Refactor API authentication.

2026-02-14 09:35:36 +01:00 · 2022-10-12 13:11:44 -07:00 · 2022-10-12 13:11:44 -07:00 · 5a4fc96ebc
commit 5a4fc96ebc
parent c33729e185
13 changed files with 71 additions and 73 deletions
--- a/pages/api/websites/[id]/active.js
+++ b/pages/api/websites/[id]/active.js
@ -1,12 +1,13 @@
 import { methodNotAllowed, ok, unauthorized } from 'next-basics';
 import { allowQuery } from 'lib/auth';
-import { useCors } from 'lib/middleware';
+import { useAuth, useCors } from 'lib/middleware';
 import { getActiveVisitors } from 'queries';

 export default async (req, res) => {
-  if (req.method === 'GET') {
-    await useCors(req, res);
+  await useCors(req, res);
+  await useAuth(req, res);

+  if (req.method === 'GET') {
    if (!(await allowQuery(req))) {
      return unauthorized(res);
    }