matthias/lemonspace_app
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fix auth redirect origin and guard dashboard against missing session

Browse Source
This commit is contained in:
Matthias
2026-04-01 12:03:16 +02:00
parent 4065d0ce1c
commit 0022b57c88
2 changed files with 14 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
app/dashboard/page.tsx
View File

@@ -67,6 +67,12 @@ export default function DashboardPage() {
setHasClientMounted(true); setHasClientMounted(true);
}, []); }, []);
useEffect(() => {
if (!isSessionPending && !session?.user) {
router.replace("/auth/sign-in");
}
}, [isSessionPending, router, session?.user]);
const displayName = session?.user.name?.trim() || session?.user.email || "Nutzer"; const displayName = session?.user.name?.trim() || session?.user.email || "Nutzer";
const initials = getInitials(displayName); const initials = getInitials(displayName);

10
convex/auth.ts
View File

@@ -29,6 +29,12 @@ export const authComponent = createClient<DataModel>(components.betterAuth);
export const createAuth = (ctx: GenericCtx<DataModel>) => { export const createAuth = (ctx: GenericCtx<DataModel>) => {
const authAppUrl = appUrl ?? siteUrl; const authAppUrl = appUrl ?? siteUrl;
const signInRedirectUrl = `${authAppUrl}/dashboard`; const signInRedirectUrl = `${authAppUrl}/dashboard`;
const authAppOrigin = new URL(authAppUrl).origin;
const toAuthAppUrl = (url: string) => {
const incoming = new URL(url);
return new URL(`${incoming.pathname}${incoming.search}`, authAppOrigin);
};
return betterAuth({ return betterAuth({
baseURL: siteUrl, baseURL: siteUrl,
@@ -42,7 +48,7 @@ export const createAuth = (ctx: GenericCtx<DataModel>) => {
emailVerification: { emailVerification: {
sendOnSignUp: true, sendOnSignUp: true,
sendVerificationEmail: async ({ user, url }) => { sendVerificationEmail: async ({ user, url }) => {
const verificationUrl = new URL(url); const verificationUrl = toAuthAppUrl(url);
if (appUrl) { if (appUrl) {
verificationUrl.searchParams.set("callbackURL", `${appUrl}/dashboard`); verificationUrl.searchParams.set("callbackURL", `${appUrl}/dashboard`);
@@ -92,7 +98,7 @@ export const createAuth = (ctx: GenericCtx<DataModel>) => {
return; return;
} }
const magicLinkUrl = new URL(url); const magicLinkUrl = toAuthAppUrl(url);
magicLinkUrl.searchParams.set("callbackURL", signInRedirectUrl); magicLinkUrl.searchParams.set("callbackURL", signInRedirectUrl);
magicLinkUrl.searchParams.set("errorCallbackURL", `${authAppUrl}/auth/sign-in`); magicLinkUrl.searchParams.set("errorCallbackURL", `${authAppUrl}/auth/sign-in`);