davidovic/infohliadka
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
249a672cd72da81e0d208fc4277f1a24241f7ed9
infohliadka/middleware/auth.ts

48 lines
1.3 KiB
TypeScript
Raw Blame History

import type { NextApiRequest, NextApiResponse } from 'next'
import { validateApiKey, hasPermission, ApiKey } from '../lib/api-auth'
export interface AuthenticatedRequest extends NextApiRequest {
apiKey?: ApiKey
}
export function requireAuth(permission?: string) {
return async (
req: AuthenticatedRequest,
res: NextApiResponse,
next: () => void
) => {
const apiKeyHeader = req.headers['x-api-key'] as string
if (!apiKeyHeader) {
return res.status(401).json({ error: 'API key required' })
}
const apiKey = await validateApiKey(apiKeyHeader)
if (!apiKey) {
return res.status(401).json({ error: 'Invalid API key' })
}
if (permission && !hasPermission(apiKey, permission)) {
return res.status(403).json({ error: 'Insufficient permissions' })
}
req.apiKey = apiKey
next()
}
}
export function withAuth(
handler: (req: AuthenticatedRequest, res: NextApiResponse) => Promise<void>,
permission?: string
) {
return async (req: AuthenticatedRequest, res: NextApiResponse) => {
const authMiddleware = requireAuth(permission)
return new Promise<void>((resolve, reject) => {
authMiddleware(req, res, () => {
handler(req, res).then(resolve).catch(reject)
})
})
}
}
Reference in New Issue View Git Blame Copy Permalink