import { NextRequest, NextResponse } from "next/server" import { AuthError } from "next-auth" import { Lang } from "@/constants/languages" import { env } from "@/env/server" import { internalServerError } from "@/server/errors/next" import { signIn } from "@/auth" export async function GET( request: NextRequest, context: { params: { lang: Lang } } ) { let redirectHeaders: Headers | undefined = undefined let redirectTo: string let nonce: string let value: string redirectTo = request.cookies.get("redirectTo")?.value || // Cookie gets set by authRequired middleware request.nextUrl.searchParams.get("redirectTo") || "/" // Make relative URL to absolute URL if (redirectTo.startsWith("/")) { if (!env.PUBLIC_URL) { throw internalServerError("No value for env.PUBLIC_URL") } redirectTo = new URL(redirectTo, env.PUBLIC_URL).href } // Clean up cookie from authRequired middleware redirectHeaders = new Headers() redirectHeaders.append( "set-cookie", "redirectTo=; Expires=Thu, 01 Jan 1970 00:00:00 UTC; Path=/; HttpOnly; SameSite=Lax" ) nonce = "" + request.nextUrl.searchParams.get("nonce")?.toString() value = "" + request.nextUrl.searchParams.get("nonce")?.toString() try { /** * Passing `redirect: false` to `signIn` will return the URL instead of * automatically redirecting to it inside of `signIn`. * https://github.com/nextauthjs/next-auth/blob/3c035ec/packages/next-auth/src/lib/actions.ts#L76 */ console.log({ login_redirectTo: redirectTo }) let redirectUrl = await signIn( "curity", { redirectTo, redirect: false, }, [ ["ui_locales", context.params.lang], ["nonce", nonce], ["acr_values", "cat"], ] ) if (redirectUrl) { return NextResponse.redirect(redirectUrl, { headers: redirectHeaders, }) } } catch (error) { if (error instanceof AuthError) { console.error({ signInAuthError: error }) } else { console.error({ signInError: error }) } } return internalServerError() }