From ec6f858cf2f97c34834e49e1d465406ef5524187 Mon Sep 17 00:00:00 2001
From: cirroskais <cirroskais@madhouselabs.net>
Date: Mon, 18 Mar 2024 21:56:37 -0400
Subject: [PATCH] oh lord

---
 bun.lockb               | Bin 3124 -> 3165 bytes
 package.json            |   3 ++-
 src/env.d.ts            |   2 ++
 src/index.ts            |   8 ++++++++
 src/lib/encryption.ts   |  37 +++++++++++++++++++++++++++++++++++++
 src/routes/negotiate.ts |   3 +++
 src/routes/token.ts     |   5 +++++
 7 files changed, 57 insertions(+), 1 deletion(-)
 create mode 100644 src/lib/encryption.ts
 create mode 100644 src/routes/negotiate.ts

diff --git a/bun.lockb b/bun.lockb
index 8591e2fc319f309481f18d8dbdab51a432d8006e..8cc0a35c10dcff16155ce3b65195fb6a273f8aef 100755
GIT binary patch
delta 559
zcmdlYaaUr3ALH4H{+1rH3=9n13=9oPK$-_ga{*}}Zg>KuIf1kWBZLNW!Qv7g8{O}8
zE<Z3)KdM)4tF0wxzRj^$fwOi`JRmXgMF6A5<e!Z8OnD5Gt(fc>*H5-&v}b%fxe_R3
z$T)cyqa9=6<Vq&%RA!)IAPh8{fdz;`07QfMtU$~J#OzQ$2atvVlJrfMWG<OJmBoAV
z4QAfSZ&|z<nI|_ghfnTc;hp@H*_)AdvLQ?OW((FMOrjvGK}NFyu?5t=h{=K++Nv-|
zf*geGK#)T_;3{J|v?up)7?{Gs5*9Wbj3PjFpiqQ`E-bW|80$>+jLh^*7@kbt%OQ!O
z6DV(Fpl4{PXABGf#iwUf&d<7(36!zWGu1ORV33{6%_+&b0%$x4yqN6H=?L-w5KQji
zG>}XMx)BtiEf%I{7%TYxNq}M&2#!v^$Z0JS2Ql8r(xIfXAhlROFFz%9ass#X<QH5y
RU|O9kb@FsBv&kXc4*&u2YQq2k

delta 471
zcmcaBu|;BnALEjV{+1S83=9lF+~5hMIf3*HDBTOBxq*CsMg|5RAPwY#)k%14bidQN
z{J_Ku5&{$Tqk7f0+FEkv+Z=lpIBWOB7XgeSlXo)OGX_om$!O2CkYTbFlO5yL$(BHl
zG~?tdMmxrg$(2mjlMNVI5}AM|0u5(i24WDK70PFW((FJQ1Yk6X4N^z6zR8lzC6jGg
zyeHpa=AAs1#ha0N@<W#J$sH`blY5!H8CfUaWDehK!Fq&A6yyXJAO=}&!2u+IAY`&2
zhxX(z>;i%y8Ia>TpfYxo6M-@v943sOlRt7uGWJg9=9H9%1>EA(Gb-n2UCLx)th3NF
z)iX3;=$&lODX9z#NLXM2<xTaB%=AncI)LF00w*RXaym|4!D%2F0}b>R3)3@<6@34G
lKvm3{{E^dovICdW<d<A=EP44UsgoVJZGi&qlWVyj004jEUjP6A

diff --git a/package.json b/package.json
index c7b9ee8..d30b56f 100644
--- a/package.json
+++ b/package.json
@@ -6,7 +6,8 @@
         "build": "bun build . --compile --outfile=build/garf-api"
     },
     "devDependencies": {
-        "@types/bun": "latest"
+        "@types/bun": "latest",
+        "@types/node": "^20.11.29"
     },
     "peerDependencies": {
         "typescript": "^5.0.0"
diff --git a/src/env.d.ts b/src/env.d.ts
index 936aef7..8992988 100644
--- a/src/env.d.ts
+++ b/src/env.d.ts
@@ -2,5 +2,7 @@ declare module "bun" {
     interface Env {
         DISCORD_CLIENT_ID: string;
         DISCORD_CLIENT_SECRET: string;
+        ENCRYPTION_KEY: string;
+        ENCRYPTION_SALT: string;
     }
 }
diff --git a/src/index.ts b/src/index.ts
index 7769f99..5c1b9dd 100644
--- a/src/index.ts
+++ b/src/index.ts
@@ -1,5 +1,6 @@
 import token from "./routes/token";
 import config from "./routes/config";
+import negotiate from "./routes/negotiate";
 
 Bun.serve({
     port: 3000,
@@ -10,8 +11,15 @@ Bun.serve({
 
         if (url.pathname === "/") return await config(req);
         if (url.pathname === "/token") return await token(req);
+        if (url.pathname === "/negotiate") return await negotiate(req);
         return new Response("garf dont know what want...");
     },
+    websocket: {
+        message(ws, message) {},
+        open(ws) {},
+        close(ws, code, message) {},
+        drain(ws) {},
+    },
 });
 
 console.log("Listening on 0.0.0.0:3000");
diff --git a/src/lib/encryption.ts b/src/lib/encryption.ts
new file mode 100644
index 0000000..6fc2428
--- /dev/null
+++ b/src/lib/encryption.ts
@@ -0,0 +1,37 @@
+import { createCipheriv, createDecipheriv, scrypt, randomBytes } from "node:crypto";
+
+const KEY = ((await scryptAsync(process.env.ENCRYPTION_KEY, 32)) as Buffer).toString("hex");
+
+function scryptAsync(password: string, length: number) {
+    return new Promise((resolve, reject) => {
+        const pwBuf = Buffer.from(password);
+        scrypt(pwBuf, process.env.ENCRYPTION_SALT, length, (err, key) => {
+            if (err) return reject(err);
+            resolve(key);
+        });
+    });
+}
+
+export async function encrypt(data: string) {
+    const iv = randomBytes(16);
+    const cipher = createCipheriv("aes-256-ccm", KEY, iv);
+
+    let encrypted = cipher.update(data, "utf8", "base64url");
+    encrypted += cipher.final("base64url");
+
+    return { encrypted, iv: iv.toString("hex") };
+}
+
+export async function decrypt(data: string, iv: string) {
+    const ivBuf = Buffer.from(iv, "hex");
+    const decipher = createDecipheriv("aes-256-ccm", KEY, ivBuf);
+
+    let decrypted = decipher.update(data, "base64url", "utf-8");
+    try {
+        decrypted += decipher.final("utf8");
+    } catch {
+        return false;
+    }
+
+    return { decrypted };
+}
diff --git a/src/routes/negotiate.ts b/src/routes/negotiate.ts
new file mode 100644
index 0000000..c180ceb
--- /dev/null
+++ b/src/routes/negotiate.ts
@@ -0,0 +1,3 @@
+export default async function (req: Request): Promise<Response> {
+    return new Response();
+}
diff --git a/src/routes/token.ts b/src/routes/token.ts
index 692bd6e..ddba3c5 100644
--- a/src/routes/token.ts
+++ b/src/routes/token.ts
@@ -30,6 +30,11 @@ export default async function (req: Request): Promise<Response> {
     });
 
     const { access_token } = (await response.json()) as TokenResponse;
+    const userResponse = await fetch("https://discord/api/v10/user/@me", {
+        headers: { Authorization: "Bearer " + access_token },
+    });
+
+    console.log(await userResponse.json());
 
     return new Response(JSON.stringify({ access_token }), {
         headers: {