Nils-Johan Gynther
722440b9b5
Ersätter getAuthHeaders() + auth() standalone med withAuth() wrapper i alla route handlers. Auth() standalone fungerar inte korrekt i Next.js 16 + NextAuth beta.28 pga async cookies() kompatibilitet. withAuth() använder auth() i wrapper-form sa att request.auth populeras direkt av NextAuth. Pavaerkade filer: 27 route handlers + ny lib/with-auth.ts
36 lines
1.2 KiB
TypeScript
36 lines
1.2 KiB
TypeScript
/**
|
|
* Hjälpfunktion för att wrappa Next.js Route Handlers med NextAuth auth().
|
|
* Löser problemet med att auth() standalone inte fungerar i route handlers
|
|
* med Next.js 15+/16 (async cookies-kompatibilitet i NextAuth beta).
|
|
*
|
|
* request.auth = session-objektet (inkl. accessToken)
|
|
*/
|
|
import { NextResponse } from 'next/server';
|
|
import { auth } from '../auth';
|
|
|
|
export type AuthedRequest = Request & { auth: { accessToken?: string; user?: any } | null };
|
|
|
|
/**
|
|
* Returnerar Authorization-headern från en autentiserad request.
|
|
* Kastar 401-svar om sessionen saknar accessToken.
|
|
*/
|
|
export function getBearer(session: AuthedRequest['auth']): string | null {
|
|
if (!session?.accessToken) return null;
|
|
return `Bearer ${session.accessToken}`;
|
|
}
|
|
|
|
/**
|
|
* Wrapper: export const GET = withAuth(async (req, session, context) => { ... })
|
|
*/
|
|
export function withAuth(
|
|
handler: (req: Request, session: NonNullable<AuthedRequest['auth']>, context: any) => Promise<Response>,
|
|
) {
|
|
return auth(async function (request: any, context: any) {
|
|
const session = request.auth;
|
|
if (!session?.accessToken) {
|
|
return NextResponse.json({ message: 'Unauthorized' }, { status: 401 });
|
|
}
|
|
return handler(request, session, context);
|
|
});
|
|
}
|