diff options
Diffstat (limited to 'docker/middleware.ts')
| -rw-r--r-- | docker/middleware.ts | 78 |
1 files changed, 78 insertions, 0 deletions
diff --git a/docker/middleware.ts b/docker/middleware.ts new file mode 100644 index 0000000..4b189df --- /dev/null +++ b/docker/middleware.ts @@ -0,0 +1,78 @@ +import { type NextRequest, NextResponse } from 'next/server'; + +export const config = { + matcher: '/:path*', +}; + +const TRACKER_PATH = '/script.js'; +const COLLECT_PATH = '/api/send'; +const LOGIN_PATH = '/login'; + +const apiHeaders = { + 'Access-Control-Allow-Origin': '*', + 'Access-Control-Allow-Headers': '*', + 'Access-Control-Allow-Methods': 'GET, DELETE, POST, PUT', + 'Access-Control-Max-Age': process.env.CORS_MAX_AGE || '86400', + 'Cache-Control': 'no-cache', +}; + +const trackerHeaders = { + 'Access-Control-Allow-Origin': '*', + 'Cache-Control': 'public, max-age=86400, must-revalidate', +}; + +function customCollectEndpoint(request: NextRequest) { + const collectEndpoint = process.env.COLLECT_API_ENDPOINT; + + if (collectEndpoint) { + const url = request.nextUrl.clone(); + + if (url.pathname.endsWith(collectEndpoint)) { + url.pathname = COLLECT_PATH; + return NextResponse.rewrite(url, { headers: apiHeaders }); + } + } +} + +function customScriptName(request: NextRequest) { + const scriptName = process.env.TRACKER_SCRIPT_NAME; + + if (scriptName) { + const url = request.nextUrl.clone(); + const names = scriptName.split(',').map(name => name.trim().replace(/^\/+/, '')); + + if (names.find(name => url.pathname.endsWith(name))) { + url.pathname = TRACKER_PATH; + return NextResponse.rewrite(url, { headers: trackerHeaders }); + } + } +} + +function customScriptUrl(request: NextRequest) { + const scriptUrl = process.env.TRACKER_SCRIPT_URL; + + if (scriptUrl && request.nextUrl.pathname.endsWith(TRACKER_PATH)) { + return NextResponse.rewrite(scriptUrl, { headers: trackerHeaders }); + } +} + +function disableLogin(request: NextRequest) { + const loginDisabled = process.env.DISABLE_LOGIN; + + if (loginDisabled && request.nextUrl.pathname.endsWith(LOGIN_PATH)) { + return new NextResponse('Access denied', { status: 403 }); + } +} + +export default function middleware(req: NextRequest) { + const fns = [customCollectEndpoint, customScriptName, customScriptUrl, disableLogin]; + + for (const fn of fns) { + const res = fn(req); + if (res) { + return res; + } + } + + return NextResponse.next(); +} |