communities/red-right-hand/174bg.net/src/middleware.js


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31

import { NextResponse } from "next/server";

export async function middleware(request) {
  let session = null;

  try {
    const res = await fetch(
      new URL("/api/auth/get-session", request.nextUrl.origin),
      {
        headers: {
          cookie: request.headers.get("cookie") ?? "",
        },
      },
    );
    session = await res.json();
  } catch {
    // If session check fails, treat as unauthenticated
  }

  if (!session?.user) {
    const loginUrl = new URL("/login", request.url);
    loginUrl.searchParams.set("callbackUrl", request.nextUrl.pathname);
    return NextResponse.redirect(loginUrl);
  }

  return NextResponse.next();
}

export const config = {
  matcher: ["/secure/:path*"],
};