From 38b4e0a1349beb22554c4cca5a69b6023964cb7c Mon Sep 17 00:00:00 2001
From: Louis Haftmann <30736553+LouisHaftmann@users.noreply.github.com>
Date: Fri, 2 Jun 2023 17:17:54 +0200
Subject: [PATCH 1/8] feat: protected route redirect overwrite per page

---
 src/runtime/middleware/auth.ts | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/runtime/middleware/auth.ts b/src/runtime/middleware/auth.ts
index 03ae93dd..fe3e652a 100644
--- a/src/runtime/middleware/auth.ts
+++ b/src/runtime/middleware/auth.ts
@@ -5,6 +5,7 @@ import { useAuth } from '#imports'
 type MiddlewareMeta = boolean | {
   unauthenticatedOnly: true,
   navigateAuthenticatedTo?: string,
+  navigateUnauthenticatedTo?: string
 }
 
 declare module '#app/../pages/runtime/composables' {
@@ -61,6 +62,6 @@ export default defineNuxtRouteMiddleware((to) => {
     // @ts-ignore This is valid for a backend-type of `authjs`, where sign-in accepts a provider as a first argument
     return signIn(undefined, signInOptions) as ReturnType<typeof navigateToAuthPages>
   } else {
-    return navigateTo(authConfig.provider.pages.login)
+    return navigateTo(metaAuth.navigateUnauthenticatedTo ?? authConfig.provider.pages.login)
   }
 })

From 9c26a4ee4faf60b58c7346ad6a86c4d81648fc75 Mon Sep 17 00:00:00 2001
From: Louis Haftmann <30736553+LouisHaftmann@users.noreply.github.com>
Date: Mon, 19 Jun 2023 08:18:47 +0200
Subject: [PATCH 2/8] fix: don't access `navigateUnauthenticatedTo` if metaAuth
 is boolean

---
 src/runtime/middleware/auth.ts | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/src/runtime/middleware/auth.ts b/src/runtime/middleware/auth.ts
index fe3e652a..f0cd0aa1 100644
--- a/src/runtime/middleware/auth.ts
+++ b/src/runtime/middleware/auth.ts
@@ -62,6 +62,9 @@ export default defineNuxtRouteMiddleware((to) => {
     // @ts-ignore This is valid for a backend-type of `authjs`, where sign-in accepts a provider as a first argument
     return signIn(undefined, signInOptions) as ReturnType<typeof navigateToAuthPages>
   } else {
-    return navigateTo(metaAuth.navigateUnauthenticatedTo ?? authConfig.provider.pages.login)
+    if(typeof metaAuth === 'object' && metaAuth.navigateUnauthenticatedTo)
+      return navigateTo(metaAuth.navigateUnauthenticatedTo)
+    else
+      return navigateTo(authConfig.provider.pages.login)
   }
 })

From 77cdb48de73b49241bd8feb5237557daba2058af Mon Sep 17 00:00:00 2001
From: Louis Haftmann <30736553+LouisHaftmann@users.noreply.github.com>
Date: Mon, 19 Jun 2023 08:35:05 +0200
Subject: [PATCH 3/8] docs: auth middleware options

---
 .../3.application-side/4.protecting-pages.md  | 26 ++++++++++++++++++-
 src/runtime/middleware/auth.ts                | 16 +++++++++++-
 2 files changed, 40 insertions(+), 2 deletions(-)

diff --git a/docs/content/3.application-side/4.protecting-pages.md b/docs/content/3.application-side/4.protecting-pages.md
index 839f27c7..cb1aadba 100644
--- a/docs/content/3.application-side/4.protecting-pages.md
+++ b/docs/content/3.application-side/4.protecting-pages.md
@@ -1,11 +1,13 @@
 # Protecting Pages
 
 `nuxt-auth` offers different approaches to protect pages:
+
 1. Global protection: Protects all pages with manual exceptions
 2. Local protection: Protects specific pages
 3. Custom middleware: Create your own middleware
 
 Briefly summarized, you can enable global protection (1) in your `nuxt.config.ts`:
+
 ```ts
 export default defineNuxtConfig({
    modules: ['@sidebase/nuxt-auth'],
@@ -18,6 +20,7 @@ export default defineNuxtConfig({
 Now *all pages* will require sign-in. Learn how to add excepted pages [below](/nuxt-auth/application-side/protecting-pages#disabling-the-global-middleware-locally)
 
 To enable page-local protection (2), add the following `definePageMeta` directive to a page:
+
 ```vue
 <!-- file: ~/pages/protected.vue -->
 <template>
@@ -34,6 +37,7 @@ You cannot mix approach (1) and (2). So, if the global middleware is enabled, yo
 ## Global middleware
 
 To create a global authentication middleware that ensures that your user is authenticated no matter which page they visit, you configure `nuxt-auth` as follows:
+
 ```ts
 export default defineNuxtConfig({
   modules: ['@sidebase/nuxt-auth'],
@@ -45,9 +49,24 @@ export default defineNuxtConfig({
 
 That's it! Every page of your application will now need authentication for the user to visit it.
 
+### Middleware Options
+
+#### `unauthenticatedOnly`
+
+Whether to only allow unauthenticated users to access this page. Authenticated users will be redirected to `/` or the route defined in `navigateAuthenticatedTo`
+
+#### `navigateAuthenticatedTo`
+
+Where to redirect authenticated users if `unauthenticatedOnly` is set to true
+
+#### `navigateUnauthenticatedTo`
+
+Where to redirect unauthenticated users if this page is protected
+
 ### Disabling the global middleware locally
 
 To disable the global middleware on a specific page only, you can use the [`definePageMeta` macro](https://nuxt.com/docs/api/utils/define-page-meta#definepagemeta) to turn `auth` off:
+
 ```vue
 <!-- file: ~/pages/index.vue -->
 <template>
@@ -61,10 +80,10 @@ definePageMeta({ auth: false })
 
 Note: This only works on `pages/`. It notably does not work inside the `app.vue`.
 
-
 ## Local middleware
 
 To protect specific pages with a middleware, you can use the [`definePageMeta` macro](https://nuxt.com/docs/api/utils/define-page-meta#definepagemeta) to turn `auth` on:
+
 ```vue
 <!-- file: ~/pages/unprotected.vue -->
 <template>
@@ -87,15 +106,18 @@ Creating a custom middleware is an advanced, experimental option and may result
 ::
 
 To implement your custom middleware:
+
 1. Create an application-side middleware that applies either globally or is named (see [the Nuxt docs for more](https://nuxt.com/docs/guide/directory-structure/middleware#middleware-directory))
 2. Add logic based on `useAuth` to it
 
 When adding the logic, you need to watch out when calling other `async` composable functions. This can lead to `context`-problems in Nuxt, see [the explanation for this here](https://github.com/nuxt/framework/issues/5740#issuecomment-1229197529). In order to avoid these problems, you will need to either:
+
 - use the undocumented `callWithNuxt` utility when `await`ing other composables,
 - return an async function where possible instead of `await`ing it to avoid `callWithNuxt`
 
 Following are examples of both kinds of usage:
 ::code-group
+
 ```ts [direct return]
 // file: ~/middleware/authentication.global.ts
 export default defineNuxtRouteMiddleware((to) => {
@@ -114,6 +136,7 @@ export default defineNuxtRouteMiddleware((to) => {
   return signIn(undefined, { callbackUrl: to.path }) as ReturnType<typeof navigateTo>
 })
 ```
+
 ```ts [callWithNuxt]
 // file: ~/middleware/authentication.global.ts
 import { callWithNuxt, useNuxtApp } from '#app'
@@ -137,6 +160,7 @@ export default defineNuxtRouteMiddleware((to) => {
   await callWithNuxt(nuxtApp, signIn, [undefined, { callbackUrl: to.path }])
 })
 ```
+
 ::
 ::alert{type="info"}
 Prior to v0.5.0 `useAuth()` was called `useSession()`.
diff --git a/src/runtime/middleware/auth.ts b/src/runtime/middleware/auth.ts
index f0cd0aa1..d1b3f6c8 100644
--- a/src/runtime/middleware/auth.ts
+++ b/src/runtime/middleware/auth.ts
@@ -3,8 +3,22 @@ import { navigateToAuthPages, determineCallbackUrl } from '../utils/url'
 import { useAuth } from '#imports'
 
 type MiddlewareMeta = boolean | {
-  unauthenticatedOnly: true,
+  /** Whether to only allow unauthenticated users to access this page. 
+   * 
+   * Authenticated users will be redirected to `/` or the route defined in `navigateAuthenticatedTo`
+   *
+   * @default undefined
+   */
+  unauthenticatedOnly?: boolean,
+  /** Where to redirect authenticated users if `unauthenticatedOnly` is set to true
+   *
+   * @default undefined
+   */
   navigateAuthenticatedTo?: string,
+  /** Where to redirect unauthenticated users if this page is protected
+   *
+   * @default undefined
+   */
   navigateUnauthenticatedTo?: string
 }
 

From 3d6be48bbab5795e00e14ca34d41b5749f0c732d Mon Sep 17 00:00:00 2001
From: Louis Haftmann <30736553+LouisHaftmann@users.noreply.github.com>
Date: Tue, 27 Jun 2023 08:03:31 +0200
Subject: [PATCH 4/8] docs: move middleware options to v0.6

---
 .../3.application-side/4.protecting-pages.md  | 27 -------------------
 .../3.application-side/4.protecting-pages.md  | 14 ++++++++++
 2 files changed, 14 insertions(+), 27 deletions(-)

diff --git a/docs/content/3.application-side/4.protecting-pages.md b/docs/content/3.application-side/4.protecting-pages.md
index cb1aadba..347fdef6 100644
--- a/docs/content/3.application-side/4.protecting-pages.md
+++ b/docs/content/3.application-side/4.protecting-pages.md
@@ -7,7 +7,6 @@
 3. Custom middleware: Create your own middleware
 
 Briefly summarized, you can enable global protection (1) in your `nuxt.config.ts`:
-
 ```ts
 export default defineNuxtConfig({
    modules: ['@sidebase/nuxt-auth'],
@@ -20,7 +19,6 @@ export default defineNuxtConfig({
 Now *all pages* will require sign-in. Learn how to add excepted pages [below](/nuxt-auth/application-side/protecting-pages#disabling-the-global-middleware-locally)
 
 To enable page-local protection (2), add the following `definePageMeta` directive to a page:
-
 ```vue
 <!-- file: ~/pages/protected.vue -->
 <template>
@@ -37,7 +35,6 @@ You cannot mix approach (1) and (2). So, if the global middleware is enabled, yo
 ## Global middleware
 
 To create a global authentication middleware that ensures that your user is authenticated no matter which page they visit, you configure `nuxt-auth` as follows:
-
 ```ts
 export default defineNuxtConfig({
   modules: ['@sidebase/nuxt-auth'],
@@ -49,24 +46,6 @@ export default defineNuxtConfig({
 
 That's it! Every page of your application will now need authentication for the user to visit it.
 
-### Middleware Options
-
-#### `unauthenticatedOnly`
-
-Whether to only allow unauthenticated users to access this page. Authenticated users will be redirected to `/` or the route defined in `navigateAuthenticatedTo`
-
-#### `navigateAuthenticatedTo`
-
-Where to redirect authenticated users if `unauthenticatedOnly` is set to true
-
-#### `navigateUnauthenticatedTo`
-
-Where to redirect unauthenticated users if this page is protected
-
-### Disabling the global middleware locally
-
-To disable the global middleware on a specific page only, you can use the [`definePageMeta` macro](https://nuxt.com/docs/api/utils/define-page-meta#definepagemeta) to turn `auth` off:
-
 ```vue
 <!-- file: ~/pages/index.vue -->
 <template>
@@ -83,7 +62,6 @@ Note: This only works on `pages/`. It notably does not work inside the `app.vue`
 ## Local middleware
 
 To protect specific pages with a middleware, you can use the [`definePageMeta` macro](https://nuxt.com/docs/api/utils/define-page-meta#definepagemeta) to turn `auth` on:
-
 ```vue
 <!-- file: ~/pages/unprotected.vue -->
 <template>
@@ -106,18 +84,15 @@ Creating a custom middleware is an advanced, experimental option and may result
 ::
 
 To implement your custom middleware:
-
 1. Create an application-side middleware that applies either globally or is named (see [the Nuxt docs for more](https://nuxt.com/docs/guide/directory-structure/middleware#middleware-directory))
 2. Add logic based on `useAuth` to it
 
 When adding the logic, you need to watch out when calling other `async` composable functions. This can lead to `context`-problems in Nuxt, see [the explanation for this here](https://github.com/nuxt/framework/issues/5740#issuecomment-1229197529). In order to avoid these problems, you will need to either:
-
 - use the undocumented `callWithNuxt` utility when `await`ing other composables,
 - return an async function where possible instead of `await`ing it to avoid `callWithNuxt`
 
 Following are examples of both kinds of usage:
 ::code-group
-
 ```ts [direct return]
 // file: ~/middleware/authentication.global.ts
 export default defineNuxtRouteMiddleware((to) => {
@@ -136,7 +111,6 @@ export default defineNuxtRouteMiddleware((to) => {
   return signIn(undefined, { callbackUrl: to.path }) as ReturnType<typeof navigateTo>
 })
 ```
-
 ```ts [callWithNuxt]
 // file: ~/middleware/authentication.global.ts
 import { callWithNuxt, useNuxtApp } from '#app'
@@ -160,7 +134,6 @@ export default defineNuxtRouteMiddleware((to) => {
   await callWithNuxt(nuxtApp, signIn, [undefined, { callbackUrl: to.path }])
 })
 ```
-
 ::
 ::alert{type="info"}
 Prior to v0.5.0 `useAuth()` was called `useSession()`.
diff --git a/docs/content/v0.6/3.application-side/4.protecting-pages.md b/docs/content/v0.6/3.application-side/4.protecting-pages.md
index e96bd4ca..c5d28644 100644
--- a/docs/content/v0.6/3.application-side/4.protecting-pages.md
+++ b/docs/content/v0.6/3.application-side/4.protecting-pages.md
@@ -46,6 +46,20 @@ export default defineNuxtConfig({
 
 That's it! Every page of your application will now need authentication for the user to visit it.
 
+### Middleware Options
+
+#### `unauthenticatedOnly`
+
+Whether to only allow unauthenticated users to access this page. Authenticated users will be redirected to `/` or the route defined in `navigateAuthenticatedTo`
+
+#### `navigateAuthenticatedTo`
+
+Where to redirect authenticated users if `unauthenticatedOnly` is set to true
+
+#### `navigateUnauthenticatedTo`
+
+Where to redirect unauthenticated users if this page is protected
+
 ### Disabling the global middleware locally
 
 To disable the global middleware on a specific page only, you can use the [`definePageMeta` macro](https://nuxt.com/docs/api/utils/define-page-meta#definepagemeta) to turn `auth` off:

From df0ef1e538e248110c18b2dafcebb12bc3cb1b47 Mon Sep 17 00:00:00 2001
From: Louis Haftmann <30736553+LouisHaftmann@users.noreply.github.com>
Date: Tue, 27 Jun 2023 08:03:37 +0200
Subject: [PATCH 5/8] style: lint

---
 src/runtime/middleware/auth.ts | 11 +++--------
 1 file changed, 3 insertions(+), 8 deletions(-)

diff --git a/src/runtime/middleware/auth.ts b/src/runtime/middleware/auth.ts
index d1b3f6c8..06a06537 100644
--- a/src/runtime/middleware/auth.ts
+++ b/src/runtime/middleware/auth.ts
@@ -3,8 +3,8 @@ import { navigateToAuthPages, determineCallbackUrl } from '../utils/url'
 import { useAuth } from '#imports'
 
 type MiddlewareMeta = boolean | {
-  /** Whether to only allow unauthenticated users to access this page. 
-   * 
+  /** Whether to only allow unauthenticated users to access this page.
+   *
    * Authenticated users will be redirected to `/` or the route defined in `navigateAuthenticatedTo`
    *
    * @default undefined
@@ -75,10 +75,5 @@ export default defineNuxtRouteMiddleware((to) => {
     const signInOptions: Parameters<typeof signIn>[1] = { error: 'SessionRequired', callbackUrl: determineCallbackUrl(authConfig, () => to.path) }
     // @ts-ignore This is valid for a backend-type of `authjs`, where sign-in accepts a provider as a first argument
     return signIn(undefined, signInOptions) as ReturnType<typeof navigateToAuthPages>
-  } else {
-    if(typeof metaAuth === 'object' && metaAuth.navigateUnauthenticatedTo)
-      return navigateTo(metaAuth.navigateUnauthenticatedTo)
-    else
-      return navigateTo(authConfig.provider.pages.login)
-  }
+  } else if (typeof metaAuth === 'object' && metaAuth.navigateUnauthenticatedTo) { return navigateTo(metaAuth.navigateUnauthenticatedTo) } else { return navigateTo(authConfig.provider.pages.login) }
 })

From 54570f34904a127be9b071fc2a4f70bda83931dc Mon Sep 17 00:00:00 2001
From: Louis Haftmann <30736553+LouisHaftmann@users.noreply.github.com>
Date: Tue, 27 Jun 2023 08:05:41 +0200
Subject: [PATCH 6/8] docs: revert accidental deletion of heading

---
 docs/content/3.application-side/4.protecting-pages.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/docs/content/3.application-side/4.protecting-pages.md b/docs/content/3.application-side/4.protecting-pages.md
index 347fdef6..fd436567 100644
--- a/docs/content/3.application-side/4.protecting-pages.md
+++ b/docs/content/3.application-side/4.protecting-pages.md
@@ -46,6 +46,10 @@ export default defineNuxtConfig({
 
 That's it! Every page of your application will now need authentication for the user to visit it.
 
+### Disabling the global middleware locally
+
+To disable the global middleware on a specific page only, you can use the [`definePageMeta` macro](https://nuxt.com/docs/api/utils/define-page-meta#definepagemeta) to turn `auth` off:
+
 ```vue
 <!-- file: ~/pages/index.vue -->
 <template>

From d5578c93f170e858f9ae49d03208eda7adbeede8 Mon Sep 17 00:00:00 2001
From: Louis Haftmann <30736553+LouisHaftmann@users.noreply.github.com>
Date: Fri, 11 Aug 2023 07:53:29 +0200
Subject: [PATCH 7/8] style: add line breaks

---
 src/runtime/middleware/auth.ts | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/src/runtime/middleware/auth.ts b/src/runtime/middleware/auth.ts
index 06a06537..ca2be659 100644
--- a/src/runtime/middleware/auth.ts
+++ b/src/runtime/middleware/auth.ts
@@ -75,5 +75,9 @@ export default defineNuxtRouteMiddleware((to) => {
     const signInOptions: Parameters<typeof signIn>[1] = { error: 'SessionRequired', callbackUrl: determineCallbackUrl(authConfig, () => to.path) }
     // @ts-ignore This is valid for a backend-type of `authjs`, where sign-in accepts a provider as a first argument
     return signIn(undefined, signInOptions) as ReturnType<typeof navigateToAuthPages>
-  } else if (typeof metaAuth === 'object' && metaAuth.navigateUnauthenticatedTo) { return navigateTo(metaAuth.navigateUnauthenticatedTo) } else { return navigateTo(authConfig.provider.pages.login) }
+  } else if (typeof metaAuth === 'object' && metaAuth.navigateUnauthenticatedTo) {
+    return navigateTo(metaAuth.navigateUnauthenticatedTo)
+  } else {
+    return navigateTo(authConfig.provider.pages.login)
+  }
 })

From beb621ace4d4b032caa0b7f51e728dd9d63cdb84 Mon Sep 17 00:00:00 2001
From: Louis Haftmann <30736553+LouisHaftmann@users.noreply.github.com>
Date: Fri, 11 Aug 2023 07:54:13 +0200
Subject: [PATCH 8/8] feat: add 'unauthenticatedOnly' default value

---
 src/runtime/middleware/auth.ts | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/src/runtime/middleware/auth.ts b/src/runtime/middleware/auth.ts
index ca2be659..db4eb8d3 100644
--- a/src/runtime/middleware/auth.ts
+++ b/src/runtime/middleware/auth.ts
@@ -29,7 +29,13 @@ declare module '#app/../pages/runtime/composables' {
 }
 
 export default defineNuxtRouteMiddleware((to) => {
-  const metaAuth = to.meta.auth
+  const metaAuth = typeof to.meta.auth === 'object'
+    ? {
+        unauthenticatedOnly: true,
+        ...to.meta.auth
+      }
+    : to.meta.auth
+
   if (metaAuth === false) {
     return
   }