forked from CRModders/cosmic-mod-manager
-
Notifications
You must be signed in to change notification settings - Fork 0
/
middleware.ts
73 lines (57 loc) · 2.25 KB
/
middleware.ts
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
// This file is part of Cosmic Reach Mod Manager.
//
// Cosmic Reach Mod Manager is free software: you can redistribute it and/or modify it under the terms of the GNU Affero General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.
//
// Cosmic Reach Mod Manager is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
//
// You should have received a copy of the GNU General Public License along with Cosmic Reach Mod Manager. If not, see <https://www.gnu.org/licenses/>.
import NextAuth from "next-auth";
import authConfig from "./auth.config";
import { authRouteApiPrefix, authRoutes, defaultLoginRedirect, protectedRoutes } from "./config";
import { RouteTypes } from "./types";
import { cookies } from "next/headers";
const isAuthApiRoute = (pathname: string): boolean => {
return pathname.startsWith(authRouteApiPrefix);
};
const isAuthPage = (pathname: string): boolean => {
return authRoutes.includes(pathname);
};
const isProtectedRoute = (pathname: string): boolean => {
let result = false;
for (const protectedRoute of protectedRoutes) {
if (pathname.startsWith(protectedRoute)) {
result = true;
break;
}
}
return result;
};
const { auth } = NextAuth(authConfig);
export default auth(async (request) => {
// const ip = headers().get("x-forwarded-for");
// console.log({ ip });
const user = request?.auth?.user;
const isAuthenticated = user?.email;
const pathname = request.nextUrl.pathname;
const routeType: RouteTypes = isAuthApiRoute(pathname)
? RouteTypes.authApi
: isAuthPage(pathname)
? RouteTypes.authPage
: isProtectedRoute(pathname)
? RouteTypes.protected
: RouteTypes.public;
if (routeType === RouteTypes.authApi) return null;
if (routeType === RouteTypes.authPage) {
if (isAuthenticated) {
return Response.redirect(new URL(defaultLoginRedirect, request.nextUrl));
}
return null;
}
if (routeType === RouteTypes.protected) {
if (!isAuthenticated) {
return Response.redirect(new URL("/login", request.nextUrl));
}
return null;
}
return null;
});