mirror of
https://github.com/lukevella/rallly.git
synced 2025-06-06 20:51:48 +02:00
♻️ Use middleware for protecting routes (#1010)
This commit is contained in:
Luke Vella
GitHub
parent
9d75e5112a
commit
47dd3a0ff2
2 changed files with 21 additions and 27 deletions
|
|
@ -2,30 +2,11 @@ import { cn } from "@rallly/ui";
|
||||||
import { Button } from "@rallly/ui/button";
|
import { Button } from "@rallly/ui/button";
|
||||||
import { MenuIcon } from "lucide-react";
|
import { MenuIcon } from "lucide-react";
|
||||||
import Link from "next/link";
|
import Link from "next/link";
|
||||||
import { signIn, useSession } from "next-auth/react";
|
|
||||||
import React from "react";
|
import React from "react";
|
||||||
|
|
||||||
import { Sidebar } from "@/app/[locale]/(admin)/sidebar";
|
import { Sidebar } from "@/app/[locale]/(admin)/sidebar";
|
||||||
import { LogoLink } from "@/app/components/logo-link";
|
import { LogoLink } from "@/app/components/logo-link";
|
||||||
import { CurrentUserAvatar } from "@/components/user";
|
import { CurrentUserAvatar } from "@/components/user";
|
||||||
import { isSelfHosted } from "@/utils/constants";
|
|
||||||
|
|
||||||
const Auth = ({ children }: { children: React.ReactNode }) => {
|
|
||||||
const session = useSession();
|
|
||||||
const isAuthenticated = !!session.data?.user.email;
|
|
||||||
|
|
||||||
React.useEffect(() => {
|
|
||||||
if (!isAuthenticated) {
|
|
||||||
signIn();
|
|
||||||
}
|
|
||||||
}, [isAuthenticated]);
|
|
||||||
|
|
||||||
if (isAuthenticated) {
|
|
||||||
return <>{children}</>;
|
|
||||||
}
|
|
||||||
|
|
||||||
return null;
|
|
||||||
};
|
|
||||||
|
|
||||||
function MobileNavigation() {
|
function MobileNavigation() {
|
||||||
return (
|
return (
|
||||||
|
|
@ -74,12 +55,5 @@ export default async function Layout({
|
||||||
);
|
);
|
||||||
}
|
}
|
||||||
|
|
||||||
if (isSelfHosted) {
|
|
||||||
return (
|
|
||||||
<Auth>
|
|
||||||
<SidebarLayout />
|
|
||||||
</Auth>
|
|
||||||
);
|
|
||||||
}
|
|
||||||
return <SidebarLayout />;
|
return <SidebarLayout />;
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -4,6 +4,7 @@ import { NextResponse } from "next/server";
|
||||||
import withAuth from "next-auth/middleware";
|
import withAuth from "next-auth/middleware";
|
||||||
|
|
||||||
import { initGuest } from "@/app/guest";
|
import { initGuest } from "@/app/guest";
|
||||||
|
import { isSelfHosted } from "@/utils/constants";
|
||||||
|
|
||||||
const supportedLocales = Object.keys(languages);
|
const supportedLocales = Object.keys(languages);
|
||||||
|
|
||||||
|
|
@ -45,7 +46,26 @@ export const middleware = withAuth(
|
||||||
{
|
{
|
||||||
secret: process.env.SECRET_PASSWORD,
|
secret: process.env.SECRET_PASSWORD,
|
||||||
callbacks: {
|
callbacks: {
|
||||||
authorized: () => true, // needs to be true to allow access to all pages
|
authorized: ({ token, req }) => {
|
||||||
|
const nextUrl = req.nextUrl;
|
||||||
|
|
||||||
|
if (
|
||||||
|
isSelfHosted &&
|
||||||
|
token?.email === null &&
|
||||||
|
!(
|
||||||
|
nextUrl.pathname.startsWith("/invite") ||
|
||||||
|
nextUrl.pathname.startsWith("/login") ||
|
||||||
|
nextUrl.pathname.startsWith("/register") ||
|
||||||
|
nextUrl.pathname.startsWith("/auth") ||
|
||||||
|
nextUrl.pathname.startsWith("/p")
|
||||||
|
)
|
||||||
|
) {
|
||||||
|
// limit which pages guests can access for self-hosted instances
|
||||||
|
return false;
|
||||||
|
}
|
||||||
|
|
||||||
|
return true;
|
||||||
|
},
|
||||||
},
|
},
|
||||||
},
|
},
|
||||||
);
|
);
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue