Merge pull request #875 from auth0/next-response-status

auth0 · Oct 21, 2022 · 29e36b7 · 29e36b7
2 parents a52d23f + 7d9871e
commit 29e36b7
Show file tree

Hide file tree

Showing 2 changed files with 23 additions and 1 deletion.
diff --git a/src/helpers/with-middleware-auth-required.ts b/src/helpers/with-middleware-auth-required.ts
@@ -79,7 +79,7 @@ export default function withMiddlewareAuthRequiredFactory(
         if (cookies.length || authCookies.length) {
           headers.set('set-cookie', [...authCookies, ...cookies].join(', '));
         }
-        return NextResponse.next({ ...res, headers });
+        return NextResponse.next({ ...res, status: res.status, headers });
       } else {
         return authRes;
       }

diff --git a/tests/helpers/with-middleware-auth-required.test.ts b/tests/helpers/with-middleware-auth-required.test.ts
@@ -126,6 +126,28 @@ describe('with-middleware-auth-required', () => {
     expect(middleware).toHaveBeenCalled();
   });
 
+  test('should honor redirects in custom middleware for authenticated users', async () => {
+    const middleware = jest.fn().mockImplementation(() => {
+      return NextResponse.redirect('https://example.com/redirect');
+    });
+    const res = await setup({ middleware, user: { name: 'dave' } });
+    expect(middleware).toHaveBeenCalled();
+    expect(res.status).toEqual(307);
+    expect(res.headers.get('location')).toEqual('https://example.com/redirect');
+    expect(res.headers.get('set-cookie')).toMatch(/^appSession=/);
+  });
+
+  test('should honor rewrites in custom middleware for authenticated users', async () => {
+    const middleware = jest.fn().mockImplementation(() => {
+      return NextResponse.rewrite('https://example.com/rewrite');
+    });
+    const res = await setup({ middleware, user: { name: 'dave' } });
+    expect(middleware).toHaveBeenCalled();
+    expect(res.status).toEqual(200);
+    expect(res.headers.get('x-middleware-rewrite')).toEqual('https://example.com/rewrite');
+    expect(res.headers.get('set-cookie')).toMatch(/^appSession=/);
+  });
+
   test('should set a session cookie if session is rolling', async () => {
     const res = await setup({ user: { name: 'dave' } });
     expect(res.status).toEqual(200);