Skip to content

feat: add WORKOS_SKIP_MIDDLEWARE_CHECK env var to bypass middleware header check #353

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
Iweisc wants to merge 1 commit into from
Closed

feat: add WORKOS_SKIP_MIDDLEWARE_CHECK env var to bypass middleware header check #353

Iweisc wants to merge 1 commit into from

Conversation

@Iweisc
Copy link

@Iweisc Iweisc commented Dec 28, 2025

This adds a fallback mechanism for scenarios where the x-workos-middleware header doesn't propagate correctly to API routes (e.g., when using custom middleware wrappers in Next.js 16 with proxy.ts).

When WORKOS_SKIP_MIDDLEWARE_CHECK=true is set, the getSessionFromHeader() function will fall back to reading the session directly from cookies instead of throwing an error about missing middleware coverage.

Fixes #351

@Iweisc
feat: add WORKOS_SKIP_MIDDLEWARE_CHECK env var to bypass middleware h…
f292969 
…eader check

This adds a fallback mechanism for scenarios where the x-workos-middleware header
doesn't propagate correctly to API routes (e.g., when using custom middleware
wrappers in Next.js 16 with proxy.ts).

When WORKOS_SKIP_MIDDLEWARE_CHECK=true is set, the getSessionFromHeader() function
will fall back to reading the session directly from cookies instead of throwing
an error about missing middleware coverage.

Fixes workos#351
@Iweisc Iweisc requested a review from a team as a code owner December 28, 2025 16:31
@Iweisc Iweisc requested a review from nicknisi December 28, 2025 16:31
@Iweisc Iweisc mentioned this pull request Dec 28, 2025
Open
@nicknisi
Copy link
Member

nicknisi commented Jan 6, 2026

As mentioned in #351 bypassing middleware can cause issues. Closing this in favor of the recommended solution in that issue. Thanks!

@nicknisi nicknisi closed this Jan 6, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@nicknisi nicknisi Awaiting requested review from nicknisi nicknisi is a code owner automatically assigned from workos/typescript

Assignees

No one assigned

Labels

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

withAuth Errors Out Claiming Route Not Covered by Middleware Despite Matcher Including It

2 participants

@Iweisc @nicknisi