Add UserRole handling

2025-06-10 22:10:16 +03:00
parent beaacffb9a
commit a25459d2cb
15 changed files with 92 additions and 143 deletions
--- a/webui/src/app/page.js
+++ b/webui/src/app/page.js
@@ -10,13 +10,13 @@ export default function Home() {
        const fetchAccessToken = async () => {
            if (user) {
                try {
-                    const v = await fetch('/token');
+                    await fetch('/token');
                } catch (error) {
                    console.error("Error fetching token");
                }
            } else {
                try {
-                    const resp = await fetch('/untoken');
+                    await fetch('/untoken');
                } catch (e) {
                    console.error('Error in /api/untoken:', e);
                }
--- a/webui/src/app/token/route.js
+++ b/webui/src/app/token/route.js
@@ -1,4 +1,3 @@
-import {cookies, headers} from 'next/headers';
 import { NextResponse } from 'next/server';
 import {auth0} from "@/lib/auth0";
 import api from "@/lib/api";
@@ -9,20 +8,11 @@ export async function GET() {

        if (!token) { return NextResponse.json({ error: 'No access token found' }, { status: 401 }); }

-        (await cookies()).set('access_token', token, {
-            httpOnly: true,
-            secure: true,
-            sameSite: 'strict',
-            path: '/',
-            domain: process.env.COOKIE_DOMAIN,
-            maxAge: 3600,
-        });
-
        await api.post('/users/sync', {}, {
            headers: { Cookie: `access_token=${token}` }
        });

-        return NextResponse.json({ message: 'Access token set in cookie' });
+        return NextResponse.json({ access_token: token });
    } catch (error) {
        console.error('Error in /api/token:', error);
        return NextResponse.json({ error: 'Internal Server Error' }, { status: 500 });
--- a/webui/src/app/untoken/route.js
+++ b/webui/src/app/untoken/route.js
@@ -1,22 +0,0 @@
-import {cookies} from 'next/headers';
-import {NextResponse} from 'next/server';
-
-export async function GET() {
-    try {
-        (await cookies()).set({
-            name: 'access_token',
-            value: '',
-            httpOnly: true,
-            secure: true,
-            sameSite: 'strict',
-            path: '/',
-            domain: process.env.COOKIE_DOMAIN,
-            maxAge: -1,
-        });
-
-        return NextResponse.json({message: 'Deleted access token'});
-    } catch (error) {
-        console.error('Error in /api/untoken:', error);
-        return NextResponse.json({ error: 'Internal Server Error' }, { status: 500 });
-    }
-}