-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathmiddleware.ts
61 lines (52 loc) · 1.58 KB
/
middleware.ts
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
import { createServerClient, type CookieOptions } from "@supabase/ssr";
import { NextResponse, type NextRequest } from "next/server";
export async function middleware(request: NextRequest) {
//console.log("Middleware triggered for:", request.url);
let response = NextResponse.next();
const supabase = createServerClient(
process.env.NEXT_PUBLIC_SUPABASE_URL!,
process.env.NEXT_PUBLIC_SUPABASE_ANON_KEY!,
{
cookies: {
get(name: string) {
return request.cookies.get(name)?.value;
},
set(name: string, value: string, options: CookieOptions) {
response.cookies.set({
name,
value,
...options,
});
},
remove(name: string, options: CookieOptions) {
response.cookies.set({
name,
value: "",
...options,
maxAge: 0, // Expire the cookie immediately
});
},
}
}
);
const { data, error } = await supabase.auth.getSession();
if (error) {
//console.error("Error fetching session:", error);
return NextResponse.redirect(new URL("/", request.url));
}
if (data?.session) {
//console.log("Session user metadata:", data.session.user.user_metadata);
if (data.session.user.user_metadata.role !== "admin") {
console.warn("Unauthorized access attempt:", data.session.user.id);
return NextResponse.redirect(new URL("/", request.url));
}
//console.log("Authorized admin access.");
} else {
//console.warn("No session found, redirecting.");
return NextResponse.redirect(new URL("/", request.url));
}
return response;
}
export const config = {
matcher: "/dashboard/:path*",
};