feat: add bluesky as a provider

README.md

@@ -211,6 +211,7 @@ It can also be set using environment variables:
 - Authentik
 - AWS Cognito
 - Battle.net
+- Bluesky (AT Protocol)
 - Discord
 - Dropbox
 - Facebook
@@ -297,6 +298,28 @@ export default defineNuxtConfig({
 })
 ```
 
+### AT Protocol
+
+Social networks that rely on AT Protocol (e.g., Bluesky) slightly differ from a regular OAuth flow.
+
+To enable OAuth with AT Protocol, you need to:
+
+1. Install the peer dependencies:
+
+```bash
+npx nypm i @atproto/oauth-client-node @atproto/api
+```
+
+2. Enable it in your `nuxt.config.ts`
+
+```ts
+export default defineNuxtConfig({
+  auth: {
+    atproto: true
+  }
+})
+```
+
 ### WebAuthn (passkey)
 
 WebAuthn (Web Authentication) is a web standard that enhances security by replacing passwords with passkeys using public key cryptography. Users can authenticate with biometric data (like fingerprints or facial recognition) or physical devices (like USB keys), reducing the risk of phishing and password breaches. This approach offers a more secure and user-friendly authentication method, supported by major browsers and platforms.
@@ -704,26 +727,26 @@ Checkout the [`SessionConfig`](https://github.com/unjs/h3/blob/c04c458810e34eb15
 
 ```bash
 # Install dependencies
-npm install
+pnpm install
 
 # Generate type stubs
-npm run dev:prepare
+pnpm run dev:prepare
 
 # Develop with the playground
-npm run dev
+pnpm run dev
 
 # Build the playground
-npm run dev:build
+pnpm run dev:build
 
 # Run ESLint
-npm run lint
+pnpm run lint
 
 # Run Vitest
-npm run test
-npm run test:watch
+pnpm run test
+pnpm run test:watch
 
 # Release new version
-npm run release
+pnpm run release
 ```
 
 <!-- Badges -->

package.json

@@ -50,14 +50,22 @@
   },
   "peerDependencies": {
     "@simplewebauthn/browser": "^11.0.0",
-    "@simplewebauthn/server": "^11.0.0"
+    "@simplewebauthn/server": "^11.0.0",
+    "@atproto/oauth-client-node": "^0.2.0",
+    "@atproto/api": "^0.13.15"
   },
   "peerDependenciesMeta": {
     "@simplewebauthn/browser": {
       "optional": true
     },
     "@simplewebauthn/server": {
       "optional": true
+    },
+    "@atproto/oauth-client-node": {
+      "optional": true
+    },
+    "@atproto/api": {
+      "optional": true
     }
   },
   "devDependencies": {

playground/app.vue

@@ -27,6 +27,22 @@ const providers = computed(() =>
       disabled: Boolean(user.value?.github),
       icon: 'i-simple-icons-github',
     },
+    {
+      label: user.value?.bluesky || 'Bluesky',
+      click() {
+        const handle = prompt('Enter your Bluesky handle')
+        if (handle) {
+          navigateTo({
+            path: '/auth/bluesky',
+            query: { handle },
+          }, {
+            external: true,
+          })
+        }
+      },
+      disabled: Boolean(user.value?.bluesky),
+      icon: 'i-simple-icons-bluesky',
+    },
     {
       label: user.value?.gitlab || 'GitLab',
       to: '/auth/gitlab',

playground/auth.d.ts

@@ -1,5 +1,6 @@
 declare module '#auth-utils' {
   interface User {
+    bluesky?: string
     webauthn?: string
     email?: string
     password?: string

playground/server/routes/auth/bluesky.get.ts

@@ -0,0 +1,12 @@
+export default defineOAuthBlueskyEventHandler({
+  async onSuccess(event, { user }) {
+    await setUserSession(event, {
+      user: {
+        bluesky: user.did,
+      },
+      loggedInAt: Date.now(),
+    })
+
+    return sendRedirect(event, '/')
+  },
+})