-
Notifications
You must be signed in to change notification settings - Fork 0
/
middleware.ts
73 lines (57 loc) · 1.99 KB
/
middleware.ts
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
import NextAuth from "next-auth";
import authConfig from "@/next-auth-config/auth.config";
import {
DEFAULT_LOGIN_REDIRECT,
apiAuthPrefix,
authRoutes,
publicRoutes,
adminRoutes,
DEFAULT_FORBIDDEN_REDIRECT
} from "@/next-auth-config/routes";
import { useCheckAdminRole, useCheckSuperAdminRole } from "./hooks/use-check-admin-role";
import { redirect } from "next/navigation";
import { NextResponse } from "next/server";
const { auth } = NextAuth(authConfig);
export default auth(async (req) => {
const { nextUrl } = req;
const isLoggedIn = !!req.auth;
const isAdmin = await useCheckAdminRole(req.auth?.user.roles) || await useCheckSuperAdminRole(req.auth?.user.roles);
const isApiAuthRoute = nextUrl.pathname.startsWith(apiAuthPrefix);
const isPublicRoute = publicRoutes.includes(nextUrl.pathname);
const isAuthRoute = authRoutes.includes(nextUrl.pathname);
const isAdminRoute = nextUrl.pathname.startsWith(adminRoutes);
if (isApiAuthRoute) {
return null;
}
if (isAuthRoute) {
if (isLoggedIn) {
return NextResponse.redirect(new URL(DEFAULT_LOGIN_REDIRECT, nextUrl));
return Response.redirect(new URL(DEFAULT_LOGIN_REDIRECT, nextUrl))
}
return null;
}
if(isAdminRoute) {
if(isLoggedIn && isAdmin) {
return null;
} else if(isLoggedIn && !isAdmin) {
return Response.redirect(new URL(DEFAULT_FORBIDDEN_REDIRECT, nextUrl))
}
}
if (!isLoggedIn && !isPublicRoute) {
let callbackUrl = nextUrl.pathname;
if (nextUrl.search) {
callbackUrl += nextUrl.search;
}
const encodedCallbackUrl = encodeURIComponent(callbackUrl);
return NextResponse.redirect(new URL(`/auth/login?callbackUrl=${encodedCallbackUrl}`, nextUrl));
// return Response.redirect(new URL(
// `/auth/login?callbackUrl=${encodedCallbackUrl}`,
// nextUrl
// ));
}
return null;
})
// Optionally, don't invoke Middleware on some paths
export const config = {
matcher: ['/((?!.+\\.[\\w]+$|_next).*)', '/', '/(api|trpc)(.*)'],
}