Add middleware to handle navigation depending on authentication

2025-04-17 17:30:17 -04:00 · 2024-12-16 00:14:28 -05:00 · 2024-12-16 00:14:28 -05:00 · 3667ed5f3d
commit 3667ed5f3d
parent 63fa7db352
3 changed files with 79 additions and 34 deletions
--- a/compass/components/resource/SearchResult.tsx
+++ b/compass/components/resource/SearchResult.tsx
@ -23,8 +23,8 @@ export const SearchResult: React.FC<SearchResultProps> = ({
        type === "resource"
            ? BookmarkIcon
            : type === "service"
-            ? ClipboardIcon
+              ? ClipboardIcon
-            : QuestionMarkCircleIcon; // Unknown type
+              : QuestionMarkCircleIcon; // Unknown type
    return (
        <div className="flex justify-between items-center w-full p-2 rounded-md hover:bg-purple-100 cursor-pointer group">
--- a/compass/components/resource/sample_results.json
+++ b/compass/components/resource/sample_results.json
@ -1,32 +1,32 @@
 [
-	{
+    {
-		"type": "resource",
+        "type": "resource",
-		"name": "example name",
+        "name": "example name",
-		"description": "example description"
+        "description": "example description"
-	},
+    },
-	{
+    {
-		"type": "service",
+        "type": "service",
-		"name": "example name",
+        "name": "example name",
-		"description": "example description"
+        "description": "example description"
-	},
+    },
-	{
+    {
-		"type": "resource",
+        "type": "resource",
-		"name": "National Domestic Violence Hotline",
+        "name": "National Domestic Violence Hotline",
-		"description": "24/7 confidential support for victims of domestic violence"
+        "description": "24/7 confidential support for victims of domestic violence"
-	},
+    },
-	{
+    {
-		"type": "resource",
+        "type": "resource",
-		"name": "Legal Aid Society",
+        "name": "Legal Aid Society",
-		"description": "Free legal assistance for low-income individuals"
+        "description": "Free legal assistance for low-income individuals"
-	},
+    },
-	{
+    {
-		"type": "service",
+        "type": "service",
-		"name": "Crisis Hotline",
+        "name": "Crisis Hotline",
-		"description": "24/7 support for individuals in crisis"
+        "description": "24/7 support for individuals in crisis"
-	},
+    },
-	{
+    {
-		"type": "unknown",
+        "type": "unknown",
-		"name": "unknown thing with a really long name",
+        "name": "unknown thing with a really long name",
-		"description": "and let's also type out a really long description to see how it handles overflow and all that anyways"
+        "description": "and let's also type out a really long description to see how it handles overflow and all that anyways"
-	}
+    }
 ]
--- a/compass/utils/supabase/middleware.ts
+++ b/compass/utils/supabase/middleware.ts
@ -1,5 +1,7 @@
 import { createServerClient, type CookieOptions } from "@supabase/ssr";
-import { NextResponse, type NextRequest } from "next/server";
+import { User } from "@supabase/supabase-js";
 import { NextRequest, NextResponse } from "next/server";
 import { Role } from "../models/User";
 export async function updateSession(request: NextRequest) {
    let response = NextResponse.next({
@ -54,7 +56,50 @@ export async function updateSession(request: NextRequest) {
        }
    );
-    await supabase.auth.getUser();
+    const { data, error } = await supabase.auth.getUser();
    const authenticatedRoutes = ["/admin", "/resource", "/home", "/service"];
    const pathname = request.nextUrl.pathname;
    for (const route of authenticatedRoutes) {
        if (error && pathname.startsWith(route)) {
            console.log("redirected");
            return NextResponse.redirect(
                new URL(
                    "/auth/login",
                    request.nextUrl.protocol + "//" + request.nextUrl.host
                )
            );
        }
    }
    if (pathname.startsWith("/admin") && data.user) {
        // After the previous checks we can assume the user is not empty
        const userData = await fetch(
            `${process.env.NEXT_PUBLIC_HOST}/api/user?uuid=${data.user.id}`
        );
        const user: User = await userData.json();
        if (user.role !== Role.ADMIN) {
            console.log("redirected as not admin");
            return NextResponse.redirect(
                new URL(
                    "/home",
                    request.nextUrl.protocol + "//" + request.nextUrl.host
                )
            );
        }
    }
    if (data.user && pathname.startsWith("/auth/login")) {
        return NextResponse.redirect(
            new URL(
                "/home",
                request.nextUrl.protocol + "//" + request.nextUrl.host
            )
        );
    }
    return response;
 }