Middleware authentication

Authentication Middleware used protecting routes based on signed cookies. An example of how to use this middleware can be found at /authentication.

Show Code

import type { Context, Env } from "hono";
import { getSignedCookie } from "hono/cookie";
import { createMiddleware } from "hono/factory";

export const USER_ID_COOKIE = "userId";

export type AuthEnvironment = {
  COOKIE_SECRET: string;
};

export type AuthVariables = {
  userId: string | undefined;
};

export const authenticationMiddleware = createMiddleware<{
  Bindings: AuthEnvironment;
  Variables: AuthVariables;
}>(async (c, next) => {
  const userId = await getSignedCookie(c, c.env.COOKIE_SECRET, "userId");
  c.set("userId", userId || undefined);

  return next();
});

export const requireAuthentication = <HonoEnv>({
  redirect,
}: { redirect: string | ((c: Context) => string) }) =>
  createMiddleware<
    HonoEnv & {
      Bindings: any;
      Variables: {
        userId: string;
      };
    }
  >(async (c, next) => {
    if (!c.get("userId")) {
      return c.redirect(
        typeof redirect === "function" ? redirect(c) : redirect,
      );
    }
    return next();
  });