nextjs: implement SSR functions to retrieve user and access token info

fief-dev · Nov 22, 2023 · fb9d7db · fb9d7db
1 parent 94d515b
commit fb9d7db
Show file tree

Hide file tree

Showing 4 changed files with 97 additions and 0 deletions.
diff --git a/nextjs/server/package.json b/nextjs/server/package.json
@@ -0,0 +1,7 @@
+{
+  "name": "@fief/fief/nextjs/server",
+  "private": true,
+  "main": "../../build/cjs/nextjs/server.js",
+  "module": "../../build/esm/nextjs/server.js",
+  "types": "../../build/esm/nextjs/server.d.ts"
+}
diff --git a/rollup.config.mjs b/rollup.config.mjs
@@ -8,6 +8,7 @@ const external = [
   'crypto',
   'jose',
   'next',
+  'next/headers',
   'next/server',
   'path-to-regexp',
   'react',
@@ -44,6 +45,7 @@ export default [
       'src/express/index.ts',
       'src/nextjs/index.ts',
       'src/nextjs/react.tsx',
+      'src/nextjs/server.ts',
     ],
     plugins: [
       typescript({
@@ -71,6 +73,7 @@ export default [
       'src/express/index.ts',
       'src/nextjs/index.ts',
       'src/nextjs/react.tsx',
+      'src/nextjs/server.ts',
     ],
     plugins: [
       typescript({

diff --git a/src/nextjs/index.ts b/src/nextjs/index.ts
@@ -144,12 +144,26 @@ export interface FiefAuthParameters {
    */
   userIdHeaderName?: string;
 
+  /**
+   * Name of the request header where user information is made available by middleware.
+   *
+   * Defaults to `X-FiefAuth-User-Info`.
+   */
+  userInfoHeaderName?: string;
+
   /**
    * Name of the request header where access token is made available by middleware.
    *
    * Defaults to `X-FiefAuth-Access-Token`.
    */
   accessTokenHeaderName?: string;
+
+  /**
+   * Name of the request header where access token information is made available by middleware.
+   *
+   * Defaults to `X-FiefAuth-Access-Token-Info`.
+   */
+  accessTokenInfoHeaderName?: string;
 }
 
 export interface PathConfig {
@@ -224,8 +238,12 @@ class FiefAuth {
 
   private userIdHeaderName: string;
 
+  private userInfoHeaderName: string;
+
   private accessTokenHeaderName: string;
 
+  private accessTokenInfoHeaderName: string;
+
   constructor(parameters: FiefAuthParameters) {
     this.client = parameters.client;
 
@@ -264,7 +282,9 @@ class FiefAuth {
     ;
 
     this.userIdHeaderName = parameters.userIdHeaderName ? parameters.userIdHeaderName : 'X-FiefAuth-User-Id';
+    this.userInfoHeaderName = parameters.userInfoHeaderName ? parameters.userInfoHeaderName : 'X-FiefAuth-User-Info';
     this.accessTokenHeaderName = parameters.accessTokenHeaderName ? parameters.accessTokenHeaderName : 'X-FiefAuth-Access-Token';
+    this.accessTokenInfoHeaderName = parameters.accessTokenInfoHeaderName ? parameters.accessTokenInfoHeaderName : 'X-FiefAuth-Access-Token-Info';
   }
 
   /**
@@ -383,6 +403,13 @@ class FiefAuth {
           if (result.accessTokenInfo) {
             requestHeaders.set(this.userIdHeaderName, result.accessTokenInfo.id);
             requestHeaders.set(this.accessTokenHeaderName, result.accessTokenInfo.access_token);
+            requestHeaders.set(
+              this.accessTokenInfoHeaderName,
+              JSON.stringify(result.accessTokenInfo),
+            );
+          }
+          if (result.user) {
+            requestHeaders.set(this.userInfoHeaderName, JSON.stringify(result.user));
           }
           return NextResponse.next({ request: { headers: requestHeaders } });
         } catch (err) {

diff --git a/src/nextjs/server.ts b/src/nextjs/server.ts
@@ -0,0 +1,60 @@
+import { headers } from 'next/headers';
+
+import { FiefAccessTokenInfo, FiefUserInfo } from '../client';
+
+/**
+ * Return the user ID set in headers by the Fief middleware, or `null` if not authenticated.
+ *
+ * This function is suitable for server-side rendering in Next.js.
+ *
+ * @param headerName - Name of the request header. Defaults to `X-FiefAuth-User-Id`.
+ * @returns The user ID, or null if not available.
+ */
+export const fiefUserId = (headerName: string = 'X-FiefAuth-User-Id'): string | null => {
+  const headersList = headers();
+  return headersList.get(headerName);
+};
+
+/**
+ * Return the user information object set in headers by the Fief middleware,
+ * or `null` if not authenticated.
+ *
+ * This function is suitable for server-side rendering in Next.js.
+ *
+ * @param headerName - Name of the request header. Defaults to `X-FiefAuth-User-Info`.
+ * @returns The user information, or null if not available.
+ */
+export const fiefUserInfo = (headerName: string = 'X-FiefAuth-User-Info'): FiefUserInfo | null => {
+  const headersList = headers();
+  const rawUserInfo = headersList.get(headerName);
+  return rawUserInfo ? JSON.parse(rawUserInfo) : null;
+};
+
+/**
+ * Return the access token set in headers by the Fief middleware,
+ * or `null` if not authenticated.
+ *
+ * This function is suitable for server-side rendering in Next.js.
+ *
+ * @param headerName - Name of the request header. Defaults to `X-FiefAuth-Access-Token`.
+ * @returns The access token, or null if not available.
+ */
+export const fiefAccessToken = (headerName: string = 'X-FiefAuth-Access-Token'): string | null => {
+  const headersList = headers();
+  return headersList.get(headerName);
+};
+
+/**
+ * Return the access token information set in headers by the Fief middleware,
+ * or `null` if not authenticated.
+ *
+ * This function is suitable for server-side rendering in Next.js.
+ *
+ * @param headerName - Name of the request header. Defaults to `X-FiefAuth-Access-Token-Info`.
+ * @returns The access token information, or null if not available.
+ */
+export const fiefAccessTokenInfo = (headerName: string = 'X-FiefAuth-Access-Token-Info'): FiefAccessTokenInfo | null => {
+  const headersList = headers();
+  const rawAccessTokenInfo = headersList.get(headerName);
+  return rawAccessTokenInfo ? JSON.parse(rawAccessTokenInfo) : null;
+};