expressjs -> nextjs

2026-03-27 19:50:53 +01:00
parent bcaec8636d
commit 8b937eee72
34 changed files with 3769 additions and 3078 deletions
--- a/nextjs/proxy.js
+++ b/nextjs/proxy.js
@@ -0,0 +1,40 @@
+import { NextResponse } from 'next/server';
+
+const csrfCookieName = 'csrf';
+const cookieSecure = process.env.COOKIE_SECURE === 'true';
+
+function createToken() {
+  const bytes = new Uint8Array(32);
+  crypto.getRandomValues(bytes);
+  return Array.from(bytes, (byte) => byte.toString(16).padStart(2, '0')).join('');
+}
+
+export function proxy(request) {
+  const token = request.cookies.get(csrfCookieName)?.value;
+  if (token) {
+    return NextResponse.next();
+  }
+
+  const nextToken = createToken();
+  const requestHeaders = new Headers(request.headers);
+  requestHeaders.set('x-csrf-token', nextToken);
+
+  const response = NextResponse.next({
+    request: {
+      headers: requestHeaders,
+    },
+  });
+
+  response.cookies.set(csrfCookieName, nextToken, {
+    httpOnly: true,
+    sameSite: 'strict',
+    secure: cookieSecure,
+    path: '/',
+  });
+
+  return response;
+}
+
+export const config = {
+  matcher: ['/manage/:path*'],
+};