fix: konvertera alla API route handlers till withAuth wrapper
Ersätter getAuthHeaders() + auth() standalone med withAuth() wrapper i alla route handlers. Auth() standalone fungerar inte korrekt i Next.js 16 + NextAuth beta.28 pga async cookies() kompatibilitet. withAuth() använder auth() i wrapper-form sa att request.auth populeras direkt av NextAuth. Pavaerkade filer: 27 route handlers + ny lib/with-auth.ts
This commit is contained in:
Nils-Johan Gynther
@@ -0,0 +1,35 @@
|
||||
/**
|
||||
* Hjälpfunktion för att wrappa Next.js Route Handlers med NextAuth auth().
|
||||
* Löser problemet med att auth() standalone inte fungerar i route handlers
|
||||
* med Next.js 15+/16 (async cookies-kompatibilitet i NextAuth beta).
|
||||
*
|
||||
* request.auth = session-objektet (inkl. accessToken)
|
||||
*/
|
||||
import { NextResponse } from 'next/server';
|
||||
import { auth } from '../auth';
|
||||
|
||||
export type AuthedRequest = Request & { auth: { accessToken?: string; user?: any } | null };
|
||||
|
||||
/**
|
||||
* Returnerar Authorization-headern från en autentiserad request.
|
||||
* Kastar 401-svar om sessionen saknar accessToken.
|
||||
*/
|
||||
export function getBearer(session: AuthedRequest['auth']): string | null {
|
||||
if (!session?.accessToken) return null;
|
||||
return `Bearer ${session.accessToken}`;
|
||||
}
|
||||
|
||||
/**
|
||||
* Wrapper: export const GET = withAuth(async (req, session, context) => { ... })
|
||||
*/
|
||||
export function withAuth(
|
||||
handler: (req: Request, session: NonNullable<AuthedRequest['auth']>, context: any) => Promise<Response>,
|
||||
) {
|
||||
return auth(async function (request: any, context: any) {
|
||||
const session = request.auth;
|
||||
if (!session?.accessToken) {
|
||||
return NextResponse.json({ message: 'Unauthorized' }, { status: 401 });
|
||||
}
|
||||
return handler(request, session, context);
|
||||
});
|
||||
}
|
||||
Reference in New Issue
Block a user