website/middleware.ts

import { NextResponse } from "next/server";
import type { NextRequest } from "next/server";

export function middleware(request: NextRequest) {
  const { pathname } = request.nextUrl;

  // Get tokens from cookies
  const accessToken = request.cookies.get("auth_access_token")?.value;
  const userStr = request.cookies.get("auth_user")?.value;

  const isAuthenticated = !!accessToken;
  let isAdmin = false;

  if (userStr) {
    try {
      const user = JSON.parse(userStr);
      isAdmin = user.is_admin === true;
    } catch {
      // Invalid user data
    }
  }

  // Protected routes
  const isProtectedRoute = pathname.startsWith("/user") || pathname.startsWith("/admin");
  const isAdminRoute = pathname.startsWith("/admin");
  const isAuthRoute = pathname.startsWith("/login") || pathname.startsWith("/signup");

  // Redirect unauthenticated users away from protected routes
  if (isProtectedRoute && !isAuthenticated) {
    const loginUrl = new URL("/login", request.url);
    loginUrl.searchParams.set("redirect", pathname);
    return NextResponse.redirect(loginUrl);
  }

  // Redirect authenticated users away from auth routes
  if (isAuthRoute && isAuthenticated) {
    return NextResponse.redirect(new URL("/admin/dashboard", request.url));
  }

  // Redirect non-admin users away from admin routes
  if (isAdminRoute && (!isAuthenticated || !isAdmin)) {
    return NextResponse.redirect(new URL("/admin/dashboard", request.url));
  }

  return NextResponse.next();
}

export const config = {
  matcher: [
    "/((?!api|_next/static|_next/image|favicon.ico|.*\\.(?:svg|png|jpg|jpeg|gif|webp)$).*)",
  ],
};
Enhance authentication flow by integrating @tanstack/react-query for improved data fetching, adding form validation in Login and LoginDialog components, and updating user redirection logic post-login. Also, include new dependencies: input-otp and zod for OTP input handling and schema validation. 2025-11-23 13:29:31 +00:00			`import { NextResponse } from "next/server";`
			`import type { NextRequest } from "next/server";`

			`export function middleware(request: NextRequest) {`
			`const { pathname } = request.nextUrl;`

			`// Get tokens from cookies`
			`const accessToken = request.cookies.get("auth_access_token")?.value;`
			`const userStr = request.cookies.get("auth_user")?.value;`

			`const isAuthenticated = !!accessToken;`
			`let isAdmin = false;`

			`if (userStr) {`
			`try {`
			`const user = JSON.parse(userStr);`
			`isAdmin = user.is_admin === true;`
			`} catch {`
			`// Invalid user data`
			`}`
			`}`

			`// Protected routes`
			`const isProtectedRoute = pathname.startsWith("/user") \|\| pathname.startsWith("/admin");`
			`const isAdminRoute = pathname.startsWith("/admin");`
			`const isAuthRoute = pathname.startsWith("/login") \|\| pathname.startsWith("/signup");`

			`// Redirect unauthenticated users away from protected routes`
			`if (isProtectedRoute && !isAuthenticated) {`
			`const loginUrl = new URL("/login", request.url);`
			`loginUrl.searchParams.set("redirect", pathname);`
			`return NextResponse.redirect(loginUrl);`
			`}`

			`// Redirect authenticated users away from auth routes`
			`if (isAuthRoute && isAuthenticated) {`
			`return NextResponse.redirect(new URL("/admin/dashboard", request.url));`
			`}`

			`// Redirect non-admin users away from admin routes`
			`if (isAdminRoute && (!isAuthenticated \|\| !isAdmin)) {`
			`return NextResponse.redirect(new URL("/admin/dashboard", request.url));`
			`}`

			`return NextResponse.next();`
			`}`

			`export const config = {`
			`matcher: [`
			`"/((?!api\|_next/static\|_next/image\|favicon.ico\|.\\.(?:svg\|png\|jpg\|jpeg\|gif\|webp)$).)",`
			`],`
			`};`