Implement onboard middleware

jmsandiegoo · jmsandiegoo · commit 57755c0c15ab · 2024-10-06T20:31:45.000+08:00
diff --git a/frontend/src/components/form/UserAvatarInput.tsx b/frontend/src/components/form/UserAvatarInput.tsx
@@ -41,6 +41,7 @@ export function UserAvatarInput<TFieldValues extends FieldValues>({
                   variant="soft"
                   onClick={(e) => {
                     e.preventDefault();
+                    alert("Coming Soon :)");
                   }}
                 >
                   Upload Image
diff --git a/frontend/src/lib/auth.ts b/frontend/src/lib/auth.ts
@@ -1,5 +1,3 @@
-"use server";
-
 import { cookies } from "next/headers";
 import {
   AccessToken,
@@ -17,6 +15,7 @@ import { refreshAccessToken } from "@/services/authService";
  * @returns {Promise<AccessToken>}
  */
 export async function getAccessToken(): Promise<AccessToken> {
+  "use server";
   const cookieStore = cookies();
   const access_token = AccessTokenSchema.parse(
     cookieStore.get("access_token")?.value
@@ -38,7 +37,7 @@ function isTokenExpired(token: AccessToken): boolean {
   return decoded.exp < currentTime;
 }
 
-function parseJwt(token: AccessToken): AccessTokenPayload {
+export function parseJwt(token: AccessToken): AccessTokenPayload {
   const base64Url = token.split(".")[1];
   const base64 = base64Url.replace(/-/g, "+").replace(/_/g, "/");
   const jsonPayload = decodeURIComponent(
diff --git a/frontend/src/middleware.ts b/frontend/src/middleware.ts
@@ -1,12 +1,22 @@
 import { NextResponse } from "next/server";
 import type { NextRequest } from "next/server";
+import { parseJwt } from "@/lib/auth";
+import { AccessToken, AccessTokenSchema } from "./types/Token";
 
 // This function can be marked `async` if using `await` inside
-export function middleware(request: NextRequest) {
+export async function middleware(request: NextRequest) {
   const token = request.cookies.get("access_token");
   if (!token) {
     return NextResponse.redirect(new URL("/signin", request.url));
   }
+
+  const tokenValue: AccessToken = AccessTokenSchema.parse(token.value);
+  const decoded = parseJwt(tokenValue);
+
+  if (!decoded.isOnboarded) {
+    return NextResponse.redirect(new URL("/onboard", request.url));
+  }
+
   return NextResponse.next();
 }
 
diff --git a/frontend/src/types/Token.ts b/frontend/src/types/Token.ts
@@ -19,6 +19,7 @@ export const AccessTokenResponseSchema = createResponseSchema(AccessOnlySchema);
 export const AccessTokenPayloadSchema = z.object({
   sub: z.string(),
   email: z.string().email(),
+  isOnboarded: z.boolean(),
   roles: z.string().array(),
   iat: z.number(),
   exp: z.number(),

Original file line number	Diff line number	Diff line change
`@@ -41,6 +41,7 @@ export function UserAvatarInput<TFieldValues extends FieldValues>({`
`41`	`41`	`variant="soft"`
`42`	`42`	`onClick={(e) => {`
`43`	`43`	`e.preventDefault();`
	`44`	`+ alert("Coming Soon :)");`
`44`	`45`	`}}`
`45`	`46`	`>`
`46`	`47`	`Upload Image`