="p">,</span> <span class="na">scope</span><span class="p">:</span> <span class="p">[</span><span class="dl">"</span><span class="s2">users.read</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">tweet.read</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">follows.read</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">follows.write</span><span class="dl">"</span><span class="p">].</span><span class="nf">join</span><span class="p">(</span><span class="dl">"</span><span class="s2"> </span><span class="dl">"</span><span class="p">),</span> <span class="c1">// add/remove scopes as needed</span> <span class="p">};</span> <span class="kd">const</span> <span class="nx">qs</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">URLSearchParams</span><span class="p">(</span><span class="nx">options</span><span class="p">).</span><span class="nf">toString</span><span class="p">();</span> <span class="k">return</span> <span class="s2">`</span><span class="p">${</span><span class="nx">rootUrl</span><span class="p">}</span><span class="s2">?</span><span class="p">${</span><span class="nx">qs</span><span class="p">}</span><span class="s2">`</span><span class="p">;</span> <span class="p">}</span> <span class="c1">// the component</span> <span class="k">export</span> <span class="kd">function</span> <span class="nf">TwitterOauthButton</span><span class="p">()</span> <span class="p">{</span> <span class="k">return </span><span class="p">(</span> <span class="o">&lt;</span><span class="nx">a</span> <span class="nx">className</span><span class="o">=</span><span class="dl">"</span><span class="s2">a-button row-container</span><span class="dl">"</span> <span class="nx">href</span><span class="o">=</span><span class="p">{</span><span class="nf">getTwitterOauthUrl</span><span class="p">()}</span><span class="o">&gt;</span> <span class="o">&lt;</span><span class="nx">Image</span> <span class="nx">src</span><span class="o">=</span><span class="p">{</span><span class="nx">twitterIcon</span><span class="p">}</span> <span class="nx">alt</span><span class="o">=</span><span class="dl">"</span><span class="s2">twitter icon</span><span class="dl">"</span> <span class="o">/&gt;</span> <span class="o">&lt;</span><span class="nx">p</span><span class="o">&gt;</span><span class="p">{</span><span class="dl">"</span><span class="s2"> twitter</span><span class="dl">"</span><span class="p">}</span><span class="o">&lt;</span><span class="sr">/p</span><span class="err">&gt; </span> <span class="o">&lt;</span><span class="sr">/a</span><span class="err">&gt; </span> <span class="p">);</span> <span class="p">}</span> </code></pre> </div> <blockquote> <p><strong>Note</strong>: We are hard coding <code>code_challenge</code> and <code>code_verifier</code> for simplicity. You can randomly generate it.</p> </blockquote> <p>After adding the above code in <code>client\components\TwitterOauthButton.tsx</code>, we will add a twitter SVG icon (from online resources like <a href="https://icons8.com/icons/set/twitter" rel="noopener noreferrer">this</a>) on path <code>client\public\twitter.svg</code>.<br> Then we will import the component on the homepage:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">TwitterOauthButton</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">../components/TwitterOauthButton</span><span class="dl">"</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">Home</span><span class="p">:</span> <span class="nx">NextPage</span> <span class="o">=</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">return </span><span class="p">(</span> <span class="o">&lt;</span><span class="nx">div</span> <span class="nx">className</span><span class="o">=</span><span class="dl">"</span><span class="s2">column-container</span><span class="dl">"</span><span class="o">&gt;</span> <span class="o">&lt;</span><span class="nx">p</span><span class="o">&gt;</span><span class="nx">Hello</span><span class="o">!&lt;</span><span class="sr">/p</span><span class="err">&gt; </span> <span class="o">&lt;</span><span class="nx">TwitterOauthButton</span> <span class="o">/&gt;</span> <span class="o">&lt;</span><span class="sr">/div</span><span class="err">&gt; </span> <span class="p">);</span> <span class="p">};</span> </code></pre> </div> <p>This is how it should look like afterwards:</p> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Ft5uh5s5fpugk7jw9e0me.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Ft5uh5s5fpugk7jw9e0me.png" alt="Webpage with Twitter icon and text, " width="701" height="327"></a></p> <p>Clicking on the Twitter icon will lead us to the Twitter page where we can authorize the app:</p> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fzy9gx038w14j2ds49jgy.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fzy9gx038w14j2ds49jgy.png" alt="Twitter interface asking whether to authorize app or cancel" width="419" height="534"></a></p> <p>Of course, clicking on the <code>authorize app</code> button leads to a <code>Cannot GET /oauth/twitter</code> response, as we haven't implemented the backend yet.</p> <h4> Me query </h4> <p>Let's request for the current logged in user from the frontend through a hook, <code>client\hooks\useMeQuery.ts</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">useEffect</span><span class="p">,</span> <span class="nx">useState</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">react</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="nx">axios</span><span class="p">,</span> <span class="p">{</span> <span class="nx">AxiosResponse</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">axios</span><span class="dl">"</span><span class="p">;</span> <span class="k">export</span> <span class="kd">type</span> <span class="nx">User</span> <span class="o">=</span> <span class="p">{</span> <span class="na">id</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">name</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">username</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">type</span><span class="p">:</span> <span class="dl">"</span><span class="s2">local</span><span class="dl">"</span> <span class="o">|</span> <span class="dl">"</span><span class="s2">twitter</span><span class="dl">"</span><span class="p">;</span> <span class="p">};</span> <span class="k">export</span> <span class="kd">function</span> <span class="nf">useMeQuery</span><span class="p">()</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">error</span><span class="p">,</span> <span class="nx">setError</span><span class="p">]</span> <span class="o">=</span> <span class="nx">useState</span><span class="o">&lt;</span><span class="kr">string</span> <span class="o">|</span> <span class="kc">null</span><span class="o">&gt;</span><span class="p">(</span><span class="kc">null</span><span class="p">);</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">loading</span><span class="p">,</span> <span class="nx">setLoading</span><span class="p">]</span> <span class="o">=</span> <span class="nx">useState</span><span class="o">&lt;</span><span class="nx">boolean</span><span class="o">&gt;</span><span class="p">(</span><span class="kc">true</span><span class="p">);</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">data</span><span class="p">,</span> <span class="nx">setData</span><span class="p">]</span> <span class="o">=</span> <span class="nx">useState</span><span class="o">&lt;</span><span class="nx">User</span> <span class="o">|</span> <span class="kc">null</span><span class="o">&gt;</span><span class="p">(</span><span class="kc">null</span><span class="p">);</span> <span class="nf">useEffect</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nf">setLoading</span><span class="p">(</span><span class="kc">true</span><span class="p">);</span> <span class="nx">axios</span> <span class="p">.</span><span class="kd">get</span><span class="o">&lt;</span><span class="kr">any</span><span class="p">,</span> <span class="nx">AxiosResponse</span><span class="o">&lt;</span><span class="nx">User</span><span class="o">&gt;&gt;</span><span class="p">(</span><span class="s2">`http://www.localhost:3001/me`</span><span class="p">,</span> <span class="p">{</span> <span class="na">withCredentials</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="p">})</span> <span class="p">.</span><span class="nf">then</span><span class="p">((</span><span class="nx">v</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="nx">v</span><span class="p">.</span><span class="nx">data</span><span class="p">)</span> <span class="nf">setData</span><span class="p">(</span><span class="nx">v</span><span class="p">.</span><span class="nx">data</span><span class="p">);</span> <span class="p">})</span> <span class="p">.</span><span class="k">catch</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="nf">setError</span><span class="p">(</span><span class="dl">"</span><span class="s2">Not Authenticated</span><span class="dl">"</span><span class="p">))</span> <span class="p">.</span><span class="k">finally</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="nf">setLoading</span><span class="p">(</span><span class="kc">false</span><span class="p">));</span> <span class="p">},</span> <span class="p">[]);</span> <span class="k">return</span> <span class="p">{</span> <span class="nx">error</span><span class="p">,</span> <span class="nx">data</span><span class="p">,</span> <span class="nx">loading</span> <span class="p">};</span> <span class="p">}</span> </code></pre> </div> <p>This will do a good enough job for our minimal app. We will use it to determine what to render. We will render the username if we get a user from the hook. Otherwise, we will render the <code>Login with Twitter</code> button<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="kd">type</span> <span class="p">{</span> <span class="nx">NextPage</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">next</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">TwitterOauthButton</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">../components/TwitterOauthButton</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">useMeQuery</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">../hooks/useMeQuery</span><span class="dl">"</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">Home</span><span class="p">:</span> <span class="nx">NextPage</span> <span class="o">=</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span> <span class="na">data</span><span class="p">:</span> <span class="nx">user</span> <span class="p">}</span> <span class="o">=</span> <span class="nf">useMeQuery</span><span class="p">();</span> <span class="k">return </span><span class="p">(</span> <span class="o">&lt;</span><span class="nx">div</span> <span class="nx">className</span><span class="o">=</span><span class="dl">"</span><span class="s2">column-container</span><span class="dl">"</span><span class="o">&gt;</span> <span class="o">&lt;</span><span class="nx">p</span><span class="o">&gt;</span><span class="nx">Hello</span><span class="o">!&lt;</span><span class="sr">/p</span><span class="err">&gt; </span> <span class="p">{</span><span class="nx">user</span> <span class="p">?</span> <span class="p">(</span><span class="c1">// user present so only display user's name</span> <span class="o">&lt;</span><span class="nx">p</span><span class="o">&gt;</span><span class="p">{</span><span class="nx">user</span><span class="p">.</span><span class="nx">name</span><span class="p">}</span><span class="o">&lt;</span><span class="sr">/p</span><span class="err">&gt; </span> <span class="p">)</span> <span class="p">:</span> <span class="p">(</span><span class="c1">// user not present so prompt to login</span> <span class="o">&lt;</span><span class="nx">div</span><span class="o">&gt;</span> <span class="o">&lt;</span><span class="nx">p</span><span class="o">&gt;</span><span class="nx">You</span> <span class="nx">are</span> <span class="nx">not</span> <span class="nx">Logged</span> <span class="k">in</span><span class="o">!</span> <span class="nx">Login</span> <span class="na">with</span><span class="p">:</span><span class="o">&lt;</span><span class="sr">/p</span><span class="err">&gt; </span> <span class="o">&lt;</span><span class="nx">TwitterOauthButton</span> <span class="o">/&gt;</span> <span class="o">&lt;</span><span class="sr">/div</span><span class="err">&gt; </span> <span class="p">)}</span> <span class="o">&lt;</span><span class="sr">/div</span><span class="err">&gt; </span> <span class="p">);</span> <span class="p">};</span> <span class="k">export</span> <span class="k">default</span> <span class="nx">Home</span><span class="p">;</span> </code></pre> </div> <p>The above is how the final <code>client\pages\index.tsx</code> will look like. Go to <a href="http://www.localhost:3000" rel="noopener noreferrer">http://www.localhost:3000</a> and inspect the network window of the browser while the page is loading. You should see the Me query being executed there.</p> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fjk9lve0bp9mmdseq9eyn.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fjk9lve0bp9mmdseq9eyn.png" alt="Information about the query GET http://www.localhost:3001/me which failed with status 404" width="550" height="423"></a></p> <blockquote> <p>Its 404 because we havent implemented it in the backend</p> </blockquote> <h4> Styling </h4> <p>Let's just add some basic styling while we are at it by modifying the <code>client\styles\globals.css</code> file:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight css"><code><span class="nt">html</span><span class="o">,</span> <span class="nt">body</span> <span class="p">{</span> <span class="nl">padding</span><span class="p">:</span> <span class="m">0</span><span class="p">;</span> <span class="nl">margin</span><span class="p">:</span> <span class="m">0</span><span class="p">;</span> <span class="nl">font-family</span><span class="p">:</span> <span class="n">-apple-system</span><span class="p">,</span> <span class="n">BlinkMacSystemFont</span><span class="p">,</span> <span class="n">Segoe</span> <span class="n">UI</span><span class="p">,</span> <span class="n">Roboto</span><span class="p">,</span> <span class="n">Oxygen</span><span class="p">,</span> <span class="n">Ubuntu</span><span class="p">,</span> <span class="n">Cantarell</span><span class="p">,</span> <span class="n">Fira</span> <span class="n">Sans</span><span class="p">,</span> <span class="n">Droid</span> <span class="n">Sans</span><span class="p">,</span> <span class="n">Helvetica</span> <span class="n">Neue</span><span class="p">,</span> <span class="nb">sans-serif</span><span class="p">;</span> <span class="p">}</span> <span class="nt">a</span> <span class="p">{</span> <span class="nl">color</span><span class="p">:</span> <span class="nb">inherit</span><span class="p">;</span> <span class="nl">text-decoration</span><span class="p">:</span> <span class="nb">none</span><span class="p">;</span> <span class="p">}</span> <span class="nc">.column-container</span> <span class="p">{</span> <span class="nl">display</span><span class="p">:</span> <span class="n">flex</span><span class="p">;</span> <span class="nl">flex-direction</span><span class="p">:</span> <span class="n">column</span><span class="p">;</span> <span class="nl">justify-content</span><span class="p">:</span> <span class="nb">center</span><span class="p">;</span> <span class="nl">align-items</span><span class="p">:</span> <span class="nb">center</span><span class="p">;</span> <span class="p">}</span> <span class="nc">.row-container</span> <span class="p">{</span> <span class="nl">display</span><span class="p">:</span> <span class="n">flex</span><span class="p">;</span> <span class="nl">flex-direction</span><span class="p">:</span> <span class="n">row</span><span class="p">;</span> <span class="nl">justify-content</span><span class="p">:</span> <span class="nb">center</span><span class="p">;</span> <span class="nl">align-items</span><span class="p">:</span> <span class="nb">center</span><span class="p">;</span> <span class="p">}</span> <span class="nc">.a-button</span> <span class="p">{</span> <span class="nl">border</span><span class="p">:</span> <span class="m">2px</span> <span class="nb">solid</span> <span class="n">grey</span><span class="p">;</span> <span class="nl">border-radius</span><span class="p">:</span> <span class="m">5px</span><span class="p">;</span> <span class="p">}</span> <span class="nc">.a-button</span><span class="nd">:hover</span> <span class="p">{</span> <span class="nl">background-color</span><span class="p">:</span> <span class="m">#111133</span><span class="p">;</span> <span class="p">}</span> <span class="k">@media</span> <span class="p">(</span><span class="n">prefers-color-scheme</span><span class="p">:</span> <span class="n">dark</span><span class="p">)</span> <span class="p">{</span> <span class="nt">html</span> <span class="p">{</span> <span class="py">color-scheme</span><span class="p">:</span> <span class="n">dark</span><span class="p">;</span> <span class="p">}</span> <span class="nt">body</span> <span class="p">{</span> <span class="nl">color</span><span class="p">:</span> <span class="no">white</span><span class="p">;</span> <span class="nl">background</span><span class="p">:</span> <span class="no">black</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>That is all we have to do on our client-side. The final homepage should look like this:</p> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Frgp7b1j87j7g38qvwxx8.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Frgp7b1j87j7g38qvwxx8.png" alt="Webpage saying to log in by clicking on the below twitter logo button" width="587" height="374"></a></p> <h3> Server </h3> <p>As we saw from our frontend, we need to implement <code>GET /oauth/twitter</code> route in our server to make the Twitter OAuth part of the app work. A look at the <a href="https://developer.twitter.com/en/docs/authentication/oauth-2-0/user-access-token" rel="noopener noreferrer">twitter documentation</a> reveals the steps we need to perform so that we can read the info we mentioned in our scopes here.<br> These steps are summarized below:</p> <ol> <li>getting the access token</li> <li>getting the Twitter user from the access token</li> <li>upsert the user in our database</li> <li>create cookie so that the server can validate the user</li> <li>redirect to the client with the cookie</li> </ol> <blockquote> <p><strong>Note</strong>: Only the first two steps are related to Twitter OAuth Implementation</p> </blockquote> <p>Lets add a file <code>server\src\oauth2.ts</code> where we will add our OAuth related codes. We will complete the steps above by defining a function there:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// the function which will be called when twitter redirects to the server at http://www.localhost:3001/oauth/twitter</span> <span class="k">export</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">twitterOauth</span><span class="p">(</span><span class="nx">req</span><span class="p">:</span> <span class="nx">Request</span><span class="o">&lt;</span><span class="kr">any</span><span class="p">,</span> <span class="kr">any</span><span class="p">,</span> <span class="kr">any</span><span class="p">,</span> <span class="p">{</span><span class="na">code</span><span class="p">:</span><span class="kr">string</span><span class="p">}</span><span class="o">&gt;</span><span class="p">,</span> <span class="nx">res</span><span class="p">:</span> <span class="nx">Response</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">code</span> <span class="o">=</span> <span class="nx">req</span><span class="p">.</span><span class="nx">query</span><span class="p">.</span><span class="nx">code</span><span class="p">;</span> <span class="c1">// getting the code if the user authorized the app</span> <span class="c1">// 1. get the access token with the code</span> <span class="c1">// 2. get the twitter user using the access token</span> <span class="c1">// 3. upsert the user in our db</span> <span class="c1">// 4. create cookie so that the server can validate the user</span> <span class="c1">// 5. finally redirect to the client</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">redirect</span><span class="p">(</span><span class="nx">CLIENT_URL</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <p>Before doing any of that make sure we the Twitter OAuth client secret in our <code>.env</code> file. We will also add a JWT secret there so that we can encrypt the cookie we send to the client. The final <code>.env</code> file should look like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>DATABASE_URL=postgres://postgres:postgres@localhost:5432/twitter-oauth2 CLIENT_URL=http://www.localhost:3000 SERVER_PORT=3001 JWT_SECRET=put-your-jwt-secret-here TWITTER_CLIENT_SECRET=put-your-twitter-client-secret-here </code></pre> </div> <h4> Getting the access token with the code </h4> <p>Add the following code(the commented lines explain what they do) to get the access token:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// add your client id and secret here:</span> <span class="kd">const</span> <span class="nx">TWITTER_OAUTH_CLIENT_ID</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">T1dLaHdFSWVfTnEtQ2psZThTbnI6MTpjaQ</span><span class="dl">"</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">TWITTER_OAUTH_CLIENT_SECRET</span> <span class="o">=</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">TWITTER_CLIENT_SECRET</span><span class="o">!</span><span class="p">;</span> <span class="c1">// the url where we get the twitter access token from</span> <span class="kd">const</span> <span class="nx">TWITTER_OAUTH_TOKEN_URL</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">https://api.twitter.com/2/oauth2/token</span><span class="dl">"</span><span class="p">;</span> <span class="c1">// we need to encrypt our twitter client id and secret here in base 64 (stated in twitter documentation)</span> <span class="kd">const</span> <span class="nx">BasicAuthToken</span> <span class="o">=</span> <span class="nx">Buffer</span><span class="p">.</span><span class="k">from</span><span class="p">(</span><span class="s2">`</span><span class="p">${</span><span class="nx">TWITTER_OAUTH_CLIENT_ID</span><span class="p">}</span><span class="s2">:</span><span class="p">${</span><span class="nx">TWITTER_OAUTH_CLIENT_SECRET</span><span class="p">}</span><span class="s2">`</span><span class="p">,</span> <span class="dl">"</span><span class="s2">utf8</span><span class="dl">"</span><span class="p">).</span><span class="nf">toString</span><span class="p">(</span> <span class="dl">"</span><span class="s2">base64</span><span class="dl">"</span> <span class="p">);</span> <span class="c1">// filling up the query parameters needed to request for getting the token</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">twitterOauthTokenParams</span> <span class="o">=</span> <span class="p">{</span> <span class="na">client_id</span><span class="p">:</span> <span class="nx">TWITTER_OAUTH_CLIENT_ID</span><span class="p">,</span> <span class="c1">// based on code_challenge</span> <span class="na">code_verifier</span><span class="p">:</span> <span class="dl">"</span><span class="s2">8KxxO-RPl0bLSxX5AWwgdiFbMnry_VOKzFeIlVA7NoA</span><span class="dl">"</span><span class="p">,</span> <span class="na">redirect_uri</span><span class="p">:</span> <span class="s2">`http://www.localhost:3001/oauth/twitter`</span><span class="p">,</span> <span class="na">grant_type</span><span class="p">:</span> <span class="dl">"</span><span class="s2">authorization_code</span><span class="dl">"</span><span class="p">,</span> <span class="p">};</span> <span class="c1">// the shape of the object we should recieve from twitter in the request</span> <span class="kd">type</span> <span class="nx">TwitterTokenResponse</span> <span class="o">=</span> <span class="p">{</span> <span class="na">token_type</span><span class="p">:</span> <span class="dl">"</span><span class="s2">bearer</span><span class="dl">"</span><span class="p">;</span> <span class="nl">expires_in</span><span class="p">:</span> <span class="mi">7200</span><span class="p">;</span> <span class="nl">access_token</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">scope</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="p">};</span> <span class="c1">// the main step 1 function, getting the access token from twitter using the code that twitter sent us</span> <span class="k">export</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">getTwitterOAuthToken</span><span class="p">(</span><span class="nx">code</span><span class="p">:</span> <span class="kr">string</span><span class="p">)</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="c1">// POST request to the token url to get the access token</span> <span class="kd">const</span> <span class="nx">res</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">axios</span><span class="p">.</span><span class="nx">post</span><span class="o">&lt;</span><span class="nx">TwitterTokenResponse</span><span class="o">&gt;</span><span class="p">(</span> <span class="nx">TWITTER_OAUTH_TOKEN_URL</span><span class="p">,</span> <span class="k">new</span> <span class="nc">URLSearchParams</span><span class="p">({</span> <span class="p">...</span><span class="nx">twitterOauthTokenParams</span><span class="p">,</span> <span class="nx">code</span> <span class="p">}).</span><span class="nf">toString</span><span class="p">(),</span> <span class="p">{</span> <span class="na">headers</span><span class="p">:</span> <span class="p">{</span> <span class="dl">"</span><span class="s2">Content-Type</span><span class="dl">"</span><span class="p">:</span> <span class="dl">"</span><span class="s2">application/x-www-form-urlencoded</span><span class="dl">"</span><span class="p">,</span> <span class="na">Authorization</span><span class="p">:</span> <span class="s2">`Basic </span><span class="p">${</span><span class="nx">BasicAuthToken</span><span class="p">}</span><span class="s2">`</span><span class="p">,</span> <span class="p">},</span> <span class="p">}</span> <span class="p">);</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nx">data</span><span class="p">;</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="nx">err</span><span class="p">);</span> <span class="k">return</span> <span class="kc">null</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h4> Getting the Twitter User from access token </h4> <p>Similar code to get user from access token:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// the shape of the response we should get</span> <span class="k">export</span> <span class="kr">interface</span> <span class="nx">TwitterUser</span> <span class="p">{</span> <span class="nl">id</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">name</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">username</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="p">}</span> <span class="c1">// getting the twitter user from access token</span> <span class="k">export</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">getTwitterUser</span><span class="p">(</span><span class="nx">accessToken</span><span class="p">:</span> <span class="kr">string</span><span class="p">):</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="nx">TwitterUser</span> <span class="o">|</span> <span class="kc">null</span><span class="o">&gt;</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="c1">// request GET https://api.twitter.com/2/users/me</span> <span class="kd">const</span> <span class="nx">res</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">axios</span><span class="p">.</span><span class="kd">get</span><span class="o">&lt;</span><span class="p">{</span> <span class="na">data</span><span class="p">:</span> <span class="nx">TwitterUser</span> <span class="p">}</span><span class="o">&gt;</span><span class="p">(</span><span class="dl">"</span><span class="s2">https://api.twitter.com/2/users/me</span><span class="dl">"</span><span class="p">,</span> <span class="p">{</span> <span class="na">headers</span><span class="p">:</span> <span class="p">{</span> <span class="dl">"</span><span class="s2">Content-type</span><span class="dl">"</span><span class="p">:</span> <span class="dl">"</span><span class="s2">application/json</span><span class="dl">"</span><span class="p">,</span> <span class="c1">// put the access token in the Authorization Bearer token</span> <span class="na">Authorization</span><span class="p">:</span> <span class="s2">`Bearer </span><span class="p">${</span><span class="nx">accessToken</span><span class="p">}</span><span class="s2">`</span><span class="p">,</span> <span class="p">},</span> <span class="p">});</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nx">data</span><span class="p">.</span><span class="nx">data</span> <span class="o">??</span> <span class="kc">null</span><span class="p">;</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="nx">err</span><span class="p">);</span> <span class="k">return</span> <span class="kc">null</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h4> Checking if they work </h4> <p>Let's see if they successfully gets us the user. After adding all the code in the <code>server\src\oauth2.ts</code> file it should look like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">CLIENT_URL</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">./config</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="nx">axios</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">axios</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">Request</span><span class="p">,</span> <span class="nx">Response</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">express</span><span class="dl">"</span><span class="p">;</span> <span class="c1">// add your client id and secret here:</span> <span class="kd">const</span> <span class="nx">TWITTER_OAUTH_CLIENT_ID</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">T1dLaHdFSWVfTnEtQ2psZThTbnI6MTpjaQ</span><span class="dl">"</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">TWITTER_OAUTH_CLIENT_SECRET</span> <span class="o">=</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">TWITTER_CLIENT_SECRET</span><span class="o">!</span><span class="p">;</span> <span class="c1">// the url where we get the twitter access token from</span> <span class="kd">const</span> <span class="nx">TWITTER_OAUTH_TOKEN_URL</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">https://api.twitter.com/2/oauth2/token</span><span class="dl">"</span><span class="p">;</span> <span class="c1">// we need to encrypt our twitter client id and secret here in base 64 (stated in twitter documentation)</span> <span class="kd">const</span> <span class="nx">BasicAuthToken</span> <span class="o">=</span> <span class="nx">Buffer</span><span class="p">.</span><span class="k">from</span><span class="p">(</span><span class="s2">`</span><span class="p">${</span><span class="nx">TWITTER_OAUTH_CLIENT_ID</span><span class="p">}</span><span class="s2">:</span><span class="p">${</span><span class="nx">TWITTER_OAUTH_CLIENT_SECRET</span><span class="p">}</span><span class="s2">`</span><span class="p">,</span> <span class="dl">"</span><span class="s2">utf8</span><span class="dl">"</span><span class="p">).</span><span class="nf">toString</span><span class="p">(</span> <span class="dl">"</span><span class="s2">base64</span><span class="dl">"</span> <span class="p">);</span> <span class="c1">// filling up the query parameters needed to request for getting the token</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">twitterOauthTokenParams</span> <span class="o">=</span> <span class="p">{</span> <span class="na">client_id</span><span class="p">:</span> <span class="nx">TWITTER_OAUTH_CLIENT_ID</span><span class="p">,</span> <span class="na">code_verifier</span><span class="p">:</span> <span class="dl">"</span><span class="s2">8KxxO-RPl0bLSxX5AWwgdiFbMnry_VOKzFeIlVA7NoA</span><span class="dl">"</span><span class="p">,</span> <span class="na">redirect_uri</span><span class="p">:</span> <span class="s2">`http://www.localhost:3001/oauth/twitter`</span><span class="p">,</span> <span class="na">grant_type</span><span class="p">:</span> <span class="dl">"</span><span class="s2">authorization_code</span><span class="dl">"</span><span class="p">,</span> <span class="p">};</span> <span class="c1">// the shape of the object we should recieve from twitter in the request</span> <span class="kd">type</span> <span class="nx">TwitterTokenResponse</span> <span class="o">=</span> <span class="p">{</span> <span class="na">token_type</span><span class="p">:</span> <span class="dl">"</span><span class="s2">bearer</span><span class="dl">"</span><span class="p">;</span> <span class="nl">expires_in</span><span class="p">:</span> <span class="mi">7200</span><span class="p">;</span> <span class="nl">access_token</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">scope</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="p">};</span> <span class="c1">// the main step 1 function, getting the access token from twitter using the code that the twitter sent us</span> <span class="k">export</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">getTwitterOAuthToken</span><span class="p">(</span><span class="nx">code</span><span class="p">:</span> <span class="kr">string</span><span class="p">)</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="c1">// POST request to the token url to get the access token</span> <span class="kd">const</span> <span class="nx">res</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">axios</span><span class="p">.</span><span class="nx">post</span><span class="o">&lt;</span><span class="nx">TwitterTokenResponse</span><span class="o">&gt;</span><span class="p">(</span> <span class="nx">TWITTER_OAUTH_TOKEN_URL</span><span class="p">,</span> <span class="k">new</span> <span class="nc">URLSearchParams</span><span class="p">({</span> <span class="p">...</span><span class="nx">twitterOauthTokenParams</span><span class="p">,</span> <span class="nx">code</span> <span class="p">}).</span><span class="nf">toString</span><span class="p">(),</span> <span class="p">{</span> <span class="na">headers</span><span class="p">:</span> <span class="p">{</span> <span class="dl">"</span><span class="s2">Content-Type</span><span class="dl">"</span><span class="p">:</span> <span class="dl">"</span><span class="s2">application/x-www-form-urlencoded</span><span class="dl">"</span><span class="p">,</span> <span class="na">Authorization</span><span class="p">:</span> <span class="s2">`Basic </span><span class="p">${</span><span class="nx">BasicAuthToken</span><span class="p">}</span><span class="s2">`</span><span class="p">,</span> <span class="p">},</span> <span class="p">}</span> <span class="p">);</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nx">data</span><span class="p">;</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="kc">null</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> <span class="c1">// the shape of the response we should get</span> <span class="k">export</span> <span class="kr">interface</span> <span class="nx">TwitterUser</span> <span class="p">{</span> <span class="nl">id</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">name</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">username</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="p">}</span> <span class="c1">// getting the twitter user from access token</span> <span class="k">export</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">getTwitterUser</span><span class="p">(</span><span class="nx">accessToken</span><span class="p">:</span> <span class="kr">string</span><span class="p">):</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="nx">TwitterUser</span> <span class="o">|</span> <span class="kc">null</span><span class="o">&gt;</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="c1">// request GET https://api.twitter.com/2/users/me</span> <span class="kd">const</span> <span class="nx">res</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">axios</span><span class="p">.</span><span class="kd">get</span><span class="o">&lt;</span><span class="p">{</span> <span class="na">data</span><span class="p">:</span> <span class="nx">TwitterUser</span> <span class="p">}</span><span class="o">&gt;</span><span class="p">(</span><span class="dl">"</span><span class="s2">https://api.twitter.com/2/users/me</span><span class="dl">"</span><span class="p">,</span> <span class="p">{</span> <span class="na">headers</span><span class="p">:</span> <span class="p">{</span> <span class="dl">"</span><span class="s2">Content-type</span><span class="dl">"</span><span class="p">:</span> <span class="dl">"</span><span class="s2">application/json</span><span class="dl">"</span><span class="p">,</span> <span class="c1">// put the access token in the Authorization Bearer token</span> <span class="na">Authorization</span><span class="p">:</span> <span class="s2">`Bearer </span><span class="p">${</span><span class="nx">accessToken</span><span class="p">}</span><span class="s2">`</span><span class="p">,</span> <span class="p">},</span> <span class="p">});</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nx">data</span><span class="p">.</span><span class="nx">data</span> <span class="o">??</span> <span class="kc">null</span><span class="p">;</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="kc">null</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> <span class="c1">// the function which will be called when twitter redirects to the server at http://www.localhost:3001/oauth/twitter</span> <span class="k">export</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">twitterOauth</span><span class="p">(</span><span class="nx">req</span><span class="p">:</span> <span class="nx">Request</span><span class="o">&lt;</span><span class="kr">any</span><span class="p">,</span> <span class="kr">any</span><span class="p">,</span> <span class="kr">any</span><span class="p">,</span> <span class="p">{</span><span class="na">code</span><span class="p">:</span><span class="kr">string</span><span class="p">}</span><span class="o">&gt;</span><span class="p">,</span> <span class="nx">res</span><span class="p">:</span> <span class="nx">Response</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">code</span> <span class="o">=</span> <span class="nx">req</span><span class="p">.</span><span class="nx">query</span><span class="p">.</span><span class="nx">code</span><span class="p">;</span> <span class="c1">// 1. get the access token with the code</span> <span class="kd">const</span> <span class="nx">TwitterOAuthToken</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">getTwitterOAuthToken</span><span class="p">(</span><span class="nx">code</span><span class="p">);</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="nx">TwitterOAuthToken</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">TwitterOAuthToken</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// redirect if no auth token</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">redirect</span><span class="p">(</span><span class="nx">CLIENT_URL</span><span class="p">);</span> <span class="p">}</span> <span class="c1">// 2. get the twitter user using the access token</span> <span class="kd">const</span> <span class="nx">twitterUser</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">getTwitterUser</span><span class="p">(</span><span class="nx">TwitterOAuthToken</span><span class="p">.</span><span class="nx">access_token</span><span class="p">);</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="nx">twitterUser</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">twitterUser</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// redirect if no twitter user</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">redirect</span><span class="p">(</span><span class="nx">CLIENT_URL</span><span class="p">);</span> <span class="p">}</span> <span class="c1">// 3. upsert the user in our db</span> <span class="c1">// 4. create cookie so that the server can validate the user</span> <span class="c1">// 5. finally redirect to the client</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">redirect</span><span class="p">(</span><span class="nx">CLIENT_URL</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <p>Import and add the route to our express app:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="nx">app</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">"</span><span class="s2">/ping</span><span class="dl">"</span><span class="p">,</span> <span class="p">(</span><span class="nx">_</span><span class="p">,</span> <span class="nx">res</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="nx">res</span><span class="p">.</span><span class="nf">json</span><span class="p">(</span><span class="dl">"</span><span class="s2">pong</span><span class="dl">"</span><span class="p">));</span> <span class="c1">// activate twitterOauth function when visiting the route </span> <span class="nx">app</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">"</span><span class="s2">/oauth/twitter</span><span class="dl">"</span><span class="p">,</span> <span class="nx">twitterOauth</span><span class="p">);</span> <span class="nx">app</span><span class="p">.</span><span class="nf">listen</span><span class="p">(</span><span class="nx">SERVER_PORT</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="s2">`Server listening on port </span><span class="p">${</span><span class="nx">SERVER_PORT</span><span class="p">}</span><span class="s2">`</span><span class="p">))</span> </code></pre> </div> <p>Now run the client and server, and look at the server console on what happens if we click on the Twitter button in the frontend and authorize the app.</p> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fce3r09zhvnxrlh8rgekx.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fce3r09zhvnxrlh8rgekx.png" alt="successfully fetching user and access token fron twitter" width="800" height="155"></a></p> <p>We successfully got the user from Twitter now!<br> The most important part, i.e. getting the user from Twitter, is done. Now we can finish up our project.</p> <h2> Finishing the web app </h2> <p>Let's finish up the rest of the steps needed for <code>GET /oauth/twitter</code> to work. Since they are not related to OAuth, I will add the functions in the <code>server\src\config.ts</code> file.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">PrismaClient</span><span class="p">,</span> <span class="nx">User</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">@prisma/client</span><span class="dl">"</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">CookieOptions</span><span class="p">,</span> <span class="nx">Response</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">express</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">TwitterUser</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">./oauth2</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="nx">jwt</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">jsonwebtoken</span><span class="dl">"</span><span class="p">;</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">CLIENT_URL</span> <span class="o">=</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">CLIENT_URL</span><span class="o">!</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">SERVER_PORT</span> <span class="o">=</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">SERVER_PORT</span><span class="o">!</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">prisma</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">PrismaClient</span><span class="p">()</span> <span class="c1">// step 3</span> <span class="k">export</span> <span class="kd">function</span> <span class="nf">upsertUser</span><span class="p">(</span><span class="nx">twitterUser</span><span class="p">:</span> <span class="nx">TwitterUser</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// create a new user in our database or return an old user who already signed up earlier </span> <span class="k">return</span> <span class="nx">prisma</span><span class="p">.</span><span class="nx">user</span><span class="p">.</span><span class="nf">upsert</span><span class="p">({</span> <span class="na">create</span><span class="p">:</span> <span class="p">{</span> <span class="na">username</span><span class="p">:</span> <span class="nx">twitterUser</span><span class="p">.</span><span class="nx">username</span><span class="p">,</span> <span class="na">id</span><span class="p">:</span> <span class="nx">twitterUser</span><span class="p">.</span><span class="nx">id</span><span class="p">,</span> <span class="na">name</span><span class="p">:</span> <span class="nx">twitterUser</span><span class="p">.</span><span class="nx">name</span><span class="p">,</span> <span class="na">type</span><span class="p">:</span> <span class="dl">"</span><span class="s2">twitter</span><span class="dl">"</span><span class="p">,</span> <span class="p">},</span> <span class="na">update</span><span class="p">:</span> <span class="p">{</span> <span class="na">id</span><span class="p">:</span> <span class="nx">twitterUser</span><span class="p">.</span><span class="nx">id</span><span class="p">,</span> <span class="p">},</span> <span class="na">where</span><span class="p">:</span> <span class="p">{</span> <span class="na">id</span><span class="p">:</span> <span class="nx">twitterUser</span><span class="p">.</span><span class="nx">id</span><span class="p">},</span> <span class="p">});</span> <span class="p">}</span> <span class="c1">// JWT_SECRET from our environment variable file</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">JWT_SECRET</span> <span class="o">=</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">JWT_SECRET</span><span class="o">!</span> <span class="c1">// cookie name</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">COOKIE_NAME</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">oauth2_token</span><span class="dl">'</span> <span class="c1">// cookie setting options</span> <span class="kd">const</span> <span class="nx">cookieOptions</span><span class="p">:</span> <span class="nx">CookieOptions</span> <span class="o">=</span> <span class="p">{</span> <span class="na">httpOnly</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">secure</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">NODE_ENV</span> <span class="o">===</span> <span class="dl">'</span><span class="s1">production</span><span class="dl">'</span> <span class="na">sameSite</span><span class="p">:</span> <span class="dl">"</span><span class="s2">strict</span><span class="dl">"</span> <span class="p">}</span> <span class="c1">// step 4</span> <span class="k">export</span> <span class="kd">function</span> <span class="nf">addCookieToRes</span><span class="p">(</span><span class="nx">res</span><span class="p">:</span> <span class="nx">Response</span><span class="p">,</span> <span class="nx">user</span><span class="p">:</span> <span class="nx">User</span><span class="p">,</span> <span class="nx">accessToken</span><span class="p">:</span> <span class="kr">string</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">id</span><span class="p">,</span> <span class="kd">type</span> <span class="p">}</span> <span class="o">=</span> <span class="nx">user</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">token</span> <span class="o">=</span> <span class="nx">jwt</span><span class="p">.</span><span class="nf">sign</span><span class="p">({</span> <span class="c1">// Signing the token to send to client side</span> <span class="nx">id</span><span class="p">,</span> <span class="nx">accessToken</span><span class="p">,</span> <span class="kd">type</span> <span class="p">},</span> <span class="nx">JWT_SECRET</span><span class="p">);</span> <span class="nx">res</span><span class="p">.</span><span class="nf">cookie</span><span class="p">(</span><span class="nx">COOKIE_NAME</span><span class="p">,</span> <span class="nx">token</span><span class="p">,</span> <span class="p">{</span> <span class="c1">// adding the cookie to response here</span> <span class="p">...</span><span class="nx">cookieOptions</span><span class="p">,</span> <span class="na">expires</span><span class="p">:</span> <span class="k">new</span> <span class="nc">Date</span><span class="p">(</span><span class="nb">Date</span><span class="p">.</span><span class="nf">now</span><span class="p">()</span> <span class="o">+</span> <span class="mi">7200</span> <span class="o">*</span> <span class="mi">1000</span><span class="p">),</span> <span class="p">});</span> <span class="p">}</span> </code></pre> </div> <p>Import the functions and use them in the <code>server\src\oauth2.ts</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">prisma</span><span class="p">,</span> <span class="nx">CLIENT_URL</span><span class="p">,</span> <span class="nx">addResCookie</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">./config</span><span class="dl">"</span><span class="p">;</span> <span class="p">...</span> <span class="c1">// the function which will be called when twitter redirects to the server at http://www.localhost:3001/oauth/twitter</span> <span class="k">export</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">twitterOauth</span><span class="p">(</span><span class="nx">req</span><span class="p">:</span> <span class="nx">Request</span><span class="o">&lt;</span><span class="kr">any</span><span class="p">,</span> <span class="kr">any</span><span class="p">,</span> <span class="kr">any</span><span class="p">,</span> <span class="p">{</span><span class="na">code</span><span class="p">:</span><span class="kr">string</span><span class="p">}</span><span class="o">&gt;</span><span class="p">,</span> <span class="nx">res</span><span class="p">:</span> <span class="nx">Response</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">code</span> <span class="o">=</span> <span class="nx">req</span><span class="p">.</span><span class="nx">query</span><span class="p">.</span><span class="nx">code</span><span class="p">;</span> <span class="c1">// 1. get the access token with the code</span> <span class="kd">const</span> <span class="nx">twitterOAuthToken</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">getTwitterOAuthToken</span><span class="p">(</span><span class="nx">code</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">twitterOAuthToken</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// redirect if no auth token</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">redirect</span><span class="p">(</span><span class="nx">CLIENT_URL</span><span class="p">);</span> <span class="p">}</span> <span class="c1">// 2. get the twitter user using the access token</span> <span class="kd">const</span> <span class="nx">twitterUser</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">getTwitterUser</span><span class="p">(</span><span class="nx">twitterOAuthToken</span><span class="p">.</span><span class="nx">access_token</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">twitterUser</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// redirect if no twitter user</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">redirect</span><span class="p">(</span><span class="nx">CLIENT_URL</span><span class="p">);</span> <span class="p">}</span> <span class="c1">// 3. upsert the user in our db</span> <span class="kd">const</span> <span class="nx">user</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">upsertUser</span><span class="p">(</span><span class="nx">twitterUser</span><span class="p">)</span> <span class="c1">// 4. create cookie so that the server can validate the user</span> <span class="nf">addCookieToRes</span><span class="p">(</span><span class="nx">res</span><span class="p">,</span> <span class="nx">user</span><span class="p">,</span> <span class="nx">twitterOAuthToken</span><span class="p">.</span><span class="nx">access_token</span><span class="p">)</span> <span class="c1">// 5. finally redirect to the client</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">redirect</span><span class="p">(</span><span class="nx">CLIENT_URL</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <blockquote> <p><strong>Note</strong>: We are sending the access token in the cookie for simplicity. For a web application, we should store it somewhere more secure, like a database.</p> </blockquote> <p>And finally, add the <code>me</code> query in the <code>server\src\index.ts</code> file.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">CLIENT_URL</span><span class="p">,</span> <span class="nx">COOKIE_NAME</span><span class="p">,</span> <span class="nx">JWT_SECRET</span><span class="p">,</span> <span class="nx">prisma</span><span class="p">,</span> <span class="nx">SERVER_PORT</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">./config</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="nx">cookieParser</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">cookie-parser</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="nx">cors</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">cors</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="nx">express</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">express</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="nx">jwt</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">jsonwebtoken</span><span class="dl">'</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">getTwitterUser</span><span class="p">,</span> <span class="nx">twitterOauth</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">./oauth2</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">User</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">@prisma/client</span><span class="dl">"</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">app</span> <span class="o">=</span> <span class="nf">express</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">origin</span><span class="o">=</span> <span class="p">[</span><span class="nx">CLIENT_URL</span><span class="p">];</span> <span class="nx">app</span><span class="p">.</span><span class="nf">use</span><span class="p">(</span><span class="nf">cookieParser</span><span class="p">());</span> <span class="nx">app</span><span class="p">.</span><span class="nf">use</span><span class="p">(</span><span class="nf">cors</span><span class="p">({</span> <span class="nx">origin</span><span class="p">,</span> <span class="na">credentials</span><span class="p">:</span> <span class="kc">true</span> <span class="p">}))</span> <span class="nx">app</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">"</span><span class="s2">/ping</span><span class="dl">"</span><span class="p">,</span> <span class="p">(</span><span class="nx">_</span><span class="p">,</span> <span class="nx">res</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="nx">res</span><span class="p">.</span><span class="nf">json</span><span class="p">(</span><span class="dl">"</span><span class="s2">pong</span><span class="dl">"</span><span class="p">));</span> <span class="kd">type</span> <span class="nx">UserJWTPayload</span> <span class="o">=</span> <span class="nb">Pick</span><span class="o">&lt;</span><span class="nx">User</span><span class="p">,</span> <span class="dl">'</span><span class="s1">id</span><span class="dl">'</span><span class="o">|</span><span class="dl">'</span><span class="s1">type</span><span class="dl">'</span><span class="o">&gt;</span> <span class="o">&amp;</span> <span class="p">{</span><span class="na">accessToken</span><span class="p">:</span> <span class="kr">string</span><span class="p">}</span> <span class="nx">app</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">/me</span><span class="dl">'</span><span class="p">,</span> <span class="k">async </span><span class="p">(</span><span class="nx">req</span><span class="p">,</span> <span class="nx">res</span><span class="p">)</span><span class="o">=&gt;</span><span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">token</span> <span class="o">=</span> <span class="nx">req</span><span class="p">.</span><span class="nx">cookies</span><span class="p">[</span><span class="nx">COOKIE_NAME</span><span class="p">];</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">token</span><span class="p">)</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Not Authenticated</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> <span class="kd">const</span> <span class="nx">payload</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">jwt</span><span class="p">.</span><span class="nf">verify</span><span class="p">(</span><span class="nx">token</span><span class="p">,</span> <span class="nx">JWT_SECRET</span><span class="p">)</span> <span class="k">as</span> <span class="nx">UserJWTPayload</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">userFromDb</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">prisma</span><span class="p">.</span><span class="nx">user</span><span class="p">.</span><span class="nf">findUnique</span><span class="p">({</span> <span class="na">where</span><span class="p">:</span> <span class="p">{</span> <span class="na">id</span><span class="p">:</span> <span class="nx">payload</span><span class="p">?.</span><span class="nx">id</span> <span class="p">},</span> <span class="p">});</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">userFromDb</span><span class="p">)</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Not Authenticated</span><span class="dl">"</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">userFromDb</span><span class="p">.</span><span class="kd">type</span> <span class="o">===</span> <span class="dl">"</span><span class="s2">twitter</span><span class="dl">"</span><span class="p">)</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">payload</span><span class="p">.</span><span class="nx">accessToken</span><span class="p">)</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Not Authenticated</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> <span class="kd">const</span> <span class="nx">twUser</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">getTwitterUser</span><span class="p">(</span><span class="nx">payload</span><span class="p">.</span><span class="nx">accessToken</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">twUser</span><span class="p">?.</span><span class="nx">id</span> <span class="o">!==</span> <span class="nx">userFromDb</span><span class="p">.</span><span class="nx">id</span><span class="p">)</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Not Authenticated</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> <span class="nx">res</span><span class="p">.</span><span class="nf">json</span><span class="p">(</span><span class="nx">userFromDb</span><span class="p">)</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="p">{</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">401</span><span class="p">).</span><span class="nf">json</span><span class="p">(</span><span class="dl">"</span><span class="s2">Not Authenticated</span><span class="dl">"</span><span class="p">)</span> <span class="p">}</span> <span class="p">})</span> <span class="c1">// activate twitterOauth function when visiting the route </span> <span class="nx">app</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">"</span><span class="s2">/oauth/twitter</span><span class="dl">"</span><span class="p">,</span> <span class="nx">twitterOauth</span><span class="p">);</span> <span class="nx">app</span><span class="p">.</span><span class="nf">listen</span><span class="p">(</span><span class="nx">SERVER_PORT</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="s2">`Server listening on port </span><span class="p">${</span><span class="nx">SERVER_PORT</span><span class="p">}</span><span class="s2">`</span><span class="p">))</span> </code></pre> </div> <p>It is done now! Let's see what happens when we click the Twitter button on our client and authorize the app there.</p> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fve6r1mqhb1lrozf7hj5p.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fve6r1mqhb1lrozf7hj5p.png" alt="Successful login and setting up cookies in FE" width="800" height="368"></a></p> <p>We see our Twitter username in there instead of the Twitter button now, which shows that the <code>me</code> query is being executed successfully. As a result, we now have a working user authentication system, via Twitter OAuth 2.0, in our minimal full-stack web application. </p> <h2> Conclusion </h2> <p>Thanks for reading! <a href="https://github.com/Reinforz/twitter-oauth2-blog" rel="noopener noreferrer">This</a> is the Github repository with all the codes. Find more fun things you can do with the Twitter API <a href="https://developer.twitter.com/en/docs/api-reference-index" rel="noopener noreferrer">here</a>. Another example implementation of authentication via Twitter OAuth 2.0 can be found <a href="https://github.com/imoxto/imodit" rel="noopener noreferrer">here</a>.</p> <p><em>Written by <a href="https://github.com/imoxto" rel="noopener noreferrer">Rafid Hamid</a></em></p> webdev twitter typescript node