import { VercelRequest, VercelResponse } from "@vercel/node"; import { webcrypto } from "crypto"; const crypto = webcrypto as any; export default async function handler(req: VercelRequest, res: VercelResponse) { res.setHeader("Access-Control-Allow-Origin", "*"); res.setHeader("Access-Control-Allow-Methods", "POST, OPTIONS"); res.setHeader( "Access-Control-Allow-Headers", "Content-Type, x-signature-ed25519, x-signature-timestamp", ); if (req.method === "OPTIONS") { return res.status(200).end(); } if (req.method !== "POST") { return res.status(405).json({ error: "Method not allowed" }); } try { const signature = req.headers["x-signature-ed25519"] as string; const timestamp = req.headers["x-signature-timestamp"] as string; const rawPublicKey = process.env.DISCORD_PUBLIC_KEY; if (!signature || !timestamp || !rawPublicKey) { console.error("[Discord] Missing required headers or public key", { hasSignature: !!signature, hasTimestamp: !!timestamp, hasPublicKey: !!rawPublicKey, }); return res .status(401) .json({ error: "Missing required headers or public key" }); } // Reconstruct the raw body let rawBody: string; if (typeof req.body === "string") { rawBody = req.body; } else if (req.body instanceof Buffer) { rawBody = req.body.toString("utf8"); } else { rawBody = JSON.stringify(req.body); } // Create the message that was signed const message = `${timestamp}${rawBody}`; // Convert Discord's public key (hex string) to buffer const publicKeyBuffer = Buffer.from(rawPublicKey, "hex"); const signatureBuffer = Buffer.from(signature, "hex"); const messageBuffer = Buffer.from(message); // Use WebCrypto API for Ed25519 verification (works in Vercel) try { const publicKey = await crypto.subtle.importKey( "raw", publicKeyBuffer, { name: "Ed25519", namedCurve: "Ed25519", }, false, ["verify"], ); const isValid = await crypto.subtle.verify( "Ed25519", publicKey, signatureBuffer, messageBuffer, ); if (!isValid) { console.error("[Discord] Signature verification failed"); return res.status(401).json({ error: "Invalid signature" }); } } catch (err: any) { console.error("[Discord] Verification error:", err?.message); return res.status(401).json({ error: "Signature verification failed" }); } console.log("[Discord] Signature verified successfully"); // Parse and handle the interaction const interaction = JSON.parse(rawBody); console.log("[Discord] Interaction type:", interaction.type); // Response to PING with type 1 if (interaction.type === 1) { console.log("[Discord] PING received - responding with type 1"); return res.status(200).json({ type: 1 }); } // Handle APPLICATION_COMMAND (slash commands) if (interaction.type === 2) { const commandName = interaction.data.name; console.log("[Discord] Slash command received:", commandName); if (commandName === "creators") { const arm = interaction.data.options?.[0]?.value; const armFilter = arm ? ` (${arm})` : " (all arms)"; return res.status(200).json({ type: 4, data: { content: `šŸ” Browse AeThex Creators${armFilter}\n\nšŸ‘‰ [Open Creator Directory](https://aethex.dev/creators${arm ? `?arm=${arm}` : ""})`, flags: 0, }, }); } if (commandName === "opportunities") { const arm = interaction.data.options?.[0]?.value; const armFilter = arm ? ` (${arm})` : " (all arms)"; return res.status(200).json({ type: 4, data: { content: `šŸ’¼ Find Opportunities on Nexus${armFilter}\n\nšŸ‘‰ [Browse Opportunities](https://aethex.dev/opportunities${arm ? `?arm=${arm}` : ""})`, flags: 0, }, }); } if (commandName === "nexus") { return res.status(200).json({ type: 4, data: { content: `āœØ **AeThex Nexus** - The Talent Marketplace\n\nšŸ”— [Open Nexus](https://aethex.dev/nexus)\n\n**Quick Links:**\nā€¢ šŸ” [Browse Creators](https://aethex.dev/creators)\nā€¢ šŸ’¼ [Find Opportunities](https://aethex.dev/opportunities)\nā€¢ šŸ“Š [View Metrics](https://aethex.dev/admin)`, flags: 0, }, }); } if (commandName === "verify") { try { const { createClient } = await import("@supabase/supabase-js"); const supabase = createClient( process.env.VITE_SUPABASE_URL || "", process.env.SUPABASE_SERVICE_ROLE || "", ); const discordId = interaction.user?.id || interaction.member?.user?.id; if (!discordId) { return res.status(200).json({ type: 4, data: { content: "āŒ Could not get your Discord ID. Please try again.", flags: 64, }, }); } // Generate verification code (random 6 characters) const verificationCode = Math.random() .toString(36) .substring(2, 8) .toUpperCase(); const expiresAt = new Date(Date.now() + 15 * 60 * 1000).toISOString(); // 15 min // Store verification code const { error } = await supabase .from("discord_verifications") .insert([ { discord_id: discordId, verification_code: verificationCode, expires_at: expiresAt, }, ]); if (error) { console.error("Error storing verification code:", error); return res.status(200).json({ type: 4, data: { content: "āŒ Error generating verification code. Please try again.", flags: 64, }, }); } const verifyUrl = `https://aethex.dev/discord-verify?code=${verificationCode}`; return res.status(200).json({ type: 4, data: { content: `āœ… **Verification Code: \`${verificationCode}\`**\n\nšŸ”— [Click here to verify your account](${verifyUrl})\n\nā±ļø This code expires in 15 minutes.`, flags: 0, }, }); } catch (error: any) { console.error("Error in /verify command:", error); return res.status(200).json({ type: 4, data: { content: "āŒ An error occurred. Please try again later.", flags: 64, }, }); } } if (commandName === "set-realm") { const realmChoice = interaction.data.options?.[0]?.value; if (!realmChoice) { return res.status(200).json({ type: 4, data: { content: "āŒ Please select a realm", flags: 64, }, }); } const realmMap: any = { labs: "šŸ”¬ Labs", gameforge: "šŸŽ® GameForge", corp: "šŸ’¼ Corp", foundation: "šŸ¤ Foundation", devlink: "šŸ”— Dev-Link", }; return res.status(200).json({ type: 4, data: { content: `āœ… You've selected **${realmMap[realmChoice] || realmChoice}** as your primary realm!\n\nšŸ“ Your role will be assigned based on your selection.`, flags: 0, }, }); } if (commandName === "profile") { const username = interaction.user?.username || interaction.member?.user?.username || "Unknown"; const discordId = interaction.user?.id || interaction.member?.user?.id || "Unknown"; return res.status(200).json({ type: 4, data: { content: `šŸ‘¤ **Your AeThex Profile**\n\n**Discord:** ${username} (\`${discordId}\`)\n\nšŸ”— [View Full Profile](https://aethex.dev/profile)\n\n**Quick Actions:**\nā€¢ \`/set-realm\` - Choose your primary arm\nā€¢ \`/verify\` - Link your account\nā€¢ \`/verify-role\` - Check your assigned roles`, flags: 0, }, }); } if (commandName === "unlink") { const discordId = interaction.user?.id || interaction.member?.user?.id || "Unknown"; return res.status(200).json({ type: 4, data: { content: `šŸ”“ **Account Unlinked**\n\nYour Discord account (\`${discordId}\`) has been disconnected from AeThex.\n\nTo link again, use \`/verify\``, flags: 0, }, }); } if (commandName === "verify-role") { return res.status(200).json({ type: 4, data: { content: `āœ… **Discord Roles**\n\nYour assigned AeThex roles are shown below.\n\nšŸ“Š [View Full Profile](https://aethex.dev/profile)`, flags: 0, }, }); } if (commandName === "help") { return res.status(200).json({ type: 4, data: { content: `**šŸŽÆ AeThex Discord Bot Help**\n\n**Available Commands:**\n\nā€¢ \`/creators [arm]\` - Browse creators across AeThex arms\n - Filter by: labs, gameforge, corp, foundation, nexus\n\nā€¢ \`/opportunities [arm]\` - Find job opportunities and collaborations\n - Filter by: labs, gameforge, corp, foundation, nexus\n\nā€¢ \`/nexus\` - Explore the Talent Marketplace\n\nā€¢ \`/verify\` - Link your Discord account to AeThex\n\nā€¢ \`/set-realm\` - Choose your primary realm\n\nā€¢ \`/profile\` - View your AeThex profile\n\nā€¢ \`/unlink\` - Disconnect your Discord account\n\nā€¢ \`/verify-role\` - Check your assigned Discord roles\n\n**Learn More:**\nā€¢ šŸŒ [Visit AeThex](https://aethex.dev)\nā€¢ šŸ‘„ [Join Community](https://aethex.dev/community)\nā€¢ šŸ“š [Documentation](https://docs.aethex.tech)`, flags: 0, }, }); } return res.status(200).json({ type: 4, data: { content: `āœØ AeThex - Advanced Development Platform\n\n**Available Commands:**\nā€¢ \`/creators [arm]\` - Browse creators across AeThex arms\nā€¢ \`/opportunities [arm]\` - Find job opportunities and collaborations\nā€¢ \`/nexus\` - Explore the Talent Marketplace\nā€¢ \`/verify\` - Link your Discord account\nā€¢ \`/set-realm\` - Choose your primary realm\nā€¢ \`/profile\` - View your AeThex profile\nā€¢ \`/unlink\` - Disconnect account\nā€¢ \`/verify-role\` - Check your Discord roles\nā€¢ \`/help\` - Show this help message`, flags: 0, }, }); } // For MESSAGE_COMPONENT interactions (buttons, etc.) if (interaction.type === 3) { console.log( "[Discord] Message component interaction:", interaction.data.custom_id, ); return res.status(200).json({ type: 4, data: { content: "Button clicked - feature coming soon!" }, }); } // Acknowledge all other interactions return res.status(200).json({ type: 4, data: { content: "Interaction acknowledged" }, }); } catch (err: any) { console.error("[Discord] Error:", err?.message || err); return res.status(500).json({ error: "Server error" }); } }