web/app/[lang]/(live)/(public)/login/route.ts

import { NextRequest, NextResponse } from "next/server"
import { AuthError } from "next-auth"

import { Lang } from "@/constants/languages"
import { env } from "@/env/server"
import { badRequest } from "@/server/errors/next"

import { signIn } from "@/auth"

export async function GET(
  request: NextRequest,
  context: { params: { lang: Lang } }
) {
  let redirectHeaders: Headers | undefined = undefined
  let redirectTo: string

  const returnUrl = request.headers.get("x-returnurl")
  if (returnUrl) {
    // Seamless login request from Current web
    redirectTo = returnUrl
  } else {
    // Normal login request from New web
    redirectTo =
      request.cookies.get("redirectTo")?.value || // Cookie gets set by authRequired middleware
      request.headers.get("x-redirect-to") ||
      request.nextUrl.searchParams.get("redirectTo") ||
      request.headers.get("Referer") ||
      ""

    // If above fails, always redirect to startpage
    if (!redirectTo) {
      const proto = request.headers.get("x-forwarded-proto") ?? "http"
      const host =
        request.headers.get("x-forwarded-host") ??
        request.headers.get("host") ??
        env.URL
      redirectTo = `${proto}://${host}/`
    }

    // Clean up cookie from authRequired middleware
    redirectHeaders = new Headers()
    redirectHeaders.append(
      "set-cookie",
      "redirectTo=; Expires=Thu, 01 Jan 1970 00:00:00 UTC; Path=/; HttpOnly; SameSite=Lax"
    )

    try {
      // Initiate the seamless login flow
      let redirectUrlValue
      switch (context.params.lang) {
        case Lang.da:
          redirectUrlValue = env.SEAMLESS_LOGIN_DA
          break
        case Lang.de:
          redirectUrlValue = env.SEAMLESS_LOGIN_DE
          break
        case Lang.en:
          redirectUrlValue = env.SEAMLESS_LOGIN_EN
          break
        case Lang.fi:
          redirectUrlValue = env.SEAMLESS_LOGIN_FI
          break
        case Lang.no:
          redirectUrlValue = env.SEAMLESS_LOGIN_NO
          break
        case Lang.sv:
          redirectUrlValue = env.SEAMLESS_LOGIN_SV
          break
      }
      const redirectUrl = new URL(redirectUrlValue)
      redirectUrl.searchParams.set("returnurl", redirectTo)
      redirectTo = redirectUrl.toString()
    } catch (e) {
      console.error(
        "Unable to create URL for seamless login, proceeding without it."
      )
      console.error(e)
    }
  }

  try {
    /**
     * Passing `redirect: false` to `signIn` will return the URL instead of
     * automatically redirecting to it inside of `signIn`.
     * https://github.com/nextauthjs/next-auth/blob/3c035ec/packages/next-auth/src/lib/actions.ts#L76
     */
    const redirectUrl = await signIn(
      "curity",
      {
        redirectTo,
        redirect: false,
      },
      {
        ui_locales: context.params.lang,
      }
    )

    if (redirectUrl) {
      return NextResponse.redirect(redirectUrl, {
        headers: redirectHeaders,
      })
    }
  } catch (error) {
    if (error instanceof AuthError) {
      console.log({ signInAuthError: error })
    } else {
      console.log({ signInError: error })
    }
  }

  return badRequest()
}