79 lines
No EOL
2.1 KiB
TypeScript
79 lines
No EOL
2.1 KiB
TypeScript
import { NextFetchEvent, NextResponse } from "next/server"
|
|
import type { NextRequest } from "next/server"
|
|
import { TOKEN_COOKIE_NAME, USER_COOKIE_NAME } from "@lib/constants"
|
|
import serverConfig from "@lib/config"
|
|
|
|
const PUBLIC_FILE = /\.(.*)$/
|
|
|
|
export function middleware(req: NextRequest, event: NextFetchEvent) {
|
|
const pathname = req.nextUrl.pathname
|
|
const signedIn = req.cookies.get(TOKEN_COOKIE_NAME)
|
|
const getURL = (pageName: string) => new URL(`/${pageName}`, req.url).href
|
|
const isPageRequest =
|
|
!PUBLIC_FILE.test(pathname) &&
|
|
// header added when next/link pre-fetches a route
|
|
!req.headers.get("x-middleware-preflight")
|
|
|
|
if (!req.headers.get("x-middleware-preflight") && pathname === "/signout") {
|
|
// If you're signed in we remove the cookie and redirect to the home page
|
|
// If you're not signed in we redirect to the home page
|
|
if (signedIn) {
|
|
const resp = NextResponse.redirect(getURL(""))
|
|
resp.cookies.delete(TOKEN_COOKIE_NAME)
|
|
resp.cookies.delete(USER_COOKIE_NAME)
|
|
const signoutPromise = new Promise((resolve) => {
|
|
fetch(`${serverConfig.url}/auth/signout`, {
|
|
method: "POST",
|
|
headers: {
|
|
"Content-Type": "application/json",
|
|
Authorization: `Bearer ${signedIn}`,
|
|
"x-secret-key": process.env.SECRET_KEY || ""
|
|
}
|
|
}).then(() => {
|
|
resolve(true)
|
|
})
|
|
})
|
|
event.waitUntil(signoutPromise)
|
|
|
|
return resp
|
|
}
|
|
} else if (isPageRequest) {
|
|
// if (signedIn) {
|
|
// if (
|
|
// pathname === "/" ||
|
|
// pathname === "/signin" ||
|
|
// pathname === "/signup"
|
|
// ) {
|
|
// return NextResponse.redirect(getURL("new"))
|
|
// }
|
|
// } else if (!signedIn) {
|
|
// if (pathname.startsWith("/new")) {
|
|
// return NextResponse.redirect(getURL("signin"))
|
|
// }
|
|
// }
|
|
|
|
if (pathname.includes("/protected/") || pathname.includes("/private/")) {
|
|
const urlWithoutVisibility = pathname
|
|
.replace("/protected/", "/")
|
|
.replace("/private/", "/")
|
|
.substring(1)
|
|
return NextResponse.redirect(getURL(urlWithoutVisibility))
|
|
}
|
|
}
|
|
|
|
return NextResponse.next()
|
|
}
|
|
|
|
export const config = {
|
|
match: [
|
|
// "/signout",
|
|
// "/",
|
|
"/signin",
|
|
"/signup",
|
|
"/new",
|
|
"/protected/:path*",
|
|
"/private/:path*"
|
|
]
|
|
}
|
|
|
|
|