Add Better Auth admin authentication

2026-06-04 12:05:07 +02:00
parent 0f10bd6400
commit e660ec24aa
41 changed files with 2225 additions and 284 deletions
--- a/tests/route-guards.test.ts
+++ b/tests/route-guards.test.ts
@@ -1,18 +1,39 @@
 import assert from "node:assert/strict";
 import test from "node:test";

-import { getDashboardRedirectPath } from "../lib/route-guards";
+import {
+  getDashboardRedirectPath,
+  shouldRedirectDashboardRequest,
+} from "../lib/route-guards";

-test("getDashboardRedirectPath sends guests back to the auth entry", () => {
-  assert.equal(getDashboardRedirectPath(null), "/");
+test("getDashboardRedirectPath keeps authenticated users on dashboard", () => {
+  assert.equal(getDashboardRedirectPath(true), null);
 });

-test("getDashboardRedirectPath lets authenticated mock users stay on dashboard", () => {
+test("getDashboardRedirectPath redirects unauthenticated users to the login page", () => {
+  assert.equal(getDashboardRedirectPath(false), "/login");
+});
+
+test("shouldRedirectDashboardRequest protects dashboard paths without authentication", () => {
  assert.equal(
-    getDashboardRedirectPath({
-      name: "Matthias Meister",
-      email: "matthias@webdev-pipeline.local",
-    }),
-    null,
+    shouldRedirectDashboardRequest("/dashboard", false),
+    true,
+  );
+  assert.equal(
+    shouldRedirectDashboardRequest("/dashboard/leads", false),
+    true,
  );
 });
+
+test("shouldRedirectDashboardRequest allows non-dashboard paths without authentication", () => {
+  assert.equal(
+    shouldRedirectDashboardRequest("/audit/example", false),
+    false,
+  );
+  assert.equal(shouldRedirectDashboardRequest("/", false), false);
+});
+
+test("shouldRedirectDashboardRequest allows authenticated dashboard sessions", () => {
+  assert.equal(shouldRedirectDashboardRequest("/dashboard", true), false);
+  assert.equal(shouldRedirectDashboardRequest("/dashboard/audit", true), false);
+});