87a2f93edb
Introduce user registration/login gated behind optional NEXT_PUBLIC_SUPABASE_* env vars (leave blank to disable — app behaves exactly as before). Adds proxy.ts for automatic cookie session refresh, requireUser() API route guards on all 7 compute-consuming routes, AuthModal (Google/GitHub OAuth + 6-digit email OTP), UserChip header component, and login_success analytics event. Identity is fully decoupled from Session/engine — no type changes. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
29 lines
926 B
TypeScript
29 lines
926 B
TypeScript
import { type NextRequest, NextResponse } from "next/server";
|
|
import { createServerClient } from "@supabase/ssr";
|
|
|
|
export function proxy(request: NextRequest) {
|
|
const supabaseUrl = process.env.NEXT_PUBLIC_SUPABASE_URL;
|
|
const supabaseKey = process.env.NEXT_PUBLIC_SUPABASE_PUBLISHABLE_KEY;
|
|
if (!supabaseUrl || !supabaseKey) return NextResponse.next();
|
|
|
|
let response = NextResponse.next({ request });
|
|
const supabase = createServerClient(supabaseUrl, supabaseKey, {
|
|
cookies: {
|
|
getAll: () => request.cookies.getAll(),
|
|
setAll: (cookiesToSet) => {
|
|
for (const { name, value } of cookiesToSet) {
|
|
request.cookies.set(name, value);
|
|
}
|
|
response = NextResponse.next({ request });
|
|
for (const { name, value, options } of cookiesToSet) {
|
|
response.cookies.set(name, value, options);
|
|
}
|
|
},
|
|
},
|
|
});
|
|
|
|
supabase.auth.getUser();
|
|
|
|
return response;
|
|
}
|