Add middleware to handle navigation depending on authentication

2025-04-09 14:00:15 -04:00 · 2024-12-16 00:14:28 -05:00 · 2024-12-16 00:14:28 -05:00 · 3667ed5f3d
commit 3667ed5f3d
parent 63fa7db352
3 changed files with 79 additions and 34 deletions
--- a/compass/components/resource/SearchResult.tsx
+++ b/compass/components/resource/SearchResult.tsx
@ -23,8 +23,8 @@ export const SearchResult: React.FC<SearchResultProps> = ({
        type === "resource"
            ? BookmarkIcon
            : type === "service"
-            ? ClipboardIcon
-            : QuestionMarkCircleIcon; // Unknown type
+              ? ClipboardIcon
+              : QuestionMarkCircleIcon; // Unknown type

    return (
        <div className="flex justify-between items-center w-full p-2 rounded-md hover:bg-purple-100 cursor-pointer group">
--- a/compass/components/resource/sample_results.json
+++ b/compass/components/resource/sample_results.json
@ -1,32 +1,32 @@
 [
-	{
-		"type": "resource",
-		"name": "example name",
-		"description": "example description"
-	},
-	{
-		"type": "service",
-		"name": "example name",
-		"description": "example description"
-	},
-	{
-		"type": "resource",
-		"name": "National Domestic Violence Hotline",
-		"description": "24/7 confidential support for victims of domestic violence"
-	},
-	{
-		"type": "resource",
-		"name": "Legal Aid Society",
-		"description": "Free legal assistance for low-income individuals"
-	},
-	{
-		"type": "service",
-		"name": "Crisis Hotline",
-		"description": "24/7 support for individuals in crisis"
-	},
-	{
-		"type": "unknown",
-		"name": "unknown thing with a really long name",
-		"description": "and let's also type out a really long description to see how it handles overflow and all that anyways"
-	}
+    {
+        "type": "resource",
+        "name": "example name",
+        "description": "example description"
+    },
+    {
+        "type": "service",
+        "name": "example name",
+        "description": "example description"
+    },
+    {
+        "type": "resource",
+        "name": "National Domestic Violence Hotline",
+        "description": "24/7 confidential support for victims of domestic violence"
+    },
+    {
+        "type": "resource",
+        "name": "Legal Aid Society",
+        "description": "Free legal assistance for low-income individuals"
+    },
+    {
+        "type": "service",
+        "name": "Crisis Hotline",
+        "description": "24/7 support for individuals in crisis"
+    },
+    {
+        "type": "unknown",
+        "name": "unknown thing with a really long name",
+        "description": "and let's also type out a really long description to see how it handles overflow and all that anyways"
+    }
 ]
--- a/compass/utils/supabase/middleware.ts
+++ b/compass/utils/supabase/middleware.ts
@ -1,5 +1,7 @@
 import { createServerClient, type CookieOptions } from "@supabase/ssr";
-import { NextResponse, type NextRequest } from "next/server";
+import { User } from "@supabase/supabase-js";
+import { NextRequest, NextResponse } from "next/server";
+import { Role } from "../models/User";

 export async function updateSession(request: NextRequest) {
    let response = NextResponse.next({
@ -54,7 +56,50 @@ export async function updateSession(request: NextRequest) {
        }
    );

-    await supabase.auth.getUser();
+    const { data, error } = await supabase.auth.getUser();
+
+    const authenticatedRoutes = ["/admin", "/resource", "/home", "/service"];
+    const pathname = request.nextUrl.pathname;
+
+    for (const route of authenticatedRoutes) {
+        if (error && pathname.startsWith(route)) {
+            console.log("redirected");
+            return NextResponse.redirect(
+                new URL(
+                    "/auth/login",
+                    request.nextUrl.protocol + "//" + request.nextUrl.host
+                )
+            );
+        }
+    }
+
+    if (pathname.startsWith("/admin") && data.user) {
+        // After the previous checks we can assume the user is not empty
+        const userData = await fetch(
+            `${process.env.NEXT_PUBLIC_HOST}/api/user?uuid=${data.user.id}`
+        );
+
+        const user: User = await userData.json();
+
+        if (user.role !== Role.ADMIN) {
+            console.log("redirected as not admin");
+            return NextResponse.redirect(
+                new URL(
+                    "/home",
+                    request.nextUrl.protocol + "//" + request.nextUrl.host
+                )
+            );
+        }
+    }
+
+    if (data.user && pathname.startsWith("/auth/login")) {
+        return NextResponse.redirect(
+            new URL(
+                "/home",
+                request.nextUrl.protocol + "//" + request.nextUrl.host
+            )
+        );
+    }

    return response;
 }