首頁 探索 說明
註冊 登入
Code_Uwe
/
rhl-lieferscheine
1
0
複刻 0
檔案 問題管理 0 合併請求 0 Wiki
目錄樹: 49a2716b9e
分支列表 標籤列表
rhl-lieferschei...
/
app
/
api
/
auth
/
me
/
route.js

route.js 993 B
文件歷史 原始文件

1234567891011121314151617181920212223242526272829303132333435363738394041424344 
  1. // app/api/auth/me/route.js
    2. 

  2. 

  3. import { getSession } from "@/lib/auth/session";
    4. 

  4. import { withErrorHandling, json } from "@/lib/api/errors";
    5. 

  5. 

  6. /**
    7. 

  7.  * Force dynamic execution (RHL-006):
    8. 

  8.  * - auth-related response must never be cached/shared accidentally.
    9. 

  9.  */
    10. 

  10. export const dynamic = "force-dynamic";
    11. 

  11. 

  12. /**
    13. 

  13.  * GET /api/auth/me
    14. 

  14.  *
    15. 

  15.  * Purpose:
    16. 

  16.  * - Provide the current session identity for frontend consumers.
    17. 

  17.  *
    18. 

  18.  * Semantics (frontend-friendly):
    19. 

  19.  * - 200 with { user: null } when unauthenticated
    20. 

  20.  * - 200 with { user: { userId, role, branchId } } when authenticated
    21. 

  21.  *
    22. 

  22.  * This avoids using 401 as control-flow for basic "am I logged in?" checks.
    23. 

  23.  */
    24. 

  24. export const GET = withErrorHandling(
    25. 

  25. 	async function GET() {
    26. 

  26. 		const session = await getSession();
    27. 

  27. 

  28. 		if (!session) {
    29. 

  29. 			return json({ user: null }, 200);
    30. 

  30. 		}
    31. 

  31. 

  32. 		return json(
    33. 

  33. 			{
    34. 

  34. 				user: {
    35. 

  35. 					userId: session.userId,
    36. 

  36. 					role: session.role,
    37. 

  37. 					branchId: session.branchId ?? null,
    38. 

  38. 				},
    39. 

  39. 			},
    40. 

  40. 			200
    41. 

  41. 		);
    42. 

  42. 	},
    43. 

  43. 	{ logPrefix: "[api/auth/me]" }
    44. 

  44. );
    45.