refactor: consolidate auth callback handlers

foyzulkarim · foyzulkarim · commit 29f886521f05 · 2024-11-09T20:00:03.000+11:00
- Extract duplicated authentication callback logic into reusable function
- Create handleAuthCallback helper that works for both GitHub and Google strategies
- Reduce code duplication while maintaining existing functionality
- Keep strategy-specific logging for GitHub callbacks
diff --git a/src/server.js b/src/server.js
@@ -24,6 +24,60 @@ const {
 
 let connection;
 
+const handleAuthCallback = (strategy) => {
+  return [
+    function (req, res, next) {
+      passport.authenticate(
+        strategy,
+        {
+          failureRedirect: `${config.CLIENT_HOST}/login`,
+        },
+        (err, user, info, status) => {
+          if (err || !user) {
+            logger.error('Failed to authenticate user', err);
+            return res.redirect(
+              `${config.CLIENT_HOST}/login?error=${err?.name}`
+            );
+          }
+          req.logIn(user, function (err) {
+            if (err) {
+              return res.redirect(
+                `${config.CLIENT_HOST}/login?error=failed-to-authenticate`
+              );
+            }
+
+            req.session.userId = user._id;
+            req.session.sessionId = req.sessionID;
+            req.session.save((err) => {
+              if (err) {
+                logger.error('Failed to save session', err);
+              } else {
+                logger.info('Session saved');
+              }
+            });
+
+            next();
+          });
+        }
+      )(req, res, next);
+    },
+    function (req, res) {
+      if (strategy === 'github') {
+        logger.info('/api/auth/github/callback', {
+          username: req.user.username,
+        });
+      }
+      const userId = req.user._id.toString();
+      res.cookie('userId', userId, {
+        httpOnly: true,
+        secure: true,
+        sameSite: 'lax',
+      });
+      res.redirect(`${config.CLIENT_HOST}/login-success`);
+    },
+  ];
+};
+
 const createExpressApp = () => {
   const expressApp = express();
   expressApp.use(addRequestIdMiddleware);
@@ -73,59 +127,12 @@ const createExpressApp = () => {
 
   // Github authentication
   expressApp.get('/api/auth/github', passport.authenticate('github'));
-  expressApp.get(
-    '/api/auth/github/callback',
-    function (req, res, next) {
-      passport.authenticate(
-        'github',
-        {
-          failureRedirect: `${config.CLIENT_HOST}/login`,
-        },
-        (err, user, info, status) => {
-          if (err || !user) {
-            logger.error('Failed to authenticate user', err);
-            return res.redirect(
-              `${config.CLIENT_HOST}/login?error=${err?.name}`
-            );
-          }
-          req.logIn(user, function (err) {
-            if (err) {
-              return res.redirect(
-                `${config.CLIENT_HOST}/login?error=failed-to-authenticate`
-              );
-            }
 
-            // modify the session
-            req.session.userId = user._id;
-            req.session.sessionId = req.sessionID;
-            // update the session
-            req.session.save((err) => {
-              if (err) {
-                logger.error('Failed to save session', err);
-              } else {
-                logger.info('Session saved');
-              }
-            });
+  // Replace the GitHub callback route with:
+  expressApp.get('/api/auth/github/callback', ...handleAuthCallback('github'));
 
-            next();
-          });
-        }
-      )(req, res, next);
-    },
-    function (req, res) {
-      logger.info('/api/auth/github/callback', { username: req.user.username });
-      // prepare the cookie here
-      const userId = req.user._id.toString();
-
-      res.cookie('userId', userId, {
-        httpOnly: true,
-        secure: true, // Use secure in production (HTTPS)
-        sameSite: 'lax', // Adjust depending on deployment
-      });
-      // Successful authentication, redirect home.
-      res.redirect(`${config.CLIENT_HOST}/login-success`);
-    }
-  );
+  // Replace the Google callback route with:
+  expressApp.get('/api/auth/google/callback', ...handleAuthCallback('google'));
 
   // Google authentication
   // get current logged in user data from req.user object
@@ -225,54 +232,6 @@ const createExpressApp = () => {
     passport.authenticate('google', { scope: ['profile', 'email'] })
   );
 
-  expressApp.get(
-    '/api/auth/google/callback',
-    function (req, res, next) {
-      passport.authenticate(
-        'google',
-        {
-          failureRedirect: `${config.CLIENT_HOST}/login`,
-        },
-        (err, user, info, status) => {
-          if (err || !user) {
-            logger.error('Failed to authenticate user', err);
-            return res.redirect(
-              `${config.CLIENT_HOST}/login?error=${err?.name}`
-            );
-          }
-          req.logIn(user, function (err) {
-            if (err) {
-              return res.redirect(
-                `${config.CLIENT_HOST}/login?error=failed-to-authenticate`
-              );
-            }
-
-            req.session.userId = user._id;
-            req.session.sessionId = req.sessionID;
-            req.session.save((err) => {
-              if (err) {
-                logger.error('Failed to save session', err);
-              } else {
-                logger.info('Session saved');
-              }
-            });
-
-            next();
-          });
-        }
-      )(req, res, next);
-    },
-    function (req, res) {
-      const userId = req.user._id.toString();
-      res.cookie('userId', userId, {
-        httpOnly: true,
-        secure: true,
-        sameSite: 'lax',
-      });
-      res.redirect(`${config.CLIENT_HOST}/login-success`);
-    }
-  );
-
   defineRoutes(expressApp);
   defineErrorHandlingMiddleware(expressApp);
   return expressApp;
