split auth signer

Author: QSchlegel

src/pages/api/v1/authSigner.ts

@@ -1,11 +1,9 @@
 import type { NextApiRequest, NextApiResponse } from "next";
-import { randomBytes } from "crypto";
 import { db } from "@/server/db";
 import { sign } from "jsonwebtoken";
 import {
   checkSignature,
   DataSignature,
-  deserializeAddress,
 } from "@meshsdk/core";
 import { cors } from "@/lib/cors";
 
@@ -18,33 +16,6 @@ export default async function handler(
     return res.status(200).end();
   }
 
-  if (req.method === "GET") {
-    const { address } = req.query;
-    if (typeof address !== "string") {
-      return res.status(400).json({ error: "Invalid address" });
-    }
-    // Verify that the address exists in the User table
-    const user = await db.user.findUnique({ where: { address } });
-    if (!user) {
-      return res.status(404).json({ error: "Address not found" });
-    }
-
-    // Check if a nonce already exists for this address in the database
-    const existing = await db.nonce.findFirst({ where: { address } });
-    if (existing) {
-      return res.status(200).json({ nonce: existing.value });
-    }
-
-    const nonce = randomBytes(16).toString("hex");
-    await db.nonce.create({
-      data: {
-        address,
-        value: nonce,
-      },
-    });
-    return res.status(200).json({ nonce });
-  }
-
   if (req.method === "POST") {
     const { address, signature, key } = req.body;
     if (

src/pages/api/v1/getNonce.ts

@@ -0,0 +1,43 @@
+import type { NextApiRequest, NextApiResponse } from "next";
+import { randomBytes } from "crypto";
+import { db } from "@/server/db";
+import { cors } from "@/lib/cors";
+
+export default async function handler(
+  req: NextApiRequest,
+  res: NextApiResponse,
+) {
+  await cors(req, res);
+  if (req.method === "OPTIONS") {
+    return res.status(200).end();
+  }
+
+  if (req.method === "GET") {
+    const { address } = req.query;
+    if (typeof address !== "string") {
+      return res.status(400).json({ error: "Invalid address" });
+    }
+    // Verify that the address exists in the User table
+    const user = await db.user.findUnique({ where: { address } });
+    if (!user) {
+      return res.status(404).json({ error: "Address not found" });
+    }
+
+    // Check if a nonce already exists for this address in the database
+    const existing = await db.nonce.findFirst({ where: { address } });
+    if (existing) {
+      return res.status(200).json({ nonce: existing.value });
+    }
+
+    const nonce = randomBytes(16).toString("hex");
+    await db.nonce.create({
+      data: {
+        address,
+        value: nonce,
+      },
+    });
+    return res.status(200).json({ nonce });
+  }
+
+  res.status(405).end();
+}

src/utils/swagger.ts

@@ -233,7 +233,7 @@ security: [
           }
         }
       },
-      "/api/v1/authSigner": {
+      "/api/v1/getNonce": {
         get: {
           tags: ["Auth"],
           summary: "Request nonce for address-based authentication",
@@ -262,8 +262,13 @@ security: [
             400: {
               description: "Invalid address",
             },
+            404: {
+              description: "Address not found",
+            },
           },
         },
+      },
+      "/api/v1/authSigner": {
         post: {
           tags: ["Auth"],
           summary: "Verify signed nonce and return bearer token",