svrjs-nextjs-website/middleware.ts

import { NextResponse } from "next/server";
import type { NextRequest } from "next/server";
import { getToken } from "next-auth/jwt";

export async function middleware(req: NextRequest) {
	const token = await getToken({ req, secret: process.env.NEXTAUTH_SECRET });

	if (!token) {
		if (req.nextUrl.pathname.startsWith("/admin")) {
			const url = req.nextUrl.clone();
			url.pathname = "/login";
			return NextResponse.redirect(url);
		} else if (
			req.nextUrl.pathname.startsWith("/api/mdx/pages") &&
			req.method != "GET"
		) {
			return NextResponse.json({ error: "Login required" }, { status: 401 });
		} else if (req.nextUrl.pathname.startsWith("/api")) {
			return NextResponse.json({ error: "Login required" }, { status: 401 });
		}
	}

	return NextResponse.next();
}

export const config = {
	matcher: [
		"/admin/:path*",
		"/api/delete/downloads/[id]",
		"/api/delete/logs/[id]",
		"/api/delete/mods/[id]",
		"/api/delete/vulnerability/[id]",
		"/api/mdx/pages",
		"/api/mdx/pages/[slug]",
		"/api/newsletter/send",
		"/api/newsletter/subscriber",
		"/api/newsletter/test",
		"/api/upload",
		"/api/uploadlogs",
		"/api/uploadmods",
		"/api/uploadvulnerabilities",
		"/email-editor",
	],
};
login implemented 2024-06-20 15:38:05 +02:00			`import { NextResponse } from "next/server";`
			`import type { NextRequest } from "next/server";`
next-auth integrated 2024-06-26 21:47:18 +02:00			`import { getToken } from "next-auth/jwt";`
login implemented 2024-06-20 15:38:05 +02:00
next-auth integrated 2024-06-26 21:47:18 +02:00			`export async function middleware(req: NextRequest) {`
i choose to commit my life 2024-07-25 22:09:06 +02:00			`const token = await getToken({ req, secret: process.env.NEXTAUTH_SECRET });`
login implemented 2024-06-20 15:38:05 +02:00
api secured 2024-08-08 12:14:09 +02:00			`if (!token) {`
			`if (req.nextUrl.pathname.startsWith("/admin")) {`
			`const url = req.nextUrl.clone();`
			`url.pathname = "/login";`
			`return NextResponse.redirect(url);`
			`} else if (`
			`req.nextUrl.pathname.startsWith("/api/mdx/pages") &&`
			`req.method != "GET"`
			`) {`
			`return NextResponse.json({ error: "Login required" }, { status: 401 });`
			`} else if (req.nextUrl.pathname.startsWith("/api")) {`
			`return NextResponse.json({ error: "Login required" }, { status: 401 });`
			`}`
i choose to commit my life 2024-07-25 22:09:06 +02:00			`}`
login implemented 2024-06-20 15:38:05 +02:00
i choose to commit my life 2024-07-25 22:09:06 +02:00			`return NextResponse.next();`
login implemented 2024-06-20 15:38:05 +02:00			`}`

			`export const config = {`
i choose to commit my life 2024-07-25 22:09:06 +02:00			`matcher: [`
			`"/admin/:path*",`
			`"/api/delete/downloads/[id]",`
			`"/api/delete/logs/[id]",`
			`"/api/delete/mods/[id]",`
api secured 2024-08-08 12:14:09 +02:00			`"/api/delete/vulnerability/[id]",`
			`"/api/mdx/pages",`
			`"/api/mdx/pages/[slug]",`
Secure newsletter-related API endpoints 2024-08-27 13:37:03 +02:00			`"/api/newsletter/send",`
			`"/api/newsletter/subscriber",`
			`"/api/newsletter/test",`
i choose to commit my life 2024-07-25 22:09:06 +02:00			`"/api/upload",`
			`"/api/uploadlogs",`
			`"/api/uploadmods",`
api secured 2024-08-08 12:14:09 +02:00			`"/api/uploadvulnerabilities",`
newsletter done 2024-08-26 13:11:47 +02:00			`"/email-editor",`
i choose to commit my life 2024-07-25 22:09:06 +02:00			`],`
login implemented 2024-06-20 15:38:05 +02:00			`};`