Foxchat.NET/Foxchat.Identity/Utils/OauthUtils.cs

using Foxchat.Core;
using Foxchat.Identity.Middleware;
using Foxchat.Identity.Database.Models;

namespace Foxchat.Identity.Utils;

public static class OauthUtils
{
    public const string ClientCredentials = "client_credentials";
    public const string AuthorizationCode = "authorization_code";

    public static readonly string[] Scopes = ["identify", "email", "guilds", "chat_client"];

    private static readonly string[] ForbiddenSchemes = ["javascript", "file", "data", "mailto", "tel"];
    private const string OobUri = "urn:ietf:wg:oauth:2.0:oob";

    public static bool ValidateRedirectUri(string uri)
    {
        if (uri == OobUri) return true;
        try
        {
            var scheme = new Uri(uri).Scheme;
            return !ForbiddenSchemes.Contains(scheme);
        }
        catch
        {
            return false;
        }
    }

    public static string[] ExpandScopes(this string[] scopes) => scopes.Contains("chat_client")
        ? Scopes
        : scopes;
}