multipleof4/KalBot
1
0
Fork 0
mirror of https://github.com/multipleof4/KalBot.git synced 2026-03-17 05:51:02 +00:00
Code Issues Packages Projects Releases Wiki Activity

Feat: Protect /paper and /dash routes

Browse Source
This commit is contained in:
multipleof4
2026-03-15 16:51:03 -07:00
parent c16ef77beb
commit 8d90c92d3f
1 changed files with 4 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
middleware.js
View File

@@ -1,10 +1,11 @@
import { NextResponse } from 'next/server'; import { NextResponse } from 'next/server';
import { verifySession } from './lib/auth'; import { verifySession } from './lib/auth';
// Define which paths should trigger this middleware
export const config = { export const config = {
matcher: [ matcher: [
'/dashboard/:path*', '/dashboard/:path*',
'/paper/:path*',
'/dash/:path*',
'/api/state', '/api/state',
'/api/trades' '/api/trades'
], ],
@@ -15,15 +16,11 @@ export async function middleware(req) {
const isValid = await verifySession(token); const isValid = await verifySession(token);
if (!isValid) { if (!isValid) {
// If they are trying to hit an API endpoint without a session, return 401
if (req.nextUrl.pathname.startsWith('/api/')) { if (req.nextUrl.pathname.startsWith('/api/')) {
return NextResponse.json({ error: 'Unauthorized. Nice try!' }, { status: 401 }); return NextResponse.json({ error: 'Unauthorized. Nice try!' }, { status: 401 });
} }
// Otherwise, boot them back to the login page
return NextResponse.redirect(new URL('/', req.url)); return NextResponse.redirect(new URL('/', req.url));
} }
// Session is valid, allow the request to proceed
return NextResponse.next(); return NextResponse.next();
} }