feat: 通常ユーザーがアクセスできないページにアクセスされたときにリダイレクトするように

GiganticMinecraft · Mar 3, 2024 · 0c0795f · 0c0795f
1 parent 6d7162f
commit 0c0795f
Show file tree

Hide file tree

Showing 7 changed files with 76 additions and 23 deletions.
diff --git a/src/app/admin/forms/create/page.tsx b/src/app/admin/forms/create/page.tsx
@@ -1,11 +1,20 @@
+import { isRight } from 'fp-ts/lib/Either';
+import { redirect } from 'next/navigation';
 import DashboardMenu from '@/components/DashboardMenu';
 import NavBar from '@/components/NavBar';
 import { CreateFormComponent } from '@/features/form/components/CreateForm';
 import { getCachedToken } from '@/features/user/api/mcToken';
+import { getUser } from '@/features/user/api/user';
 import styles from '../../../page.module.css';
 
 const Home = async () => {
   const token = (await getCachedToken()) ?? '';
+  const user = await getUser(token);
+
+  if (isRight(user) && user.right.role == 'STANDARD_USER') {
+    redirect('/forbidden');
+  }
+
   return (
     <main className={styles['main']}>
       <NavBar />

diff --git a/src/app/admin/forms/page.tsx b/src/app/admin/forms/page.tsx
@@ -1,4 +1,5 @@
 import { isRight } from 'fp-ts/lib/Either';
+import { redirect } from 'next/navigation';
 import { redirectOrDoNothing } from '@/app/error/RedirectByErrorResponse';
 import DashboardMenu from '@/components/DashboardMenu';
 import NavBar from '@/components/NavBar';
@@ -8,11 +9,17 @@ import {
   Forms,
 } from '@/features/form/components/DashboardFormList';
 import { getCachedToken } from '@/features/user/api/mcToken';
+import { getUser } from '@/features/user/api/user';
 import styles from '../../page.module.css';
 
 const Home = async () => {
   const token = (await getCachedToken()) ?? '';
   const forms = await getForms(token);
+  const user = await getUser(token);
+
+  if (isRight(user) && user.right.role == 'STANDARD_USER') {
+    redirect('/forbidden');
+  }
 
   if (isRight(forms)) {
     return (

diff --git a/src/app/admin/page.tsx b/src/app/admin/page.tsx
@@ -1,15 +1,22 @@
 import { isRight } from 'fp-ts/lib/Either';
+import { redirect } from 'next/navigation';
 import DataTable from '@/components/Dashboard';
 import DashboardMenu from '@/components/DashboardMenu';
 import NavBar from '@/components/NavBar';
 import { getAllAnswers } from '@/features/form/api/form';
 import { getCachedToken } from '@/features/user/api/mcToken';
+import { getUser } from '@/features/user/api/user';
 import { redirectOrDoNothing } from '../error/RedirectByErrorResponse';
 import styles from '../page.module.css';
 
 const Home = async () => {
   const token = (await getCachedToken()) ?? '';
   const answers = await getAllAnswers(token);
+  const user = await getUser(token);
+
+  if (isRight(user) && user.right.role == 'STANDARD_USER') {
+    redirect('/forbidden');
+  }
 
   if (isRight(answers)) {
     return (

diff --git a/src/features/api/responseOrErrorResponse.ts b/src/features/api/responseOrErrorResponse.ts
@@ -0,0 +1,24 @@
+import { left, right } from 'fp-ts/lib/Either';
+import type { Either } from 'fp-ts/lib/Either';
+
+export type ErrorResponse =
+  | 'Unauhorization'
+  | 'Forbidden'
+  | 'InternalError'
+  | 'UnknownError';
+
+export async function responseJsonOrErrorResponse<T>(
+  response: Response
+): Promise<Either<ErrorResponse, T>> {
+  if (response.ok) {
+    return right((await response.json()) as T);
+  } else if (response.status == 401) {
+    return left('Unauhorization');
+  } else if (response.status == 403) {
+    return left('Forbidden');
+  } else if (response.status == 500) {
+    return left('InternalError');
+  } else {
+    return left('UnknownError');
+  }
+}
diff --git a/src/features/form/api/form.ts b/src/features/form/api/form.ts
@@ -1,13 +1,14 @@
 'use server';
 
-import { left, right } from 'fp-ts/lib/Either';
+import { responseJsonOrErrorResponse } from '@/features/api/responseOrErrorResponse';
 import type {
   BatchAnswer,
   Form,
   FormQuestion,
   MinimumForm,
   Visibility,
 } from '../types/formSchema';
+import type { ErrorResponse } from '@/features/api/responseOrErrorResponse';
 import type { Either } from 'fp-ts/lib/Either';
 
 const apiServerUrl = 'http://localhost:9000';
@@ -108,28 +109,6 @@ interface Questions {
   isRequired: boolean;
 }
 
-export type ErrorResponse =
-  | 'Unauhorization'
-  | 'Forbidden'
-  | 'InternalError'
-  | 'UnknownError';
-
-async function responseJsonOrErrorResponse<T>(
-  response: Response
-): Promise<Either<ErrorResponse, T>> {
-  if (response.ok) {
-    return right((await response.json()) as T);
-  } else if (response.status == 401) {
-    return left('Unauhorization');
-  } else if (response.status == 403) {
-    return left('Forbidden');
-  } else if (response.status == 500) {
-    return left('InternalError');
-  } else {
-    return left('UnknownError');
-  }
-}
-
 export const createForm = async (
   token: string,
   formTitle: string,

diff --git a/src/features/user/api/user.ts b/src/features/user/api/user.ts
@@ -0,0 +1,18 @@
+'use server';
+
+import { responseJsonOrErrorResponse } from '@/features/api/responseOrErrorResponse';
+import type { User } from '../types/userSchema';
+
+const apiServerUrl = 'http://localhost:9000';
+
+export const getUser = async (token: string) => {
+  const response = await fetch(`${apiServerUrl}/users`, {
+    method: 'GET',
+    headers: {
+      Accept: 'application/json',
+      Authorization: `Bearer ${token}`,
+    },
+  });
+
+  return responseJsonOrErrorResponse<User>(response);
+};
diff --git a/src/features/user/types/userSchema.ts b/src/features/user/types/userSchema.ts
@@ -0,0 +1,9 @@
+import { z } from 'zod';
+
+export const userSchema = z.object({
+  uuid: z.string().uuid(),
+  name: z.string(),
+  role: z.enum(['ADMINISTRATOR', 'STANDARD_USER']),
+});
+
+export type User = z.infer<typeof userSchema>;