cx-nexredirect/lib/auth-helpers.ts

import { getServerSession } from "next-auth";
import { NextResponse } from "next/server";
import { authOptions } from "./auth";

export type SessionUser = { id: string; email: string; role: string };

export async function requireSession(): Promise<SessionUser | NextResponse> {
  const session = await getServerSession(authOptions);
  if (!session) return NextResponse.json({ error: "unauthorized" }, { status: 401 });
  return session.user as SessionUser;
}

export async function requireAdmin(): Promise<SessionUser | NextResponse> {
  const u = await requireSession();
  if (u instanceof NextResponse) return u;
  if (u.role !== "admin") return NextResponse.json({ error: "forbidden", code: "admin_required" }, { status: 403 });
  return u;
}
v0.1.21 — Multi-User mit Rollen (admin/user), User-CRUD-UI, role-enforcement auf domain mutations 2026-05-01 19:38:33 +00:00			`import { getServerSession } from "next-auth";`
			`import { NextResponse } from "next/server";`
			`import { authOptions } from "./auth";`

			`export type SessionUser = { id: string; email: string; role: string };`

			`export async function requireSession(): Promise<SessionUser \| NextResponse> {`
			`const session = await getServerSession(authOptions);`
			`if (!session) return NextResponse.json({ error: "unauthorized" }, { status: 401 });`
			`return session.user as SessionUser;`
			`}`

			`export async function requireAdmin(): Promise<SessionUser \| NextResponse> {`
			`const u = await requireSession();`
			`if (u instanceof NextResponse) return u;`
			`if (u.role !== "admin") return NextResponse.json({ error: "forbidden", code: "admin_required" }, { status: 403 });`
			`return u;`
			`}`