56 lines
1.7 KiB
TypeScript
Executable File
56 lines
1.7 KiB
TypeScript
Executable File
import { createServerClient } from "@supabase/ssr";
|
|
import { NextResponse, type NextRequest } from "next/server";
|
|
|
|
export async function middleware(request: NextRequest) {
|
|
let supabaseResponse = NextResponse.next({
|
|
request,
|
|
});
|
|
|
|
const supabase = createServerClient(
|
|
process.env.NEXT_PUBLIC_SUPABASE_URL!,
|
|
process.env.NEXT_PUBLIC_SUPABASE_ANON_KEY!,
|
|
{
|
|
cookies: {
|
|
getAll() {
|
|
return request.cookies.getAll();
|
|
},
|
|
setAll(cookiesToSet: any[]) {
|
|
cookiesToSet.forEach(({ name, value, options }) =>
|
|
request.cookies.set(name, value)
|
|
);
|
|
supabaseResponse = NextResponse.next({
|
|
request,
|
|
});
|
|
cookiesToSet.forEach(({ name, value, options }) =>
|
|
supabaseResponse.cookies.set(name, value, options)
|
|
);
|
|
},
|
|
},
|
|
}
|
|
);
|
|
|
|
// IMPORTANT: This refreshes the session.
|
|
// If the user is not logged in, 'user' will be null.
|
|
const { data: { user } } = await supabase.auth.getUser();
|
|
|
|
const isTeacherRoute = request.nextUrl.pathname.startsWith("/teacher");
|
|
// Practice mini-games are public; auth is handled in server actions for persistence only.
|
|
const isProtectedRoute = isTeacherRoute;
|
|
|
|
// If they are trying to access a protected route and aren't logged in, redirect to login
|
|
if (isProtectedRoute && !user) {
|
|
const url = request.nextUrl.clone();
|
|
url.pathname = "/auth/login";
|
|
url.searchParams.set("redirectTo", request.nextUrl.pathname);
|
|
return NextResponse.redirect(url);
|
|
}
|
|
|
|
return supabaseResponse;
|
|
}
|
|
|
|
export const config = {
|
|
matcher: [
|
|
"/((?!_next/static|_next/image|favicon.ico|.*\\.(?:svg|png|jpg|jpeg|gif|webp)$).*)",
|
|
],
|
|
};
|