Building a middleware with Nextjs
Published on 2024-08-14
Browse:378
In this short article, i will be writing about how to build a middleware with nextjs.
I recently built a full blown backend service with nextjs, and i was really blown away with how far gone nextjs is.
You need to have basic knowledge of javascript and nodejs to follow this article.
To get started, you need to
1. Create a nextjs project from your terminal using the command below
npx create-next-app@latest
After running this command, you will get some prompt to configure your project, do that.
After creating the project,
2. Install necessary dependencies by running npm install in your terminal
We will be installing just one package library for authentication, which is jose, an alternative could have been jsonwebtoken, but nextjs middleware runs on the browser, so the edge runtime doesn't implement a bunch of Node.js APIs
3. Start your project in development mode using the command below
npm run dev
4. Create a middleware.js file
Create a middleware.js file at the root of your project, if you're using the /src directory, create the file inside the /src directory
5. Export a middleware function from the file
// /middleware.js
export const middleware = async (req) => {
try {
} catch(error){
console.log(error)
}
}
6. Extract token from request header
// /middleware.js
import { NextResponse } from 'next/server'
export const middleware = async (req) => {
try {
const header = req.headers.get('authorization');
if(!header) return NextResponse.json({
status:'error'
statusCode: 400,
message:'unauthenticated'
})
const token = header.split(" ")[1];
if(!token) return NextResponse.json({
status:'error'
statusCode: 401,
message:'You are not logged in'
})
} catch(error){
console.log(error)
}
}
7. Verify the token using jose
// /middleware.js
import { NextResponse } from 'next/server';
import * as jose from 'jose'
export const middleware = async (req) => {
try {
const header = req.headers.get('authorization');
if(!header) return NextResponse.json({
status:'error'
statusCode: 400,
message:'unauthenticated'
})
const token = header.split(" ")[1];
if(!token) return NextResponse.json({
status:'error'
statusCode: 401,
message:'You are not logged in'
})
const { payload } = await jose.jwtVerify(
token,
new TextEncoder().encode(process.env.NEXT_PUBLIC_JWT_KEY)
);
// your encoded data will be inside the payload object.
} catch(error){
console.log(error)
}
}
8. Extract data from verified token and set it in the request header
// /middleware.js
import { NextResponse } from 'next/server';
import * as jose from 'jose'
export const middleware = async (req) => {
try {
const header = req.headers.get('authorization');
if(!header) return NextResponse.json({
status:'error'
statusCode: 400,
message:'unauthenticated'
})
const token = header.split(" ")[1];
if(!token) return NextResponse.json({
status:'error'
statusCode: 401,
message:'You are not logged in'
})
const { payload } = await jose.jwtVerify(
token,
new TextEncoder().encode(process.env.NEXT_PUBLIC_JWT_KEY)
);
const requestHeaders = new Headers(req.headers)
requestHeaders.set('user', payload.id)
} catch(error){
console.log(error)
}
}
9. Call the next() function and pass the updated request header
// /middleware.js
import { NextResponse } from 'next/server';
import * as jose from 'jose'
export const middleware = async (req) => {
try {
const header = req.headers.get('authorization');
if(!header) return NextResponse.json({
status:'error'
statusCode: 400,
message:'unauthenticated'
})
const token = header.split(" ")[1];
if(!token) return NextResponse.json({
status:'error'
statusCode: 401,
message:'You are not logged in'
})
const { payload } = await jose.jwtVerify(
token,
new TextEncoder().encode(process.env.NEXT_PUBLIC_JWT_KEY)
);
const requestHeaders = new Headers(req.headers)
requestHeaders.set('user', payload.id)
return NextResponse.next({
request: {
headers: requestHeaders
}
})
} catch(error){
console.log(error)
}
}
10. Finally, you need to export a config object from the middleware file that contains configurations about the routes you want to protect.
// /middleware.js
import { NextResponse } from 'next/server';
import * as jose from 'jose'
export const config = {
matcher:[
// contain list of routes you want to protect, e.g /api/users/:path*
]
}
export const middleware = async (req) => {
try {
const header = req.headers.get('authorization');
if(!header) return NextResponse.json({
status:'error'
statusCode: 400,
message:'unauthenticated'
})
const token = header.split(" ")[1];
if(!token) return NextResponse.json({
status:'error'
statusCode: 401,
message:'You are not logged in'
})
const { payload } = await jose.jwtVerify(
token,
new TextEncoder().encode(process.env.NEXT_PUBLIC_JWT_KEY)
);
const requestHeaders = new Headers(req.headers)
requestHeaders.set('user', payload.id)
return NextResponse.next({
request: {
headers: requestHeaders
}
})
} catch(error){
console.log(error)
}
}
I hope you find this 10 steps helpful, let me know what you think about this method in the comment section, and feel free to share if a better way to achieve this too.
Thank you.
Release Statement
This article is reproduced at: https://dev.to/candie_code/building-a-middleware-with-nextjs-19ii?1 If there is any infringement, please contact [email protected] to delete it
Latest tutorial
More>
-
Why Isn\'t Padding Working in Safari and IE Select Lists?Padding Not Displaying in Select Lists in Safari and IEDespite the lack of restrictions in the W3 specification, padding in select boxes is not suppor...Programming Published on 2024-11-05 -
The Ultimate Guide to Create Custom Annotations in Spring BootSuch annotations fill the entire project in Spring Boot. But do you know what problems these annotations solve? Why were custom annotations introduce...Programming Published on 2024-11-05
-
Why Elixir is better than Node.js for Asynchronous Processing?Simple answer: Node.js is single-threaded and splits that single thread to simulate concurrency, while Elixir takes advantage of the concurrency and p...Programming Published on 2024-11-05
-
How Can AngularJS $watch Replace Timers in Dynamic Navigation Height Adjustment?Avoiding Timers in Height Watching for AngularJSAngularJS programmers often face the challenge of responsive navigation when the navigation height is ...Programming Published on 2024-11-05
-
Go from Zero to Web Developer: Mastering the Fundamentals of PHPMastering the basics of PHP is essential: Install PHP Create PHP files Run code Understand variables and data types Use expressions and operators Cre...Programming Published on 2024-11-05
-
Buffers: Node.jsSimple Guide to Buffers in Node.js A Buffer in Node.js is used to handle raw binary data, which is useful when working with streams, files, o...Programming Published on 2024-11-05
-
Mastering Version Management in Node.jsAs developers, we frequently encounter projects that demand different Node.js versions. This scenario is a pitfall for both fresh and experienced deve...Programming Published on 2024-11-05
-
How to Embed Git Revision Information in Go Binaries for Troubleshooting?Determining Git Revision in Go BinariesWhen deploying code, it can be helpful to associate binaries with the git revision they were built from for tro...Programming Published on 2024-11-05
-
Common HTML Tags: A erspectiveHTML (HyperText Markup Language) forms the foundation of web development, serving as the structure for every webpage on the internet. By understanding...Programming Published on 2024-11-05
-
CSS Media QueriesEnsuring that websites function seamlessly across various devices is more critical than ever. With users accessing websites from desktops, laptops, ta...Programming Published on 2024-11-05
-
Understanding Hoisting in JavaScript: A Comprehensive GuideHoisting in JavaScript Hoisting is a behavior in which variable and function declarations are moved (or "hoisted") to the top of th...Programming Published on 2024-11-05
-
Integrating Stripe Into A One-Product Django Python ShopIn the first part of this series, we created a Django online shop with htmx. In this second part, we'll handle orders using Stripe. What We'll...Programming Published on 2024-11-05
-
Tips for testing queued jobs in LaravelWhen working with Laravel applications, it’s common to encounter scenarios where a command needs to perform an expensive task. To avoid blocking the m...Programming Published on 2024-11-05
-
How to create a Human-Level Natural Language Understanding (NLU) SystemScope: Creating an NLU system that fully understands and processes human languages in a wide range of contexts, from conversations to literature. ...Programming Published on 2024-11-05
-
How to Iterate an ArrayList Inside a HashMap Using JSTL?Iterating an ArrayList Inside a HashMap Using JSTLIn web development, JSTL (JavaServer Pages Standard Tag Library) provides a set of tags for simplify...Programming Published on 2024-11-05
Study Chinese
- 1 How do you say "walk" in Chinese? 走路 Chinese pronunciation, 走路 Chinese learning
- 2 How do you say "take a plane" in Chinese? 坐飞机 Chinese pronunciation, 坐飞机 Chinese learning
- 3 How do you say "take a train" in Chinese? 坐火车 Chinese pronunciation, 坐火车 Chinese learning
- 4 How do you say "take a bus" in Chinese? 坐车 Chinese pronunciation, 坐车 Chinese learning
- 5 How to say drive in Chinese? 开车 Chinese pronunciation, 开车 Chinese learning
- 6 How do you say swimming in Chinese? 游泳 Chinese pronunciation, 游泳 Chinese learning
- 7 How do you say ride a bicycle in Chinese? 骑自行车 Chinese pronunciation, 骑自行车 Chinese learning
- 8 How do you say hello in Chinese? 你好Chinese pronunciation, 你好Chinese learning
- 9 How do you say thank you in Chinese? 谢谢Chinese pronunciation, 谢谢Chinese learning
- 10 How to say goodbye in Chinese? 再见Chinese pronunciation, 再见Chinese learning
