deco/obs-ss-plugin-webui
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
obs-ss-plugin-webui/middleware.ts
Decobus 450b6d6044
Some checks failed
Lint and Build / build (pull_request) Failing after 2m57s
Details
Refactor build workflow by removing unnecessary dependency installation step and add new SaT configuration file with scene and source definitions
2025-07-20 13:18:12 -04:00

45 lines
No EOL
1.5 KiB
TypeScript
Raw Blame History

import { NextRequest, NextResponse } from 'next/server';
export function middleware(request: NextRequest) {
// Only protect API routes
if (request.nextUrl.pathname.startsWith('/api/')) {
// Allow OPTIONS requests for CORS preflight
if (request.method === 'OPTIONS') {
return NextResponse.next();
}
// Check for API key in header
const apiKey = request.headers.get('x-api-key');
const validKey = process.env.API_KEY;
// If API_KEY is not set in environment, skip authentication (development mode)
if (!validKey) {
console.warn('API_KEY not set in environment variables. API endpoints are unprotected!');
return NextResponse.next();
}
// Skip authentication for localhost/internal requests (optional security)
const host = request.headers.get('host');
if (host && (host.startsWith('localhost') || host.startsWith('127.0.0.1') || host.startsWith('192.168.'))) {
// Don't log for frequently polled endpoints to reduce noise
if (!request.nextUrl.pathname.includes('/api/obsStatus')) {
console.log('Allowing internal network access without API key');
}
return NextResponse.next();
}
// Validate API key for external requests
if (!apiKey || apiKey !== validKey) {
return NextResponse.json(
{ error: 'Unauthorized. Valid API key required.' },
{ status: 401 }
);
}
}
return NextResponse.next();
}
export const config = {
matcher: '/api/:path*'
};
Reference in a new issue View git blame Copy permalink