| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859 |
- import { NextRequest, NextResponse } from "next/server";
- import { getServerSideConfig } from "./app/config/server";
- import md5 from "spark-md5";
- export const config = {
- matcher: ["/api/openai", "/api/chat-stream"],
- };
- const serverConfig = getServerSideConfig();
- export function middleware(req: NextRequest) {
- const accessCode = req.headers.get("access-code");
- const token = req.headers.get("token");
- const hashedCode = md5.hash(accessCode ?? "").trim();
- console.log("[Auth] allowed hashed codes: ", [...serverConfig.codes]);
- console.log("[Auth] got access code:", accessCode);
- console.log("[Auth] hashed access code:", hashedCode);
- if (serverConfig.needCode && !serverConfig.codes.has(hashedCode) && !token) {
- return NextResponse.json(
- {
- error: true,
- needAccessCode: true,
- msg: "Please go settings page and fill your access code.",
- },
- {
- status: 401,
- },
- );
- }
- // inject api key
- if (!token) {
- const apiKey = serverConfig.apiKey;
- if (apiKey) {
- console.log("[Auth] set system token");
- req.headers.set("token", apiKey);
- } else {
- return NextResponse.json(
- {
- error: true,
- msg: "Empty Api Key",
- },
- {
- status: 401,
- },
- );
- }
- } else {
- console.log("[Auth] set user token");
- }
- return NextResponse.next({
- request: {
- headers: req.headers,
- },
- });
- }
|
