* Handles invitation link redirects for unauthenticated users
( request: NextRequest, hasActiveSession: boolean )
| 163 | * Handles invitation link redirects for unauthenticated users |
| 164 | */ |
| 165 | function handleInvitationRedirects( |
| 166 | request: NextRequest, |
| 167 | hasActiveSession: boolean |
| 168 | ): NextResponse | null { |
| 169 | if (!request.nextUrl.pathname.startsWith('/invite/')) { |
| 170 | return null |
| 171 | } |
| 172 | |
| 173 | if ( |
| 174 | !hasActiveSession && |
| 175 | !request.nextUrl.pathname.endsWith('/login') && |
| 176 | !request.nextUrl.pathname.endsWith('/signup') && |
| 177 | !request.nextUrl.search.includes('callbackUrl') |
| 178 | ) { |
| 179 | const token = request.nextUrl.searchParams.get('token') |
| 180 | const inviteId = request.nextUrl.pathname.split('/').pop() |
| 181 | const callbackParam = encodeURIComponent(`/invite/${inviteId}${token ? `?token=${token}` : ''}`) |
| 182 | return NextResponse.redirect( |
| 183 | new URL(`/login?callbackUrl=${callbackParam}&invite_flow=true`, request.url) |
| 184 | ) |
| 185 | } |
| 186 | return NextResponse.next() |
| 187 | } |
| 188 | |
| 189 | /** |
| 190 | * Handles security filtering for suspicious user agents |