From cc4a811a4b8ab41e4a325b4e06e7c01b87de7378 Mon Sep 17 00:00:00 2001
From: Shni <niamelyrz@gmail.com>
Date: Tue, 14 Oct 2025 22:51:30 -0500
Subject: [PATCH] =?UTF-8?q?feat:=20Actualizar=20credenciales=20de=20Discor?=
 =?UTF-8?q?d=20para=20la=20autenticaci=C3=B3n=20y=20manejar=20errores=20de?=
 =?UTF-8?q?=20configuraci=C3=B3n?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 src/server/server.ts | 13 +++++++++++--
 1 file changed, 11 insertions(+), 2 deletions(-)

diff --git a/src/server/server.ts b/src/server/server.ts
index d190404..c874303 100644
--- a/src/server/server.ts
+++ b/src/server/server.ts
@@ -168,8 +168,8 @@ async function refreshAccessTokenIfNeeded(session: any) {
   // If token expires in next 60s, refresh
   if (!session.expires_at || session.expires_at - now <= 60 * 1000) {
     try {
-      const clientId = process.env.CLIENT || "";
-      const clientSecret = process.env.CLIENT_SECRET || "";
+      const clientId = process.env.DISCORD_CLIENT_ID || "";
+      const clientSecret = process.env.DISCORD_CLIENT_SECRET || "";
       const tokenRes = await fetch("https://discord.com/api/oauth2/token", {
         method: "POST",
         headers: { "Content-Type": "application/x-www-form-urlencoded" },
@@ -679,6 +679,11 @@ export const server = createServer(
       if (url.pathname === "/auth/discord") {
         // Redirect to Discord OAuth2 authorize
         const clientId = process.env.DISCORD_CLIENT_ID || "";
+        if (!clientId) {
+          res.writeHead(500, applySecurityHeadersForRequest(req));
+          res.end("DISCORD_CLIENT_ID not configured");
+          return;
+        }
         const redirectUri =
           process.env.DISCORD_REDIRECT_URI ||
           `http://${req.headers.host}/auth/callback`;
@@ -708,6 +713,10 @@ export const server = createServer(
         }
         const clientId = process.env.DISCORD_CLIENT_ID || "";
         const clientSecret = process.env.DISCORD_CLIENT_SECRET || "";
+        if (!clientId || !clientSecret) {
+          res.writeHead(500, applySecurityHeadersForRequest(req));
+          return res.end("DISCORD client credentials not configured");
+        }
         const redirectUri =
           process.env.DISCORD_REDIRECT_URI ||
           `http://${req.headers.host}/auth/callback`;