add Basic Authentication support in middleware and update .env.example

FunTechInc · roku-ft · Mar 11, 2025 · Mar 11, 2025 · Mar 11, 2025 · 75ac8350ea2b0dfc0c3eaafade297eeb625fc987
commit 75ac8350ea2b0dfc0c3eaafade297eeb625fc987
diff --git a/.env.example b/.env.example
@@ -1,3 +1,6 @@
 API_KEY="SOME_APIKEY"
 SERVICE_DOMAIN=SERVCIE_DOMAIN
-NEXT_PUBLIC_SITE_URL=https://funtech.inc/
+NEXT_PUBLIC_SITE_URL=https://funtech.inc/
+# Basic認証 (以下を追加するとBasic認証が有効になります)
+# BASIC_AUTH_USERNAME=username
+# BASIC_AUTH_PASSWORD=password
diff --git a/middleware.ts b/middleware.ts
@@ -27,6 +27,33 @@ function getLocale(request: NextRequest): string | undefined {
 const PUBLIC_FILE = /\.(.*)$/;
 
 export function middleware(request: NextRequest) {
+
+   // Basic Auth
+   if (process.env.NODE_ENV !== "development" && process.env.BASIC_AUTH_USERNAME && process.env.BASIC_AUTH_PASSWORD) {      
+      const basicAuth = request.headers.get("authorization");
+
+      if (!basicAuth) {
+        return new Response("Authentication required", {
+          status: 401,
+          headers: {
+            "WWW-Authenticate": 'Basic realm="Secure Area"',
+          },
+        });
+      }
+
+      try {
+        const authValue = basicAuth.split(" ")[1];
+        const [user, pwd] = atob(authValue).split(":");
+
+        if (user !== process.env.BASIC_AUTH_USERNAME || pwd !== process.env.BASIC_AUTH_PASSWORD) {
+          return new Response("Unauthorized", { status: 401 });
+        }
+      } catch (e) {
+        return new Response("Invalid Authentication", { status: 400 });
+      }
+   }
+
+
    const pathname = request.nextUrl.pathname;
 
    // skips adding the public files