pollo/middleware.ts

import { authMiddleware, redirectToSignIn } from "@clerk/nextjs";
import { validateRequest } from "./app/_lib/unkey";
import { NextResponse } from "next/server";
import { Ratelimit } from "@upstash/ratelimit";
import { Redis } from "@upstash/redis";
import { env } from "./env.mjs";

const rateLimit = new Ratelimit({
  redis: Redis.fromEnv(),
  limiter: Ratelimit.slidingWindow(
    Number(env.UPSTASH_RATELIMIT_REQUESTS),
    `${Number(env.UPSTASH_RATELIMIT_SECONDS)}s`
  ),
  analytics: true,
});

export default authMiddleware({
  ignoredRoutes: ["/"],
  publicRoutes: [
    "/api/external/public/(.*)",
    "/api/webhooks",
    "/api/webhooks/(.*)",
  ],
  apiRoutes: ["/api/external/private/(.*)", "/api/internal/(.*)"],
  beforeAuth: async (req) => {
    const { success } = await rateLimit.limit(req.ip || "");
    if (success) {
      if (req.nextUrl.pathname.includes("/api/external/private")) {
        const isValid = await validateRequest(req);

        if (!isValid) {
          return new NextResponse("UNAUTHORIZED", {
            status: 403,
            statusText: "Unauthorized!",
          });
        }
      }
      return NextResponse.next();
    }

    return new NextResponse("TOO MANY REQUESTS", {
      status: 429,
      statusText: "Too many requests!",
    });
  },
});

export const config = {
  matcher: ["/((?!.*\\..*|_next).*)", "/", "/(api)(.*)"],
};
:\| finally 2023-08-17 20:55:56 -06:00			`import { authMiddleware, redirectToSignIn } from "@clerk/nextjs";`
3.0.0 2023-09-24 23:49:24 -06:00			`import { validateRequest } from "./app/_lib/unkey";`
Weird middleware issues 2023-08-17 16:40:09 -06:00			`import { NextResponse } from "next/server";`
Rate Limiting in Middleware 2023-08-20 01:15:52 -06:00			`import { Ratelimit } from "@upstash/ratelimit";`
			`import { Redis } from "@upstash/redis";`
			`import { env } from "./env.mjs";`

			`const rateLimit = new Ratelimit({`
			`redis: Redis.fromEnv(),`
			`limiter: Ratelimit.slidingWindow(`
			`Number(env.UPSTASH_RATELIMIT_REQUESTS),`
			`${Number(env.UPSTASH_RATELIMIT_SECONDS)}s`
			`),`
			`analytics: true,`
			`});`
Overhaul! 2023-08-12 17:12:42 -06:00
			`export default authMiddleware({`
Changed middleware 2023-10-05 00:58:00 -06:00			`ignoredRoutes: ["/"],`
3.0.0 2023-09-24 23:49:24 -06:00			`publicRoutes: [`
			`"/api/external/public/(.*)",`
			`"/api/webhooks",`
			`"/api/webhooks/(.*)",`
			`],`
Changed middleware 2023-10-05 00:58:00 -06:00			`apiRoutes: ["/api/external/private/(.)", "/api/internal/(.)"],`
			`beforeAuth: async (req) => {`
			`const { success } = await rateLimit.limit(req.ip \|\| "");`
			`if (success) {`
			`if (req.nextUrl.pathname.includes("/api/external/private")) {`
			`const isValid = await validateRequest(req);`

			`if (!isValid) {`
			`return new NextResponse("UNAUTHORIZED", {`
			`status: 403,`
			`statusText: "Unauthorized!",`
			`});`
			`}`
Rate Limiting in Middleware 2023-08-20 01:15:52 -06:00			`}`
Changed middleware 2023-10-05 00:58:00 -06:00			`return NextResponse.next();`
:\| finally 2023-08-17 20:55:56 -06:00			`}`

Changed middleware 2023-10-05 00:58:00 -06:00			`return new NextResponse("TOO MANY REQUESTS", {`
			`status: 429,`
			`statusText: "Too many requests!",`
			`});`
Weird middleware issues 2023-08-17 16:40:09 -06:00			`},`
Overhaul! 2023-08-12 17:12:42 -06:00			`});`

			`export const config = {`
2.3.0 2023-09-09 19:25:23 -06:00			`matcher: ["/((?!.\\..\|_next).)", "/", "/(api)(.)"],`
Overhaul! 2023-08-12 17:12:42 -06:00			`};`