atridad/pollo
1
0
Fork 0
Code Activity Actions
pollo/middleware.ts
atridadl 5e57e2b416
Lets try ioredis
2023-11-21 09:05:09 -07:00

74 lines
1.9 KiB
TypeScript
Raw Blame History

import { authMiddleware, redirectToSignIn } from "@clerk/nextjs";
import { validateRequest } from "./app/_lib/unkey";
import { NextResponse } from "next/server";
const shitList = ["ama.ab.ca"];
export default authMiddleware({
ignoredRoutes: ["/"],
publicRoutes: [
"/api/external/public/(.*)",
"/api/webhooks",
"/api/webhooks/(.*)",
],
afterAuth: async (auth, req) => {
if (!auth.userId && auth.isPublicRoute) {
return NextResponse.next();
}
if (auth.userId) {
const email = auth.sessionClaims.email as string;
let isShit = false;
shitList.forEach((shitItem) => {
if (email.includes(shitItem)) {
isShit = true;
}
});
if (isShit) {
return new NextResponse("INTERNAL_ERROR", {
status: 500,
statusText: "INTERNAL_ERROR",
});
}
}
if (req.nextUrl.pathname.includes("/api/internal")) {
if (auth.userId) {
return NextResponse.next();
} else {
return new NextResponse("UNAUTHORIZED", {
status: 403,
statusText: "Unauthorized!",
});
}
}
if (req.nextUrl.pathname.includes("/api/external/private")) {
const isValid = await validateRequest(req);
if (isValid) {
return NextResponse.next();
} else {
return new NextResponse("UNAUTHORIZED", {
status: 403,
statusText: "Unauthorized!",
});
}
}
if (!auth.userId && !auth.isPublicRoute) {
if (req.nextUrl.pathname.includes("/api")) {
return NextResponse.next();
}
// This is annoying...
// eslint-disable-next-line @typescript-eslint/no-unsafe-return, @typescript-eslint/no-explicit-any
return redirectToSignIn({ returnBackUrl: req.url });
}
},
});
export const config = {
matcher: ["/((?!.*\\..*|_next).*)", "/", "/(api)(.*)"],
};
View git blame Copy permalink