fetch profile from gh

maslianok · maslianok · commit e5bb40d21612 · 2025-05-25T11:20:10.000+02:00
diff --git a/app/api/profile/[login]/route.ts b/app/api/profile/[login]/route.ts
@@ -0,0 +1,33 @@
+import { NextRequest, NextResponse } from 'next/server';
+import type { Session } from 'next-auth';
+
+import { auth } from '@/auth';
+import { signedFetch } from '@/lib/signed-fetch';
+
+export type AuthRequest = NextRequest & { auth: Session | null };
+
+export const POST = auth(async function POST(req: AuthRequest, { params }) {
+  if (!req.auth) {
+    return NextResponse.json({ message: 'Not authenticated' }, { status: 401 });
+  }
+
+  const { login } = await params!;
+  const { user } = req.auth;
+
+  const response = await signedFetch('/user/fetch', {
+    method: 'POST',
+    headers: { 'Content-Type': 'application/json' },
+    body: JSON.stringify({
+      userLogin: user.githubLogin,
+      loginToFetch: login,
+    }),
+  });
+
+  const responseData = await response.json();
+
+  if (!response.ok) {
+    return NextResponse.json({ message: 'Failed to fetch user', error: responseData }, { status: response.status });
+  }
+
+  return NextResponse.json(responseData);
+});
diff --git a/app/profile/[login]/components/fetch-user-button.tsx b/app/profile/[login]/components/fetch-user-button.tsx
@@ -0,0 +1,26 @@
+'use client';
+
+import { useParams } from 'next/navigation';
+import { FC } from 'react';
+
+import { Button } from '@/components/ui/button';
+
+type FetchUserButtonProps = {
+  label?: string;
+};
+
+export const FetchUserButton: FC<FetchUserButtonProps> = ({ label = 'Fetch user from GitHub' }) => {
+  const params = useParams<{ login: string }>();
+
+  const fetchUser = async () => {
+    const res = await fetch(`/api/profile/${params.login}`, { method: 'POST' });
+
+    if (!res.ok) {
+      throw new Error('Failed to fetch user');
+    }
+
+    return res.json();
+  };
+
+  return <Button onClick={fetchUser}>{label}</Button>;
+};
diff --git a/app/profile/[login]/not-found.tsx b/app/profile/[login]/not-found.tsx
@@ -1,11 +1,14 @@
 import { Page } from '@/components/page/page';
 
+// import { FetchUserButton } from './components/fetch-user-button';
+
 export default async function NotFound() {
   return (
     <Page className="gap-6 flex-col md:flex-row">
       <div className="flex-grow flex flex-col gap-6">
         <h1 className="text-2xl font-semibold">User not found</h1>
         <p className="text-muted-foreground">The user you are looking for does not exist.</p>
+        {/* <FetchUserButton /> */}
       </div>
     </Page>
   );
diff --git a/lib/graphql/request.ts b/lib/graphql/request.ts
@@ -1,15 +1,15 @@
 import 'server-only';
+import { signedFetch } from '../signed-fetch';
 
 export async function request(
   query: string,
   variables?: Record<string, unknown>,
   params?: { revalidate?: number },
 ): Promise<{ data: unknown; status: number }> {
-  const response = await fetch(process.env.GRAPHQL_URI!, {
+  const response = await signedFetch('/graphql', {
     method: 'POST',
     headers: {
       'Content-Type': 'application/json',
-      'x-api-key': process.env.GRAPHQL_SECRET_KEY!,
       // Skip rate limit if custom header is present
       'nextjs-build-phase': String(process.env.NEXT_PHASE === 'phase-production-build'),
     },
diff --git a/lib/signed-fetch.ts b/lib/signed-fetch.ts
@@ -0,0 +1,17 @@
+import 'server-only';
+import jwt from 'jsonwebtoken';
+
+export async function signedFetch(path: string, init: RequestInit = {}) {
+  const payload = {
+    iss: 'nextjs-frontend',
+    sub: 'service-call',
+    iat: Math.floor(Date.now() / 1000),
+  };
+
+  const token = jwt.sign(payload, process.env.INTERNAL_JWT_SECRET!, { expiresIn: '2m' });
+
+  const headers = new Headers(init.headers);
+  headers.set('Authorization', `Bearer ${token}`);
+
+  return fetch(`${process.env.URI_GITRANKS}${path}`, { ...init, headers });
+}
diff --git a/package.json b/package.json
@@ -30,6 +30,7 @@
     "class-variance-authority": "^0.7.1",
     "clsx": "^2.1.1",
     "date-fns": "^4.1.0",
+    "jsonwebtoken": "^9.0.2",
     "lucide-react": "^0.494.0",
     "mongodb": "^6.15.0",
     "next": "15.3.1",
@@ -55,6 +56,7 @@
     "@graphql-codegen/typed-document-node": "^5.1.1",
     "@svgr/cli": "^8.1.0",
     "@tailwindcss/postcss": "^4.1.4",
+    "@types/jsonwebtoken": "^9.0.9",
     "@types/node": "^22.14.1",
     "@types/react": "^19.1.2",
     "@types/react-dom": "^19.1.2",
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
diff --git a/types/next-auth.d.ts b/types/next-auth.d.ts
@@ -2,7 +2,7 @@ import { DefaultSession } from 'next-auth';
 
 declare module 'next-auth' {
   interface User {
-    githubId?: string;
+    githubLogin?: string;
   }
 
   interface Session extends DefaultSession {
@@ -14,6 +14,6 @@ declare module 'next-auth' {
 
 declare module 'next-auth/jwt' {
   interface JWT extends DefaultJWT {
-    githubId?: string;
+    githubLogin?: string;
   }
 }

Original file line number	Diff line number	Diff line change
`@@ -2,7 +2,7 @@ import { DefaultSession } from 'next-auth';`
`2`	`2`
`3`	`3`	`declare module 'next-auth' {`
`4`	`4`	`interface User {`
`5`		`- githubId?: string;`
	`5`	`+ githubLogin?: string;`
`6`	`6`	`}`
`7`	`7`
`8`	`8`	`interface Session extends DefaultSession {`
`@@ -14,6 +14,6 @@ declare module 'next-auth' {`
`14`	`14`
`15`	`15`	`declare module 'next-auth/jwt' {`
`16`	`16`	`interface JWT extends DefaultJWT {`
`17`		`- githubId?: string;`
	`17`	`+ githubLogin?: string;`
`18`	`18`	`}`
`19`	`19`	`}`