subman-nextjs/src/middleware.ts

"use server"
import { NextRequest, NextResponse } from "next/server";
import { verifyJwt } from "app/api/auth/actions";

const protectedRoutes = ['/story', '/submission', '/publication']

// Function to match the * wildcard character
function matchesWildcard(path: string, pattern: string): boolean {
	if (pattern.endsWith('/*')) {
		const basePattern = pattern.slice(0, -2);
		return path.startsWith(basePattern);
	}
	return path === pattern;
}

export default async function(request: NextRequest): Promise<NextResponse> | undefined {


	const url = request.nextUrl.clone()
	url.pathname = "/login"
	url.searchParams.set('from', request.nextUrl.pathname)
	if (protectedRoutes.some(pattern => matchesWildcard(request.nextUrl.pathname, pattern))) {
		const token = request.cookies.get('token')
		//NOTE - may need to add logic to return 401 for api routes

		if (!token) {
			console.log("there is no jwt")
			return NextResponse.redirect(url)
		}

		try {
			//decode and verify jwt cookie
			const jwtIsVerified = await verifyJwt(token.value)
			if (!jwtIsVerified) {
				//delete token
				console.log('could not verify jwt')
				request.cookies.delete('token')
				return NextResponse.redirect(url)
			}
		} catch (error) {
			//delete token (failsafe)
			console.error("failed to very jwt", error.message)
			request.cookies.delete('token')
			return NextResponse.redirect(url)
		}

		//TODO - TEST THIS BECAUSE IT PROBABLY DOESN'T WORK
		//redirect from login if already logged in
		let redirectToApp = false
		if (request.nextUrl.pathname === "/login") {
			const token = request.cookies.get("token")
			if (token) {
				try {
					const payload = await verifyJwt(token.value)
					if (payload) {
						redirectToApp = true
					} else {
						request.cookies.delete('token')
					}
				} catch (error) {
					request.cookies.delete('token')
				}
			}
		}

		if (redirectToApp) {
			return NextResponse.redirect(`${process.env.NEXT_PUBLIC_BASE_URL}/submission`)
		} else {
			return NextResponse.next()
		}


	}
}
fix urls 2024-09-13 19:51:03 +00:00			`"use server"`
bcrypt fix basically webpack tries to compile it which is not good so I edited to next.config 2024-09-13 17:24:39 +00:00			`import { NextRequest, NextResponse } from "next/server";`
			`import { verifyJwt } from "app/api/auth/actions";`

			`const protectedRoutes = ['/story', '/submission', '/publication']`

			`// Function to match the * wildcard character`
			`function matchesWildcard(path: string, pattern: string): boolean {`
			`if (pattern.endsWith('/*')) {`
			`const basePattern = pattern.slice(0, -2);`
			`return path.startsWith(basePattern);`
			`}`
			`return path === pattern;`
			`}`

redirect on login now works 2024-09-18 09:56:08 +00:00			`export default async function(request: NextRequest): Promise<NextResponse> \| undefined {`


fix urls 2024-09-13 19:51:03 +00:00			`const url = request.nextUrl.clone()`
			`url.pathname = "/login"`
redirect on login now works 2024-09-18 09:56:08 +00:00			`url.searchParams.set('from', request.nextUrl.pathname)`
bcrypt fix basically webpack tries to compile it which is not good so I edited to next.config 2024-09-13 17:24:39 +00:00			`if (protectedRoutes.some(pattern => matchesWildcard(request.nextUrl.pathname, pattern))) {`
			`const token = request.cookies.get('token')`
			`//NOTE - may need to add logic to return 401 for api routes`

			`if (!token) {`
redirect on login now works 2024-09-18 09:56:08 +00:00			`console.log("there is no jwt")`
fix urls 2024-09-13 19:51:03 +00:00			`return NextResponse.redirect(url)`
bcrypt fix basically webpack tries to compile it which is not good so I edited to next.config 2024-09-13 17:24:39 +00:00			`}`

			`try {`
			`//decode and verify jwt cookie`
			`const jwtIsVerified = await verifyJwt(token.value)`
			`if (!jwtIsVerified) {`
			`//delete token`
login endpoint authentication now working 2024-09-16 10:53:11 +00:00			`console.log('could not verify jwt')`
bcrypt fix basically webpack tries to compile it which is not good so I edited to next.config 2024-09-13 17:24:39 +00:00			`request.cookies.delete('token')`
fix urls 2024-09-13 19:51:03 +00:00			`return NextResponse.redirect(url)`
bcrypt fix basically webpack tries to compile it which is not good so I edited to next.config 2024-09-13 17:24:39 +00:00			`}`
redirect on login now works 2024-09-18 09:56:08 +00:00			`} catch (error) {`
bcrypt fix basically webpack tries to compile it which is not good so I edited to next.config 2024-09-13 17:24:39 +00:00			`//delete token (failsafe)`
redirect on login now works 2024-09-18 09:56:08 +00:00			`console.error("failed to very jwt", error.message)`
bcrypt fix basically webpack tries to compile it which is not good so I edited to next.config 2024-09-13 17:24:39 +00:00			`request.cookies.delete('token')`
fix urls 2024-09-13 19:51:03 +00:00			`return NextResponse.redirect(url)`
bcrypt fix basically webpack tries to compile it which is not good so I edited to next.config 2024-09-13 17:24:39 +00:00			`}`

redirect on login now works 2024-09-18 09:56:08 +00:00			`//TODO - TEST THIS BECAUSE IT PROBABLY DOESN'T WORK`
bcrypt fix basically webpack tries to compile it which is not good so I edited to next.config 2024-09-13 17:24:39 +00:00			`//redirect from login if already logged in`
			`let redirectToApp = false`
			`if (request.nextUrl.pathname === "/login") {`
			`const token = request.cookies.get("token")`
			`if (token) {`
			`try {`
			`const payload = await verifyJwt(token.value)`
			`if (payload) {`
			`redirectToApp = true`
			`} else {`
			`request.cookies.delete('token')`
			`}`
			`} catch (error) {`
			`request.cookies.delete('token')`
			`}`
			`}`
			`}`

			`if (redirectToApp) {`
			return NextResponse.redirect(`${process.env.NEXT_PUBLIC_BASE_URL}/submission`)
			`} else {`
			`return NextResponse.next()`
			`}`




			`}`
			`}`