k4rli/medreport_mrb2b
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: Add MFA verification for Super Admin users in middleware

Browse Source
This commit is contained in:
Danel Kungla
2025-06-30 11:37:33 +03:00
parent b7f8d80e9f
commit 09a538d5aa
1 changed files with 17 additions and 12 deletions
Download Patch File Download Diff File Expand all files Collapse all files

23
middleware.ts
View File

@@ -150,20 +150,25 @@ function getPatterns() {
return NextResponse.redirect(new URL('/', req.nextUrl.origin).href); return NextResponse.redirect(new URL('/', req.nextUrl.origin).href);
} }
const client = createMiddlewareClient(req, res);
const userIsSuperAdmin = await isSuperAdmin(client);
if (userIsSuperAdmin) {
// check if we need to verify MFA (user is authenticated but needs to verify MFA) // check if we need to verify MFA (user is authenticated but needs to verify MFA)
// TODO: this mfa should only be applied to SUPER_ADMIN const isVerifyMfa =
// const isVerifyMfa = req.nextUrl.pathname === pathsConfig.auth.verifyMfa; req.nextUrl.pathname === pathsConfig.auth.verifyMfa;
// If user is logged in and does not need to verify MFA, // If user is logged in and does not need to verify MFA,
// redirect to home page. // redirect to home page.
// if (!isVerifyMfa) { if (!isVerifyMfa) {
// const nextPath = const nextPath =
// req.nextUrl.searchParams.get('next') ?? pathsConfig.app.home; req.nextUrl.searchParams.get('next') ?? pathsConfig.app.home;
// return NextResponse.redirect( return NextResponse.redirect(
// new URL(nextPath, req.nextUrl.origin).href, new URL(nextPath, req.nextUrl.origin).href,
// ); );
// } }
}
}, },
}, },
{ {