auth flow
This commit is contained in:
parent
dde98bb598
commit
ef4f73ad9e
@ -15,6 +15,11 @@ const SERVICE_URLS: Record<string, string> = {
|
||||
'qg': process.env.NEXT_PUBLIC_IFRAME_MISSIONVIEW_URL || ''
|
||||
};
|
||||
|
||||
// Check if a service is Rocket.Chat (they require special authentication)
|
||||
function isRocketChat(serviceName: string): boolean {
|
||||
return serviceName === 'parole'; // Assuming 'parole' is your Rocket.Chat service
|
||||
}
|
||||
|
||||
export async function GET(
|
||||
request: NextRequest,
|
||||
{ params }: { params: { path: string[] } }
|
||||
@ -35,24 +40,39 @@ export async function GET(
|
||||
return NextResponse.json({ error: 'Unauthorized' }, { status: 401 });
|
||||
}
|
||||
|
||||
// Get authentication token from session
|
||||
const accessToken = session.accessToken;
|
||||
if (!accessToken) {
|
||||
return NextResponse.json({ error: 'No access token available' }, { status: 401 });
|
||||
}
|
||||
|
||||
try {
|
||||
// Extract search parameters
|
||||
const searchParams = new URL(request.url).searchParams.toString();
|
||||
const targetUrl = `${baseUrl}/${restOfPath}${searchParams ? `?${searchParams}` : ''}`;
|
||||
|
||||
// Forward the request to the target service with the authentication token
|
||||
const response = await fetch(targetUrl, {
|
||||
headers: {
|
||||
'Authorization': `Bearer ${accessToken}`,
|
||||
// Add other headers as needed by your services
|
||||
// Prepare headers based on the service type
|
||||
const headers: Record<string, string> = {};
|
||||
|
||||
if (isRocketChat(serviceName)) {
|
||||
// For Rocket.Chat, use their specific authentication headers
|
||||
if (session.rocketChatToken && session.rocketChatUserId) {
|
||||
console.log('Using Rocket.Chat specific authentication');
|
||||
headers['X-Auth-Token'] = session.rocketChatToken;
|
||||
headers['X-User-Id'] = session.rocketChatUserId;
|
||||
} else {
|
||||
console.warn('Rocket.Chat tokens not available in session');
|
||||
// Still try with standard authorization if available
|
||||
if (session.accessToken) {
|
||||
headers['Authorization'] = `Bearer ${session.accessToken}`;
|
||||
}
|
||||
}
|
||||
});
|
||||
} else {
|
||||
// Standard OAuth Bearer token for other services
|
||||
if (session.accessToken) {
|
||||
headers['Authorization'] = `Bearer ${session.accessToken}`;
|
||||
}
|
||||
}
|
||||
|
||||
// Add other common headers
|
||||
headers['Accept'] = 'application/json, text/html, */*';
|
||||
|
||||
// Forward the request to the target service with the authentication headers
|
||||
const response = await fetch(targetUrl, { headers });
|
||||
|
||||
// Get response data
|
||||
const data = await response.arrayBuffer();
|
||||
@ -63,7 +83,6 @@ export async function GET(
|
||||
statusText: response.statusText,
|
||||
headers: {
|
||||
'Content-Type': response.headers.get('Content-Type') || 'application/octet-stream',
|
||||
// Add other headers as needed
|
||||
}
|
||||
});
|
||||
|
||||
@ -78,9 +97,6 @@ export async function POST(
|
||||
request: NextRequest,
|
||||
{ params }: { params: { path: string[] } }
|
||||
) {
|
||||
// Similar implementation as GET but for POST requests
|
||||
// This is a simplified version - you'd need to handle the request body
|
||||
|
||||
const serviceName = params.path[0];
|
||||
const restOfPath = params.path.slice(1).join('/');
|
||||
|
||||
@ -90,7 +106,7 @@ export async function POST(
|
||||
}
|
||||
|
||||
const session = await getServerSession(authOptions);
|
||||
if (!session || !session.accessToken) {
|
||||
if (!session) {
|
||||
return NextResponse.json({ error: 'Unauthorized' }, { status: 401 });
|
||||
}
|
||||
|
||||
@ -101,12 +117,29 @@ export async function POST(
|
||||
// Get the request body
|
||||
const body = await request.arrayBuffer();
|
||||
|
||||
// Prepare headers based on the service type
|
||||
const headers: Record<string, string> = {
|
||||
'Content-Type': request.headers.get('Content-Type') || 'application/json',
|
||||
};
|
||||
|
||||
if (isRocketChat(serviceName)) {
|
||||
// For Rocket.Chat, use their specific authentication headers
|
||||
if (session.rocketChatToken && session.rocketChatUserId) {
|
||||
headers['X-Auth-Token'] = session.rocketChatToken;
|
||||
headers['X-User-Id'] = session.rocketChatUserId;
|
||||
} else if (session.accessToken) {
|
||||
headers['Authorization'] = `Bearer ${session.accessToken}`;
|
||||
}
|
||||
} else {
|
||||
// Standard OAuth Bearer token for other services
|
||||
if (session.accessToken) {
|
||||
headers['Authorization'] = `Bearer ${session.accessToken}`;
|
||||
}
|
||||
}
|
||||
|
||||
const response = await fetch(targetUrl, {
|
||||
method: 'POST',
|
||||
headers: {
|
||||
'Authorization': `Bearer ${session.accessToken}`,
|
||||
'Content-Type': request.headers.get('Content-Type') || 'application/json',
|
||||
},
|
||||
headers,
|
||||
body: body
|
||||
});
|
||||
|
||||
|
||||
Loading…
Reference in New Issue
Block a user