Organizing Effect Middleware with Shared UserContext for Authentication

I have an api definition created using

HttpApi.make

HttpApi.make

in a shared directory for server and client. Some of the routes have an Authentication middleware attached which means the shape of the UserContext has to also be in the shared directory because the middleware provides it. Is this the best way to organise my effect middleware? I would have thought that the shape of the UserContext is solely a serverside concern? Example below:

// .app/shared/api/effectApi.ts
import { HttpApi, HttpApiEndpoint, HttpApiGroup } from "@effect/platform";
import { Authentication } from "./authMiddleware";

export const EffectServerApi = HttpApi.make("EffectServer").add(
  HttpApiGroup.make("profiles")
  .add(
    HttpApiEndpoint.post("createProfile", `/create_profile`)
      .middleware(Authentication)
    )
  )
)

// .app/shared/api/authMiddleware.ts
import { Context, Schema } from "effect"
import { HttpApiMiddleware, HttpApiSecurity, OpenApi, HttpApiSchema } from "@effect/platform"

export class AuthenticatedUserContext extends Context.Tag("AuthenticatedUserContext")<
  AuthenticatedUserContext,
  {
    readonly userName: string;
    readonly userId: string;
  }
>() {}

export class Unauthorized extends Schema.TaggedError<Unauthorized>()(
  "Unauthorized",
  {
    message: Schema.String
  },
  HttpApiSchema.annotations({ status: 401 })
) {}


export class Authentication extends HttpApiMiddleware.Tag<Authentication>()("Authentication", {
  optional: false,
  failure: Unauthorized,
  provides: AuthenticatedUserContext,
  security: {
    bearer: HttpApiSecurity.bearer.pipe(
      HttpApiSecurity.annotate(OpenApi.Format, 'jwt'),
    )
  }
}) {}

// .app/shared/api/effectApi.ts
import { HttpApi, HttpApiEndpoint, HttpApiGroup } from "@effect/platform";
import { Authentication } from "./authMiddleware";

export const EffectServerApi = HttpApi.make("EffectServer").add(
  HttpApiGroup.make("profiles")
  .add(
    HttpApiEndpoint.post("createProfile", `/create_profile`)
      .middleware(Authentication)
    )
  )
)

// .app/shared/api/authMiddleware.ts
import { Context, Schema } from "effect"
import { HttpApiMiddleware, HttpApiSecurity, OpenApi, HttpApiSchema } from "@effect/platform"

export class AuthenticatedUserContext extends Context.Tag("AuthenticatedUserContext")<
  AuthenticatedUserContext,
  {
    readonly userName: string;
    readonly userId: string;
  }
>() {}

export class Unauthorized extends Schema.TaggedError<Unauthorized>()(
  "Unauthorized",
  {
    message: Schema.String
  },
  HttpApiSchema.annotations({ status: 401 })
) {}


export class Authentication extends HttpApiMiddleware.Tag<Authentication>()("Authentication", {
  optional: false,
  failure: Unauthorized,
  provides: AuthenticatedUserContext,
  security: {
    bearer: HttpApiSecurity.bearer.pipe(
      HttpApiSecurity.annotate(OpenApi.Format, 'jwt'),
    )
  }
}) {}

Organizing Effect Middleware with Shared UserContext for Authentication

I have an api definition created using

HttpApi.make

HttpApi.make

// .app/shared/api/effectApi.ts
import { HttpApi, HttpApiEndpoint, HttpApiGroup } from "@effect/platform";
import { Authentication } from "./authMiddleware";

export const EffectServerApi = HttpApi.make("EffectServer").add(
  HttpApiGroup.make("profiles")
  .add(
    HttpApiEndpoint.post("createProfile", `/create_profile`)
      .middleware(Authentication)
    )
  )
)

// .app/shared/api/authMiddleware.ts
import { Context, Schema } from "effect"
import { HttpApiMiddleware, HttpApiSecurity, OpenApi, HttpApiSchema } from "@effect/platform"

export class AuthenticatedUserContext extends Context.Tag("AuthenticatedUserContext")<
  AuthenticatedUserContext,
  {
    readonly userName: string;
    readonly userId: string;
  }
>() {}

export class Unauthorized extends Schema.TaggedError<Unauthorized>()(
  "Unauthorized",
  {
    message: Schema.String
  },
  HttpApiSchema.annotations({ status: 401 })
) {}


export class Authentication extends HttpApiMiddleware.Tag<Authentication>()("Authentication", {
  optional: false,
  failure: Unauthorized,
  provides: AuthenticatedUserContext,
  security: {
    bearer: HttpApiSecurity.bearer.pipe(
      HttpApiSecurity.annotate(OpenApi.Format, 'jwt'),
    )
  }
}) {}

// .app/shared/api/effectApi.ts
import { HttpApi, HttpApiEndpoint, HttpApiGroup } from "@effect/platform";
import { Authentication } from "./authMiddleware";

export const EffectServerApi = HttpApi.make("EffectServer").add(
  HttpApiGroup.make("profiles")
  .add(
    HttpApiEndpoint.post("createProfile", `/create_profile`)
      .middleware(Authentication)
    )
  )
)

// .app/shared/api/authMiddleware.ts
import { Context, Schema } from "effect"
import { HttpApiMiddleware, HttpApiSecurity, OpenApi, HttpApiSchema } from "@effect/platform"

export class AuthenticatedUserContext extends Context.Tag("AuthenticatedUserContext")<
  AuthenticatedUserContext,
  {
    readonly userName: string;
    readonly userId: string;
  }
>() {}

export class Unauthorized extends Schema.TaggedError<Unauthorized>()(
  "Unauthorized",
  {
    message: Schema.String
  },
  HttpApiSchema.annotations({ status: 401 })
) {}


export class Authentication extends HttpApiMiddleware.Tag<Authentication>()("Authentication", {
  optional: false,
  failure: Unauthorized,
  provides: AuthenticatedUserContext,
  security: {
    bearer: HttpApiSecurity.bearer.pipe(
      HttpApiSecurity.annotate(OpenApi.Format, 'jwt'),
    )
  }
}) {}

Organizing Effect Middleware with Shared UserContext for Authentication

Similar Threads

Organizing Effect Middleware with Shared UserContext for Authentication

Similar Threads

Similar Threads

Similar Threads