TTC
Theo's Typesafe Cult•12mo ago
clemwo

How to implement redirect based on user role

Hi, I would love to implement redirections based on the user role. I want to implement it so that on every single page, I can explicitly define which roles are allowed to view the current page and the redirect url to which the user will be redirected if he isn't authorized to view the page. Now I have implemented a simple hook which works but the content of the page still flashes before the user gets redirected. What is the recommended way to protect routes in t3-app based on roles?
My implementation: useRoleRedirect.ts: 
import { type Role } from "@prisma/client";
import { useSession } from "next-auth/react";
import { useRouter } from "next/router";
import { useEffect } from "react";

const useRoleRedirect = (allowedRoles: Role[], redirect: string) => {
  const userRole = useSession().data?.user.role;
  const router = useRouter();

  useEffect(() => {
    if (userRole && !allowedRoles.includes(userRole)) {
      void router.push(redirect);
    }
  }, [router, userRole, redirect, allowedRoles]);
};

export default useRoleRedirect;
import { type Role } from "@prisma/client";
import { useSession } from "next-auth/react";
import { useRouter } from "next/router";
import { useEffect } from "react";

const useRoleRedirect = (allowedRoles: Role[], redirect: string) => {
  const userRole = useSession().data?.user.role;
  const router = useRouter();

  useEffect(() => {
    if (userRole && !allowedRoles.includes(userRole)) {
      void router.push(redirect);
    }
  }, [router, userRole, redirect, allowedRoles]);
};

export default useRoleRedirect;
Usage of hook in other component: 
const Page: NextPage = () => {
  useRoleRedirect([Role.ADMIN, Role.MANAGER], "/");
...
const Page: NextPage = () => {
  useRoleRedirect([Role.ADMIN, Role.MANAGER], "/");
...
Now this thing works but the original content from "Page" still gets flashed which I would like to prevent. I'm also just curious what the standard way of handling this type of problem is. I greatly appreciate any advice 🙂
5 Replies
Neto
Neto•12mo ago
middlewares
clemwo
clemwo•12mo ago
Do you have any resources on how I could implement that specifically? Or a good example? I already found out that I can have protected pages with nextAuth: https://next-auth.js.org/tutorials/securing-pages-and-api-routes Im not sure how to access the session object there to get the user role
Securing pages and API routes | NextAuth.js
You can easily protect client and server side rendered pages and API routes with NextAuth.js.
Neto
Neto•12mo ago
https://authjs.dev/guides/basics/role-based-access-control
Role-based access control | Auth.js
There are two ways to add role-based access control (RBAC) to your application, based on the session strategy you choose. Let's see an example for each of these.
Neto
Neto•12mo ago
how to add role to the auth js side of things the middleware side, the matcher is whatever you define but you shold check if the user exists, and later check his role both of those operations should redirect to whatever you need but the docs are awful
clemwo
clemwo•12mo ago
Thanks for the link, I'll check it out
Want results from more Discord servers?
Add your server
More Posts
Regex cutting off anything after space in the urlHeres the current regex : const regex = /(https?:\/\/\S+)\s*\n*\s*(Canonical|\d*)/g; it gives backdynamic routes in middleware with next-authso i want to do dynamic routes using next-auth with the config varibe that middleware offers This Do we need a fetcher like SWR with the t3 stackIt isn't mention in the documentation so I was wondering, do we need a fetcher with tRPC ? It's my UploadThing with PythonI am using UploadThing on my main app where a user uploads a word document. I save it's UT URL in myDeployment error with working environment variableI'm trying to deploy on vercel and i got this error below. I can call the OpenAI API (via server siBoth my dev environment and my deployed code are the exact same, but my text is aligned differentlyAnyone know why this is the case?Prisma not connecting to DB in amplifyHey guys so i got the following schema ```ts model Images { id Int @id @default(autoincrExplicitly specifying an object in Prisma with its foreign relationshipsI've set up my schema as an approximation of a directory structure: directories (`ADir`s) and documeError when running `drizzle-kit push:mysql` to a Planetscale databaseso after reading through the Doc's it looks like i need an SSL cert to run the push however i'm not Headless UI TransitionsHeya, I'm trying to create a simple little animation where a dropdown menu slides down when revealed