fix(pages,oauth): avoid double base; proxy client_id optional

linull24 · linull24 · commit e747ceb3d27e · 2025-12-23T20:27:44.000+08:00
diff --git a/app/src/lib/data/catalog/cloudSnapshot.ts b/app/src/lib/data/catalog/cloudSnapshot.ts
@@ -74,7 +74,7 @@ async function fetchBundledJson<T>(path: string): Promise<T | null> {
 
 async function readBundledCurrentEntries(): Promise<CurrentTermEntry[] | null> {
 	if (!browser) return null;
-	return fetchBundledJson<CurrentTermEntry[]>(withBasePath('/crawler/data/current.json'));
+	return fetchBundledJson<CurrentTermEntry[]>('/crawler/data/current.json');
 }
 
 async function readBundledTermSnapshotText(termId: string): Promise<string | null> {
diff --git a/app/src/lib/policies/github/oauthPkce.ts b/app/src/lib/policies/github/oauthPkce.ts
@@ -178,7 +178,6 @@ export async function completeGithubPkceCallback(url: URL): Promise<GithubPkceCa
 				'Content-Type': 'application/json'
 			},
 			body: JSON.stringify({
-				client_id: availability.clientId,
 				code,
 				redirect_uri: session.redirectUri,
 				code_verifier: session.verifier
diff --git a/oauth-proxy/src/index.ts b/oauth-proxy/src/index.ts
@@ -52,18 +52,21 @@ async function handleToken(request: Request, env: Env): Promise<Response> {
 		return withCors(request, env, new Response('Invalid JSON', { status: 400 }));
 	}
 
-	const client_id = typeof payload?.client_id === 'string' ? payload.client_id.trim() : '';
+	const payloadClientId = typeof payload?.client_id === 'string' ? payload.client_id.trim() : '';
 	const code = typeof payload?.code === 'string' ? payload.code.trim() : '';
 	const redirect_uri = typeof payload?.redirect_uri === 'string' ? payload.redirect_uri.trim() : '';
 	const code_verifier = typeof payload?.code_verifier === 'string' ? payload.code_verifier.trim() : '';
 
+	// If the worker is configured with a fixed client_id, prefer it and allow callers to omit client_id entirely.
+	const configuredClientId = String(env.GITHUB_CLIENT_ID || '').trim();
+	const client_id = payloadClientId || configuredClientId;
+
 	if (!client_id || !code || !redirect_uri || !code_verifier) {
 		return withCors(request, env, new Response('Missing required fields', { status: 400 }));
 	}
 
 	// Optional hardening: if the worker is configured with a fixed client_id, reject mismatches.
-	const configuredClientId = String(env.GITHUB_CLIENT_ID || '').trim();
-	if (configuredClientId && configuredClientId !== client_id) {
+	if (configuredClientId && payloadClientId && configuredClientId !== payloadClientId) {
 		return withCors(request, env, new Response('Invalid client_id', { status: 400 }));
 	}
 

Original file line number	Diff line number	Diff line change
`@@ -74,7 +74,7 @@ async function fetchBundledJson<T>(path: string): Promise<T \| null> {`
`74`	`74`
`75`	`75`	`async function readBundledCurrentEntries(): Promise<CurrentTermEntry[] \| null> {`
`76`	`76`	`if (!browser) return null;`
`77`		`- return fetchBundledJson<CurrentTermEntry[]>(withBasePath('/crawler/data/current.json'));`
	`77`	`+ return fetchBundledJson<CurrentTermEntry[]>('/crawler/data/current.json');`
`78`	`78`	`}`
`79`	`79`
`80`	`80`	`async function readBundledTermSnapshotText(termId: string): Promise<string \| null> {`