jeffemmett
/
postiz
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
postiz/apps/frontend/src/middleware.ts

156 lines
4.5 KiB
TypeScript
Raw Blame History

import { NextResponse } from 'next/server';
import type { NextRequest } from 'next/server';
import { getCookieUrlFromDomain } from '@gitroom/helpers/subdomain/subdomain.management';
import { internalFetch } from '@gitroom/helpers/utils/internal.fetch';
import acceptLanguage from 'accept-language';
import {
cookieName,
fallbackLng,
headerName,
languages,
} from '@gitroom/react/translation/i18n.config';
acceptLanguage.languages(languages);
// This function can be marked `async` if using `await` inside
export async function middleware(request: NextRequest) {
const nextUrl = request.nextUrl;
const authCookie =
request.cookies.get('auth') ||
request.headers.get('auth') ||
nextUrl.searchParams.get('loggedAuth');
const lng = request.cookies.has(cookieName)
? acceptLanguage.get(request.cookies.get(cookieName).value)
: acceptLanguage.get(
request.headers.get('Accept-Language') ||
request.headers.get('accept-language')
);
const topResponse = NextResponse.next();
if (lng) {
topResponse.headers.set(cookieName, lng);
}
if (nextUrl.pathname.startsWith('/modal/') && !authCookie) {
return NextResponse.redirect(new URL(`/auth/login-required`, nextUrl.href));
}
if (
nextUrl.pathname.startsWith('/uploads/') ||
nextUrl.pathname.startsWith('/p/') ||
nextUrl.pathname.startsWith('/icons/')
) {
return topResponse;
}
// If the URL is logout, delete the cookie and redirect to login
if (nextUrl.href.indexOf('/auth/logout') > -1) {
const response = NextResponse.redirect(
new URL('/auth/login', nextUrl.href)
);
response.cookies.set('auth', '', {
path: '/',
...(!process.env.NOT_SECURED
? {
secure: true,
httpOnly: true,
sameSite: false,
}
: {}),
maxAge: -1,
domain: getCookieUrlFromDomain(process.env.FRONTEND_URL!),
});
return response;
}
const org = nextUrl.searchParams.get('org');
const url = new URL(nextUrl).search;
if (nextUrl.href.indexOf('/auth') === -1 && !authCookie) {
const providers = ['google', 'settings'];
const findIndex = providers.find((p) => nextUrl.href.indexOf(p) > -1);
const additional = !findIndex
? ''
: (url.indexOf('?') > -1 ? '&' : '?') +
`provider=${(findIndex === 'settings'
? process.env.POSTIZ_GENERIC_OAUTH
? 'generic'
: 'github'
: findIndex
).toUpperCase()}`;
return NextResponse.redirect(
new URL(`/auth${url}${additional}`, nextUrl.href)
);
}
// If the url is /auth and the cookie exists, redirect to /
if (nextUrl.href.indexOf('/auth') > -1 && authCookie) {
return NextResponse.redirect(new URL(`/${url}`, nextUrl.href));
}
if (nextUrl.href.indexOf('/auth') > -1 && !authCookie) {
if (org) {
const redirect = NextResponse.redirect(new URL(`/`, nextUrl.href));
redirect.cookies.set('org', org, {
...(!process.env.NOT_SECURED
? {
path: '/',
secure: true,
httpOnly: true,
sameSite: false,
domain: getCookieUrlFromDomain(process.env.FRONTEND_URL!),
}
: {}),
expires: new Date(Date.now() + 15 * 60 * 1000),
});
return redirect;
}
return topResponse;
}
try {
if (org) {
const { id } = await (
await internalFetch('/user/join-org', {
body: JSON.stringify({
org,
}),
method: 'POST',
})
).json();
const redirect = NextResponse.redirect(
new URL(`/?added=true`, nextUrl.href)
);
if (id) {
redirect.cookies.set('showorg', id, {
...(!process.env.NOT_SECURED
? {
path: '/',
secure: true,
httpOnly: true,
sameSite: false,
domain: getCookieUrlFromDomain(process.env.FRONTEND_URL!),
}
: {}),
expires: new Date(Date.now() + 15 * 60 * 1000),
});
}
return redirect;
}
if (nextUrl.pathname === '/') {
return NextResponse.redirect(
new URL(
!!process.env.IS_GENERAL ? '/launches' : `/analytics`,
nextUrl.href
)
);
}
return topResponse;
} catch (err) {
console.log('err', err);
return NextResponse.redirect(new URL('/auth/logout', nextUrl.href));
}
}
// See "Matching Paths" below to learn more
export const config = {
matcher: '/((?!api/|_next/|_static/|_vercel|[\\w-]+\\.\\w+).*)',
};
Reference in New Issue View Git Blame Copy Permalink