fix(oauth, apple): return tokens in response (#373)

Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>

Author: oritwoen

playground/server/routes/auth/apple.ts

@@ -1,13 +1,16 @@
 export default defineOAuthAppleEventHandler({
-  async onSuccess(event, { user, tokens }) {
+  async onSuccess(event, { user, tokens, payload }) {
     const userToSet = user?.name?.firstName && user?.name?.lastName
       ? `${user.name.firstName} ${user.name.lastName}`
-      : user?.name?.firstName || user?.name?.lastName || tokens.email || tokens.sub
+      : user?.name?.firstName || user?.name?.lastName || payload.email || payload.sub
 
     await setUserSession(event, {
       user: {
         apple: userToSet,
       },
+      secure: {
+        ...tokens,
+      },
       loggedInAt: Date.now(),
     })
 

src/runtime/server/lib/oauth/apple.ts

@@ -162,17 +162,17 @@ export function defineOAuthAppleEventHandler({
         },
       })
 
-      const tokens = await verifyJwt<OAuthAppleTokens>(accessTokenResult.id_token, {
+      const payload = await verifyJwt<OAuthAppleTokens>(accessTokenResult.id_token, {
         publicJwkUrl: 'https://appleid.apple.com/auth/keys',
         audience: config.clientId,
         issuer: 'https://appleid.apple.com',
       })
 
-      if (!tokens) {
-        return handleAccessTokenErrorResponse(event, 'apple', tokens, onError)
+      if (!payload) {
+        return handleAccessTokenErrorResponse(event, 'apple', payload, onError)
       }
 
-      return onSuccess(event, { user, tokens })
+      return onSuccess(event, { user, payload, tokens: accessTokenResult })
     }
     catch (error) {
       return handleAccessTokenErrorResponse(event, 'apple', error, onError)