-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathproxy.ts
More file actions
39 lines (31 loc) · 1.08 KB
/
proxy.ts
File metadata and controls
39 lines (31 loc) · 1.08 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
import { NextRequest, NextResponse } from 'next/server'
import { verifySession } from '@/lib/auth'
const PUBLIC = ['/login', '/api/auth']
export default async function proxy(req: NextRequest) {
const { pathname } = req.nextUrl
// Allow static assets and public routes
if (PUBLIC.some((p) => pathname.startsWith(p))) {
return NextResponse.next()
}
const token = req.cookies.get('session')?.value
if (!token) {
// API routes → 401 JSON; pages → redirect to /login
if (pathname.startsWith('/api/')) {
return NextResponse.json({ error: 'Unauthorized' }, { status: 401 })
}
return NextResponse.redirect(new URL('/login', req.url))
}
const payload = await verifySession(token)
if (!payload) {
if (pathname.startsWith('/api/')) {
return NextResponse.json({ error: 'Unauthorized' }, { status: 401 })
}
const res = NextResponse.redirect(new URL('/login', req.url))
res.cookies.delete('session')
return res
}
return NextResponse.next()
}
export const config = {
matcher: ['/((?!_next/static|_next/image|favicon.ico).*)'],
}