Merge pull request #41 from atridadl/clerk-support

Thanks Clerk!
2023-08-17 21:04:31 -06:00 · 2023-08-17 21:04:31 -06:00 · ca4ab2ad9b
commit ca4ab2ad9b
parent 2d83071f6f 310f67e0e9
6 changed files with 56 additions and 33 deletions
--- a/src/middleware.ts
+++ b/src/middleware.ts
@ -1,7 +1,29 @@
-import { authMiddleware } from "@clerk/nextjs";
+import { authMiddleware, redirectToSignIn } from "@clerk/nextjs";
 import { validateRequest } from "./server/unkey";
 import { NextResponse } from "next/server";
 export default authMiddleware({
-  publicRoutes: ["/", "/api/(.*)"],
+  publicRoutes: ["/", "/api/public/(.*)"],
  afterAuth: async (auth, req) => {
    if (!auth.userId && auth.isPublicRoute) {
      return NextResponse.next();
    }
    if (
      req.nextUrl.pathname.includes("/api/webhooks") ||
      req.nextUrl.pathname.includes("/api/private")
    ) {
      const isValid = await validateRequest(req);
      if (isValid) {
        return NextResponse.next();
      } else {
        return new NextResponse("UNAUTHORIZED", { status: 403 });
      }
    }
    if (!auth.userId && !auth.isPublicRoute) {
      redirectToSignIn({ returnBackUrl: req.url });
    }
  },
 });
 export const config = {
--- a/src/pages/api/external/ping.ts
+++ b/src/pages/api/external/ping.ts
@ -1,13 +0,0 @@
 import type { NextApiRequest, NextApiResponse } from "next";
 import { validateRequest } from "~/server/unkey";
 export default async function handler(
  req: NextApiRequest,
  res: NextApiResponse
 ) {
  const isValid = await validateRequest(req, res);
  if (isValid) {
    res.status(200).json({ result: "Pong!" });
  }
 }
--- a/src/pages/api/private/ping.ts
+++ b/src/pages/api/private/ping.ts
@ -0,0 +1,13 @@
 import { NextResponse } from "next/server";
 export const config = {
  runtime: "edge",
  regions: ["pdx1"],
 };
 export default function handler() {
  return NextResponse.json(
    { message: "Private Pong!" },
    { status: 200, statusText: "SUCCESS" }
  );
 }
--- a/src/pages/api/public/ping.ts
+++ b/src/pages/api/public/ping.ts
@ -0,0 +1,13 @@
 import { NextResponse } from "next/server";
 export const config = {
  runtime: "edge",
  regions: ["pdx1"],
 };
 export default function handler() {
  return NextResponse.json(
    { message: "Public Pong!" },
    { status: 200, statusText: "SUCCESS" }
  );
 }
--- a/src/pages/api/webhooks/index.ts
+++ b/src/pages/api/webhooks/index.ts
@ -1,5 +1,4 @@
 import type { NextApiRequest, NextApiResponse } from "next";
 import { validateRequest } from "~/server/unkey";
 import {
  onUserCreatedHandler,
  onUserDeletedHandler,
@ -10,12 +9,6 @@ export default async function handler(
  req: NextApiRequest,
  res: NextApiResponse
 ) {
  const isValid = await validateRequest(req, res);
  if (!isValid) {
    return;
  }
  try {
    const requestBody = WebhookEventBodySchema.parse(req.body);
--- a/src/server/unkey.ts
+++ b/src/server/unkey.ts
@ -1,5 +1,5 @@
 import { Unkey } from "@unkey/api";
-import type { NextApiRequest, NextApiResponse } from "next";
+import { NextRequest } from "next/server";
 import { env } from "~/env.mjs";
 export const unkey = new Unkey({ token: env.UNKEY_ROOT_KEY });
@ -15,22 +15,17 @@ export const validateApiKey = async (key: string) => {
  }
 };
-export const validateRequest = async (
+export const validateRequest = async (req: NextRequest) => {
  req: NextApiRequest,
  res: NextApiResponse
 ) => {
  let isValidKey: boolean = false;
  const authorization = req.headers.get("authorization");
  // Get the auth bearer token if it exists
-  if (req.headers.authorization) {
+  if (authorization) {
-    const key = req.headers.authorization.split("Bearer ").at(1);
+    const key = authorization.split("Bearer ").at(1);
    if (key) {
      isValidKey = await validateApiKey(key);
    }
  }
  if (!isValidKey) {
    res.status(403).json({ error: "UNAUTHORIZED" });
  }
  return isValidKey;
 };