11 replies

Exempting Routes from Auth Middleware Using FiberRef: A Query

I've got an auth middleware set up to send back a 401 error when a user hasn't provided a valid session. Now, I want to exempt certain public routes like "/login" and "/register" from this check. I attempted to use a FiberRef to manage this disabling logic, but I'm a bit confused about how they function. Do I need a custom runtime to manage a custom FiberRef? And is this even the correct approach for handling this using FiberRefs? My implementation isn't functioning as expected, and I'm not sure why.

// auth-middleware.ts
export const authEnabledRef = FiberRef.unsafeMake(true);

export const withAuthEnabled = (enabled = true) =>
    Layer.locallyScoped(authEnabledRef, enabled);

export const AuthMiddleware = Http.middleware.make((app) =>
    Effect.gen(function* ($) {
        const request = yield* $(Http.request.ServerRequest);

        const isAuthEnabled = yield* $(FiberRef.get(authEnabledRef));

        if (!isAuthEnabled) {
            return yield* $(app);
        }

        const isSessionValid: boolean = someCustomLogic(request)
        if (!isSessionValid) {
            return yield* $(UnauthorizedResponse);
        }

        return yield* $(app);
    }),
);

// router.ts
const PublicRouter = Http.router.empty.pipe(
    Http.router.get("/hello", Http.response.json({ data: "Hello Effect Server" })),
    Http.router.use(Effect.provide(
        withAuthEnabled(false)
    )),
);

export const HttpRouterLive = Http.router.empty.pipe(
    Http.router.mount("/public", PublicRouter),
    Http.router.mount("/app", AppRouter),
    Http.router.use(AuthMiddleware),
);

// auth-middleware.ts
export const authEnabledRef = FiberRef.unsafeMake(true);

export const withAuthEnabled = (enabled = true) =>
    Layer.locallyScoped(authEnabledRef, enabled);

export const AuthMiddleware = Http.middleware.make((app) =>
    Effect.gen(function* ($) {
        const request = yield* $(Http.request.ServerRequest);

        const isAuthEnabled = yield* $(FiberRef.get(authEnabledRef));

        if (!isAuthEnabled) {
            return yield* $(app);
        }

        const isSessionValid: boolean = someCustomLogic(request)
        if (!isSessionValid) {
            return yield* $(UnauthorizedResponse);
        }

        return yield* $(app);
    }),
);

// router.ts
const PublicRouter = Http.router.empty.pipe(
    Http.router.get("/hello", Http.response.json({ data: "Hello Effect Server" })),
    Http.router.use(Effect.provide(
        withAuthEnabled(false)
    )),
);

export const HttpRouterLive = Http.router.empty.pipe(
    Http.router.mount("/public", PublicRouter),
    Http.router.mount("/app", AppRouter),
    Http.router.use(AuthMiddleware),
);

// auth-middleware.ts
export const authEnabledRef = FiberRef.unsafeMake(true);

export const withAuthEnabled = (enabled = true) =>
    Layer.locallyScoped(authEnabledRef, enabled);

export const AuthMiddleware = Http.middleware.make((app) =>
    Effect.gen(function* ($) {
        const request = yield* $(Http.request.ServerRequest);

        const isAuthEnabled = yield* $(FiberRef.get(authEnabledRef));

        if (!isAuthEnabled) {
            return yield* $(app);
        }

        const isSessionValid: boolean = someCustomLogic(request)
        if (!isSessionValid) {
            return yield* $(UnauthorizedResponse);
        }

        return yield* $(app);
    }),
);

// router.ts
const PublicRouter = Http.router.empty.pipe(
    Http.router.get("/hello", Http.response.json({ data: "Hello Effect Server" })),
    Http.router.use(Effect.provide(
        withAuthEnabled(false)
    )),
);

export const HttpRouterLive = Http.router.empty.pipe(
    Http.router.mount("/public", PublicRouter),
    Http.router.mount("/app", AppRouter),
    Http.router.use(AuthMiddleware),
);

// auth-middleware.ts
export const authEnabledRef = FiberRef.unsafeMake(true);

export const withAuthEnabled = (enabled = true) =>
    Layer.locallyScoped(authEnabledRef, enabled);

export const AuthMiddleware = Http.middleware.make((app) =>
    Effect.gen(function* ($) {
        const request = yield* $(Http.request.ServerRequest);

        const isAuthEnabled = yield* $(FiberRef.get(authEnabledRef));

        if (!isAuthEnabled) {
            return yield* $(app);
        }

        const isSessionValid: boolean = someCustomLogic(request)
        if (!isSessionValid) {
            return yield* $(UnauthorizedResponse);
        }

        return yield* $(app);
    }),
);

// router.ts
const PublicRouter = Http.router.empty.pipe(
    Http.router.get("/hello", Http.response.json({ data: "Hello Effect Server" })),
    Http.router.use(Effect.provide(
        withAuthEnabled(false)
    )),
);

export const HttpRouterLive = Http.router.empty.pipe(
    Http.router.mount("/public", PublicRouter),
    Http.router.mount("/app", AppRouter),
    Http.router.use(AuthMiddleware),
);

Exempting Routes from Auth Middleware Using FiberRef: A Query

Similar Threads

Exempting Routes from Auth Middleware Using FiberRef: A Query

Similar Threads

Similar Threads

Similar Threads