87a2f93edb
Introduce user registration/login gated behind optional NEXT_PUBLIC_SUPABASE_* env vars (leave blank to disable — app behaves exactly as before). Adds proxy.ts for automatic cookie session refresh, requireUser() API route guards on all 7 compute-consuming routes, AuthModal (Google/GitHub OAuth + 6-digit email OTP), UserChip header component, and login_success analytics event. Identity is fully decoupled from Session/engine — no type changes. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
18 lines
583 B
TypeScript
18 lines
583 B
TypeScript
import { type NextRequest, NextResponse } from "next/server";
|
|
import { createClient } from "@/lib/supabase/server";
|
|
|
|
export async function GET(request: NextRequest) {
|
|
const { searchParams, origin } = request.nextUrl;
|
|
const code = searchParams.get("code");
|
|
const next = searchParams.get("next") ?? "/";
|
|
|
|
if (code) {
|
|
const supabase = await createClient();
|
|
const { error } = await supabase.auth.exchangeCodeForSession(code);
|
|
if (!error) {
|
|
return NextResponse.redirect(`${origin}${next}`);
|
|
}
|
|
}
|
|
return NextResponse.redirect(`${origin}/?auth_error=1`);
|
|
}
|