diff --git a/apps/server/src/routes/api/auth.$.ts b/apps/server/src/routes/api/auth.$.ts new file mode 100644 index 0000000..b9d9c19 --- /dev/null +++ b/apps/server/src/routes/api/auth.$.ts @@ -0,0 +1,11 @@ +import { createFileRoute } from '@tanstack/react-router' +import { auth } from '@/server/auth' + +export const Route = createFileRoute('/api/auth/$' as never)({ + server: { + handlers: { + GET: ({ request }) => auth.handler(request), + POST: ({ request }) => auth.handler(request), + }, + }, +}) diff --git a/apps/server/src/server/api/context.ts b/apps/server/src/server/api/context.ts index 9d4772f..eaabdbb 100644 --- a/apps/server/src/server/api/context.ts +++ b/apps/server/src/server/api/context.ts @@ -1,25 +1,15 @@ +import type { auth } from '@/server/auth' import type { DB } from '@/server/db' -/** - * 基础 Context - 所有请求都包含的上下文 - */ export interface BaseContext { headers: Headers } -/** - * 数据库 Context - 通过 db middleware 扩展 - */ export interface DBContext extends BaseContext { db: DB } -/** - * 认证 Context - 通过 auth middleware 扩展(未来使用) - * - * @example - * export interface AuthContext extends DBContext { - * userId: string - * user: User - * } - */ +export interface AuthContext extends DBContext { + user: typeof auth.$Infer.Session.user + session: typeof auth.$Infer.Session.session +} diff --git a/apps/server/src/server/api/middlewares/auth.middleware.ts b/apps/server/src/server/api/middlewares/auth.middleware.ts new file mode 100644 index 0000000..c83a5d0 --- /dev/null +++ b/apps/server/src/server/api/middlewares/auth.middleware.ts @@ -0,0 +1,19 @@ +import { ORPCError } from '@orpc/server' +import { os } from '@/server/api/server' +import { auth } from '@/server/auth' + +export const authMiddleware = os.middleware(async ({ context, next }) => { + const sessionData = await auth.api.getSession({ headers: context.headers }) + + if (!sessionData?.session || !sessionData?.user) { + throw new ORPCError('UNAUTHORIZED') + } + + return next({ + context: { + ...context, + session: sessionData.session, + user: sessionData.user, + }, + }) +}) diff --git a/apps/server/src/server/api/middlewares/index.ts b/apps/server/src/server/api/middlewares/index.ts index 508e3be..2195c0a 100644 --- a/apps/server/src/server/api/middlewares/index.ts +++ b/apps/server/src/server/api/middlewares/index.ts @@ -1 +1,2 @@ +export * from './auth.middleware' export * from './db.middleware'