From 0e212d878c9f363453e1b9119f0d64fe78f86b83 Mon Sep 17 00:00:00 2001
From: "HanuCh@udhary" <137854084+hanuchaudhary@users.noreply.github.com>
Date: Mon, 13 Jan 2025 21:29:08 +0530
Subject: [PATCH] middleware fix

---
 app/actions/action.ts                   | 51 +++++++++++++++++
 app/api/auth/register/route.ts          |  3 +-
 app/api/auth/user/route.ts              |  9 +--
 components/AuthComponent/SigninForm.tsx |  6 +-
 components/header.tsx                   | 20 ++-----
 middleware.ts                           | 28 ++++-----
 package-lock.json                       | 42 ++++++++------
 package.json                            |  1 +
 store/AuthStore/useAuthStore.ts         | 21 +++----
 utils/supabase/client.ts                |  8 +++
 utils/supabase/middleware.ts            | 76 +++++++++++++++++++++++++
 utils/supabase/server.ts                | 29 ++++++++++
 12 files changed, 230 insertions(+), 64 deletions(-)
 create mode 100644 app/actions/action.ts
 create mode 100644 utils/supabase/client.ts
 create mode 100644 utils/supabase/middleware.ts
 create mode 100644 utils/supabase/server.ts

diff --git a/app/actions/action.ts b/app/actions/action.ts
new file mode 100644
index 0000000..2d6b847
--- /dev/null
+++ b/app/actions/action.ts
@@ -0,0 +1,51 @@
+'use server'
+
+import { revalidatePath } from 'next/cache'
+import { redirect } from 'next/navigation'
+import { createClient } from '@/utils/supabase/server'
+// import { signinSchema } from '@/validations/validation'
+
+// export async function login(data: { email: string, password: string }) {
+//     const supabase = await createClient()
+//     const { success, error } = signinSchema.safeParse(data);
+//     if (!success) {
+//         console.log(error);
+//         return;
+//     }
+//     // const data = {
+//     //     email: formData.get('email') as string,
+//     //     password: formData.get('password') as string,
+//     // }
+//     const { error: signInError } = await supabase.auth.signInWithPassword(data)
+//     if (signInError) {
+//         console.log(signInError);
+//         return
+//     }
+
+//     revalidatePath('/', 'layout')
+//     redirect('/dashboard');
+// }
+
+// export async function signup(formData: FormData) {
+//     const supabase = await createClient()
+//     const data = {
+//         email: formData.get('email') as string,
+//         password: formData.get('password') as string,
+//     }
+
+//     const { error } = await supabase.auth.signUp(data)
+
+//     if (error) {
+//         redirect('/error')
+//     }
+
+//     revalidatePath('/', 'layout')
+//     redirect('/')
+// }
+
+export async function signout() {
+    const supabase = await createClient();
+    await supabase.auth.signOut();
+    revalidatePath('/', 'layout');
+    redirect('/auth/signin');
+}
\ No newline at end of file
diff --git a/app/api/auth/register/route.ts b/app/api/auth/register/route.ts
index b440cdb..27588b5 100644
--- a/app/api/auth/register/route.ts
+++ b/app/api/auth/register/route.ts
@@ -1,10 +1,11 @@
 import prisma from "@/lib/database/prismaClient";
-import { supabase } from "@/lib/supabaseClient";
 import { hashPassword } from "@/utils/hashing";
+import { createClient } from "@/utils/supabase/server";
 import { signupSchema } from "@/validations/validation";
 import { NextRequest, NextResponse } from "next/server";
 
 export async function POST(request: NextRequest) {
+    const supabase = await createClient();
     const body = await request.json();
     const { email, password, fullName, leetcodeUsername, gender } = body;
     try {
diff --git a/app/api/auth/user/route.ts b/app/api/auth/user/route.ts
index 7476d17..2c46f63 100644
--- a/app/api/auth/user/route.ts
+++ b/app/api/auth/user/route.ts
@@ -1,10 +1,11 @@
 import prisma from '@/lib/database/prismaClient';
 import { NextResponse } from 'next/server';
+import { createClient } from '@/utils/supabase/server'
 
-export async function POST(request: Request) {
+export async function GET(request: Request) {
     try {
-
-        const { supabaseId } = await request.json();
+        const supabase = await createClient();
+        const supabaseId = (await supabase.auth.getUser()).data.user?.id;
         const userData = await prisma.user.findUnique({
             where: { supabaseId },
             select: {
@@ -23,7 +24,7 @@ export async function POST(request: Request) {
             return NextResponse.json({ message: 'User not found' }, { status: 404 });
         }
 
-        return NextResponse.json({ user: userData },{status: 200});
+        return NextResponse.json({ user: userData }, { status: 200 });
     } catch (err) {
         console.error('Error fetching user data:', err);
         return NextResponse.json({ message: 'Error fetching user data' }, { status: 500 });
diff --git a/components/AuthComponent/SigninForm.tsx b/components/AuthComponent/SigninForm.tsx
index 9f8565a..6c78a8a 100644
--- a/components/AuthComponent/SigninForm.tsx
+++ b/components/AuthComponent/SigninForm.tsx
@@ -33,8 +33,8 @@ import { signinSchema } from "@/validations/validation";
 type SigninFormValues = z.infer<typeof signinSchema>;
 
 export default function SigninForm() {
-  const { isSigningIn, signin, signinError } = useAuthStore();
-  const router = useRouter();
+  const router = useRouter()
+  const { isSigningIn,signin, signinError } = useAuthStore();
   const [showPassword, setShowPassword] = useState(false);
 
   const form = useForm<SigninFormValues>({
@@ -46,7 +46,7 @@ export default function SigninForm() {
   });
 
   const onSubmit = (data: SigninFormValues) => {
-    signin(data, router);
+    signin(data, router)
   };
 
   return (
diff --git a/components/header.tsx b/components/header.tsx
index 8aad36c..4f55f73 100644
--- a/components/header.tsx
+++ b/components/header.tsx
@@ -1,23 +1,22 @@
-"use client"
+"use client";
 
 import { useState } from "react";
 import Link from "next/link";
 import { Button } from "@/components/ui/button";
 import { ThemeToggle } from "@/components/theme-toggle";
 import { supabase } from "@/lib/supabaseClient";
-import { useRouter } from 'next/navigation';
+import { useRouter } from "next/navigation";
+import { signout } from "@/app/actions/action";
 
 const Navbar = ({ userId }: { userId?: string }) => {
   const [isMenuOpen, setIsMenuOpen] = useState(false);
-  const router = useRouter(); 
+  const router = useRouter();
   return (
     <header>
       <nav className="flex justify-between items-center px-6 py-4 bg-neutral-900 text-white dark:bg-neutral-800">
         <div className="flex items-center space-x-2">
           <span className="text-2xl font-bold">📓</span>
-          <span className="text-xl font-semibold">
-            LeetCodeJournal
-          </span>
+          <span className="text-xl font-semibold">LeetCodeJournal</span>
         </div>
         <div className="hidden lg:flex space-x-6">
           <Link href="/" className="hover:text-purple-400 ">
@@ -32,14 +31,7 @@ const Navbar = ({ userId }: { userId?: string }) => {
         </div>
         <div className="hidden lg:flex items-center space-x-4">
           {userId ? (
-            <Button
-              variant="destructive" 
-              onClick={() =>
-                supabase.auth
-                  .signOut()
-                  .then(() => router.push("/"))
-              }
-            >
+            <Button variant="destructive" onClick={signout}>
               Sign Out
             </Button>
           ) : (
diff --git a/middleware.ts b/middleware.ts
index 22182ab..01abe41 100644
--- a/middleware.ts
+++ b/middleware.ts
@@ -1,17 +1,19 @@
-import { NextResponse } from 'next/server';
-import { supabase } from '@/lib/supabaseClient';
+import { type NextRequest } from 'next/server'
+import { updateSession } from '@/utils/supabase/middleware'
 
-export async function middleware(req: Request) {
-    const { data: session } = await supabase.auth.getSession();
-    const { pathname } = new URL(req.url);
-
-    if (pathname.startsWith('/dashboard') && !session) {
-        return NextResponse.redirect(('/login'));
-    }
-        
-    return NextResponse.next();
+export async function middleware(request: NextRequest) {
+  return await updateSession(request)
 }
 
 export const config = {
-    matcher: ['/dashboard/:path*'],
-};
+  matcher: [
+    /*
+     * Match all request paths except for the ones starting with:
+     * - _next/static (static files)
+     * - _next/image (image optimization files)
+     * - favicon.ico (favicon file)
+     * Feel free to modify this pattern to include more paths.
+     */
+    '/((?!_next/static|_next/image|favicon.ico|.*\\.(?:svg|png|jpg|jpeg|gif|webp)$).*)',
+  ],
+}
\ No newline at end of file
diff --git a/package-lock.json b/package-lock.json
index 76f7eb5..9dd49da 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -19,6 +19,7 @@
         "@radix-ui/react-separator": "^1.1.1",
         "@radix-ui/react-slot": "^1.1.1",
         "@radix-ui/react-tabs": "^1.1.2",
+        "@supabase/ssr": "^0.5.2",
         "@types/bcryptjs": "^2.4.6",
         "axios": "^1.7.9",
         "bcryptjs": "^2.4.3",
@@ -1795,7 +1796,6 @@
       "integrity": "sha512-2dfOGsM4yZt0oS4TPiE7bD4vf7EVz7NRz/IJrV6vLg0GP7sMUx8wndv2euLGq4BjN9lUCpu6DG/uCC8j+ylwPg==",
       "deprecated": "This package is now deprecated - please use the @supabase/ssr package instead.",
       "dev": true,
-      "license": "MIT",
       "dependencies": {
         "@supabase/auth-helpers-shared": "0.7.0",
         "set-cookie-parser": "^2.6.0"
@@ -1822,7 +1822,6 @@
       "version": "2.67.3",
       "resolved": "https://registry.npmjs.org/@supabase/auth-js/-/auth-js-2.67.3.tgz",
       "integrity": "sha512-NJDaW8yXs49xMvWVOkSIr8j46jf+tYHV0wHhrwOaLLMZSFO4g6kKAf+MfzQ2RaD06OCUkUHIzctLAxjTgEVpzw==",
-      "dev": true,
       "license": "MIT",
       "dependencies": {
         "@supabase/node-fetch": "^2.6.14"
@@ -1832,7 +1831,6 @@
       "version": "2.4.4",
       "resolved": "https://registry.npmjs.org/@supabase/functions-js/-/functions-js-2.4.4.tgz",
       "integrity": "sha512-WL2p6r4AXNGwop7iwvul2BvOtuJ1YQy8EbOd0dhG1oN1q8el/BIRSFCFnWAMM/vJJlHWLi4ad22sKbKr9mvjoA==",
-      "dev": true,
       "license": "MIT",
       "dependencies": {
         "@supabase/node-fetch": "^2.6.14"
@@ -1842,7 +1840,6 @@
       "version": "2.6.15",
       "resolved": "https://registry.npmjs.org/@supabase/node-fetch/-/node-fetch-2.6.15.tgz",
       "integrity": "sha512-1ibVeYUacxWYi9i0cf5efil6adJ9WRyZBLivgjs+AUpewx1F3xPi7gLgaASI2SmIQxPoCEjAsLAzKPgMJVgOUQ==",
-      "dev": true,
       "license": "MIT",
       "dependencies": {
         "whatwg-url": "^5.0.0"
@@ -1855,7 +1852,6 @@
       "version": "1.17.9",
       "resolved": "https://registry.npmjs.org/@supabase/postgrest-js/-/postgrest-js-1.17.9.tgz",
       "integrity": "sha512-HyMOyy3t6K0/oFNDlHryOhnK4sfMNip8J0LrqJ/65NrBlHD3xOcDf4OV/5YCHI4g195ByuQ0wfmyFqIgMl3dxg==",
-      "dev": true,
       "license": "MIT",
       "dependencies": {
         "@supabase/node-fetch": "^2.6.14"
@@ -1865,7 +1861,6 @@
       "version": "2.11.2",
       "resolved": "https://registry.npmjs.org/@supabase/realtime-js/-/realtime-js-2.11.2.tgz",
       "integrity": "sha512-u/XeuL2Y0QEhXSoIPZZwR6wMXgB+RQbJzG9VErA3VghVt7uRfSVsjeqd7m5GhX3JR6dM/WRmLbVR8URpDWG4+w==",
-      "dev": true,
       "license": "MIT",
       "dependencies": {
         "@supabase/node-fetch": "^2.6.14",
@@ -1874,11 +1869,22 @@
         "ws": "^8.18.0"
       }
     },
+    "node_modules/@supabase/ssr": {
+      "version": "0.5.2",
+      "resolved": "https://registry.npmjs.org/@supabase/ssr/-/ssr-0.5.2.tgz",
+      "integrity": "sha512-n3plRhr2Bs8Xun1o4S3k1CDv17iH5QY9YcoEvXX3bxV1/5XSasA0mNXYycFmADIdtdE6BG9MRjP5CGIs8qxC8A==",
+      "dependencies": {
+        "@types/cookie": "^0.6.0",
+        "cookie": "^0.7.0"
+      },
+      "peerDependencies": {
+        "@supabase/supabase-js": "^2.43.4"
+      }
+    },
     "node_modules/@supabase/storage-js": {
       "version": "2.7.1",
       "resolved": "https://registry.npmjs.org/@supabase/storage-js/-/storage-js-2.7.1.tgz",
       "integrity": "sha512-asYHcyDR1fKqrMpytAS1zjyEfvxuOIp1CIXX7ji4lHHcJKqyk+sLl/Vxgm4sN6u8zvuUtae9e4kDxQP2qrwWBA==",
-      "dev": true,
       "license": "MIT",
       "dependencies": {
         "@supabase/node-fetch": "^2.6.14"
@@ -1888,7 +1894,6 @@
       "version": "2.47.11",
       "resolved": "https://registry.npmjs.org/@supabase/supabase-js/-/supabase-js-2.47.11.tgz",
       "integrity": "sha512-1gD7rxZFY0wl3abzJ75H62bi4wtkeOxHM0niu1/fIfWsVEDDLOfzfhgD0uTOwFx51Y+/s7+b9EHr3dhWwTYNDQ==",
-      "dev": true,
       "license": "MIT",
       "dependencies": {
         "@supabase/auth-js": "2.67.3",
@@ -1919,6 +1924,11 @@
       "resolved": "https://registry.npmjs.org/@types/bcryptjs/-/bcryptjs-2.4.6.tgz",
       "integrity": "sha512-9xlo6R2qDs5uixm0bcIqCeMCE6HiQsIyel9KQySStiyqNl2tnj2mP3DX1Nf56MD6KMenNNlBBsy3LJ7gUEQPXQ=="
     },
+    "node_modules/@types/cookie": {
+      "version": "0.6.0",
+      "resolved": "https://registry.npmjs.org/@types/cookie/-/cookie-0.6.0.tgz",
+      "integrity": "sha512-4Kh9a6B2bQciAhf7FSuMRRkUWecJgJu9nPnx3yzpsfXX/c50REIqpHY4C82bXP90qrLtXtkDxTZosYO3UpOwlA=="
+    },
     "node_modules/@types/estree": {
       "version": "1.0.6",
       "resolved": "https://registry.npmjs.org/@types/estree/-/estree-1.0.6.tgz",
@@ -1944,7 +1954,6 @@
       "version": "20.17.10",
       "resolved": "https://registry.npmjs.org/@types/node/-/node-20.17.10.tgz",
       "integrity": "sha512-/jrvh5h6NXhEauFFexRin69nA0uHJ5gwk4iDivp/DeoEua3uwCUto6PC86IpRITBOs4+6i2I56K5x5b6WYGXHA==",
-      "dev": true,
       "license": "MIT",
       "dependencies": {
         "undici-types": "~6.19.2"
@@ -1954,7 +1963,6 @@
       "version": "1.6.6",
       "resolved": "https://registry.npmjs.org/@types/phoenix/-/phoenix-1.6.6.tgz",
       "integrity": "sha512-PIzZZlEppgrpoT2QgbnDU+MMzuR6BbCjllj0bM70lWoejMeNJAxCchxnv7J3XFkI8MpygtRpzXrIlmWUBclP5A==",
-      "dev": true,
       "license": "MIT"
     },
     "node_modules/@types/react": {
@@ -1981,7 +1989,6 @@
       "version": "8.5.13",
       "resolved": "https://registry.npmjs.org/@types/ws/-/ws-8.5.13.tgz",
       "integrity": "sha512-osM/gWBTPKgHV8XkTunnegTRIsvF6owmf5w+JtAfOw472dptdm0dlGv4xCt6GwQRcC2XVOvvRE/0bAoQcL2QkA==",
-      "dev": true,
       "license": "MIT",
       "dependencies": {
         "@types/node": "*"
@@ -2858,6 +2865,14 @@
       "dev": true,
       "license": "MIT"
     },
+    "node_modules/cookie": {
+      "version": "0.7.2",
+      "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.7.2.tgz",
+      "integrity": "sha512-yki5XnKuf750l50uGTllt6kKILY4nQ1eNIQatoXEByZ5dWgnKqbnqmTrBE5B4N7lrMJKQ2ytWMiTO2o0v6Ew/w==",
+      "engines": {
+        "node": ">= 0.6"
+      }
+    },
     "node_modules/cross-spawn": {
       "version": "7.0.6",
       "resolved": "https://registry.npmjs.org/cross-spawn/-/cross-spawn-7.0.6.tgz",
@@ -6748,7 +6763,6 @@
       "version": "0.0.3",
       "resolved": "https://registry.npmjs.org/tr46/-/tr46-0.0.3.tgz",
       "integrity": "sha512-N3WMsuqV66lT30CrXNbEjx4GEwlow3v6rr4mCcv6prnfwhS01rkgyFdjPNBYd9br7LpXV1+Emh01fHnq2Gdgrw==",
-      "dev": true,
       "license": "MIT"
     },
     "node_modules/ts-api-utils": {
@@ -6917,7 +6931,6 @@
       "version": "6.19.8",
       "resolved": "https://registry.npmjs.org/undici-types/-/undici-types-6.19.8.tgz",
       "integrity": "sha512-ve2KP6f/JnbPBFyobGHuerC9g1FYGn/F8n1LWTwNxCEzd6IfqTwUQcNXgEtmmQ6DlRrC1hrSrBnCZPokRrDHjw==",
-      "dev": true,
       "license": "MIT"
     },
     "node_modules/uri-js": {
@@ -6983,14 +6996,12 @@
       "version": "3.0.1",
       "resolved": "https://registry.npmjs.org/webidl-conversions/-/webidl-conversions-3.0.1.tgz",
       "integrity": "sha512-2JAn3z8AR6rjK8Sm8orRC0h/bcl/DqL7tRPdGZ4I1CjdF+EaMLmYxBHyXuKL849eucPFhvBoxMsflfOb8kxaeQ==",
-      "dev": true,
       "license": "BSD-2-Clause"
     },
     "node_modules/whatwg-url": {
       "version": "5.0.0",
       "resolved": "https://registry.npmjs.org/whatwg-url/-/whatwg-url-5.0.0.tgz",
       "integrity": "sha512-saE57nupxk6v3HY35+jzBwYa0rKSy0XR8JSxZPwgLr7ys0IBzhGviA1/TUGJLmSVqs8pb9AnvICXEuOHLprYTw==",
-      "dev": true,
       "license": "MIT",
       "dependencies": {
         "tr46": "~0.0.3",
@@ -7202,7 +7213,6 @@
       "version": "8.18.0",
       "resolved": "https://registry.npmjs.org/ws/-/ws-8.18.0.tgz",
       "integrity": "sha512-8VbfWfHLbbwu3+N6OKsOMpBdT4kXPDDB9cJk2bJ6mh9ucxdlnNvH1e+roYkKmN9Nxw2yjz7VzeO9oOz2zJ04Pw==",
-      "dev": true,
       "license": "MIT",
       "engines": {
         "node": ">=10.0.0"
diff --git a/package.json b/package.json
index e81e514..70e331b 100644
--- a/package.json
+++ b/package.json
@@ -20,6 +20,7 @@
     "@radix-ui/react-separator": "^1.1.1",
     "@radix-ui/react-slot": "^1.1.1",
     "@radix-ui/react-tabs": "^1.1.2",
+    "@supabase/ssr": "^0.5.2",
     "@types/bcryptjs": "^2.4.6",
     "axios": "^1.7.9",
     "bcryptjs": "^2.4.3",
diff --git a/store/AuthStore/useAuthStore.ts b/store/AuthStore/useAuthStore.ts
index b86b38a..ff27af9 100644
--- a/store/AuthStore/useAuthStore.ts
+++ b/store/AuthStore/useAuthStore.ts
@@ -1,5 +1,4 @@
-import prisma from '@/lib/database/prismaClient';
-import { supabase } from '@/lib/supabaseClient';
+import { createClient } from '@/utils/supabase/client'
 import axios from 'axios';
 import { create } from 'zustand'
 
@@ -15,12 +14,12 @@ interface User {
 interface authStore {
     isSigningIn: boolean;
     signinError: string | null;
-    signin: (signinMetaData: { email: string, password: string }, router: any) => void;
+    signin: (signinMetaData: { email: string, password: string },router: any) => void;
     logout: () => void;
 
     signupError: string | null;
     isSigningUp: boolean;
-    signup: (signupMetaData: User, router: any) => void;
+    signup: (signupMetaData: User,router: any) => void;
     user: User | null;
 
     authUserLoading: boolean;
@@ -31,7 +30,8 @@ interface authStore {
 export const useAuthStore = create<authStore>((set) => ({
     signinError: null,
     isSigningIn: false,
-    signin: async (signinMetaData, router) => {
+    signin: async (signinMetaData,router) => {
+        const supabase = createClient()
         set({ isSigningIn: true })
         try {
             const { data, error: loginError } =
@@ -62,7 +62,8 @@ export const useAuthStore = create<authStore>((set) => ({
 
     signupError: null,
     isSigningUp: false,
-    signup: async (signupMetaData, router) => {
+    signup: async (signupMetaData,router) => {
+
         set({ isSigningUp: true });
         try {
             const response = await axios.post('/api/auth/register', signupMetaData);
@@ -86,13 +87,7 @@ export const useAuthStore = create<authStore>((set) => ({
     fetchAuthUser: async () => {
         try {
             set({ authUserLoading: true });
-            const { data: sessionData, error: sessionError } =
-                await supabase.auth.getSession();
-            const supabaseId = sessionData.session?.user.id;
-
-            const response = await axios.post('/api/auth/user', {
-                supabaseId,
-            });
+            const response = await axios.get('/api/auth/user');
             if (response.status === 200) {
                 set({ authUser: response.data.user });
             }
diff --git a/utils/supabase/client.ts b/utils/supabase/client.ts
new file mode 100644
index 0000000..78ff395
--- /dev/null
+++ b/utils/supabase/client.ts
@@ -0,0 +1,8 @@
+import { createBrowserClient } from '@supabase/ssr'
+
+export function createClient() {
+  return createBrowserClient(
+    process.env.NEXT_PUBLIC_SUPABASE_URL!,
+    process.env.NEXT_PUBLIC_SUPABASE_ANON_KEY!
+  )
+}
\ No newline at end of file
diff --git a/utils/supabase/middleware.ts b/utils/supabase/middleware.ts
new file mode 100644
index 0000000..3ab112a
--- /dev/null
+++ b/utils/supabase/middleware.ts
@@ -0,0 +1,76 @@
+import { createServerClient } from '@supabase/ssr'
+import { NextResponse, type NextRequest } from 'next/server'
+
+export async function updateSession(request: NextRequest) {
+  let supabaseResponse = NextResponse.next({
+    request,
+  })
+
+  const supabase = createServerClient(
+    process.env.NEXT_PUBLIC_SUPABASE_URL!,
+    process.env.NEXT_PUBLIC_SUPABASE_ANON_KEY!,
+    {
+      cookies: {
+        getAll() {
+          return request.cookies.getAll()
+        },
+        setAll(cookiesToSet) {
+          cookiesToSet.forEach(({ name, value, options }) => request.cookies.set(name, value))
+          supabaseResponse = NextResponse.next({
+            request,
+          })
+          cookiesToSet.forEach(({ name, value, options }) =>
+            supabaseResponse.cookies.set(name, value, options)
+          )
+        },
+      },
+    }
+  )
+
+  // Do not run code between createServerClient and
+  // supabase.auth.getUser(). A simple mistake could make it very hard to debug
+  // issues with users being randomly logged out.
+
+  // IMPORTANT: DO NOT REMOVE auth.getUser()
+
+  const {
+    data: { user },
+  } = await supabase.auth.getUser()
+  // if (
+  //   !user &&
+  //   !request.nextUrl.pathname.startsWith('/login') &&
+  //   !request.nextUrl.pathname.startsWith('/auth')
+  // ) {
+  //   // no user, potentially respond by redirecting the user to the login page
+  //   const url = request.nextUrl.clone()
+  //   url.pathname = '/login'
+  //   return NextResponse.redirect(url)
+  // }
+
+  if (
+    user &&
+    (request.nextUrl.pathname === '/' ||
+      request.nextUrl.pathname.startsWith('/auth/signin') ||
+      request.nextUrl.pathname.startsWith('/auth/signup'))
+  ) {
+    // user exists and route is / or /auth/signin or /auth/signup, redirect to /dashboard
+    const url = request.nextUrl.clone()
+    url.pathname = '/dashboard'
+    return NextResponse.redirect(url)
+  }
+
+  // IMPORTANT: You *must* return the supabaseResponse object as it is.
+  // If you're creating a new response object with NextResponse.next() make sure to:
+  // 1. Pass the request in it, like so:
+  //    const myNewResponse = NextResponse.next({ request })
+  // 2. Copy over the cookies, like so:
+  //    myNewResponse.cookies.setAll(supabaseResponse.cookies.getAll())
+  // 3. Change the myNewResponse object to fit your needs, but avoid changing
+  //    the cookies!
+  // 4. Finally:
+  //    return myNewResponse
+  // If this is not done, you may be causing the browser and server to go out
+  // of sync and terminate the user's session prematurely!
+
+  return supabaseResponse
+}
\ No newline at end of file
diff --git a/utils/supabase/server.ts b/utils/supabase/server.ts
new file mode 100644
index 0000000..87a6ba7
--- /dev/null
+++ b/utils/supabase/server.ts
@@ -0,0 +1,29 @@
+import { createServerClient } from '@supabase/ssr'
+import { cookies } from 'next/headers'
+
+export async function createClient() {
+  const cookieStore = await cookies()
+
+  return createServerClient(
+    process.env.NEXT_PUBLIC_SUPABASE_URL!,
+    process.env.NEXT_PUBLIC_SUPABASE_ANON_KEY!,
+    {
+      cookies: {
+        getAll() {
+          return cookieStore.getAll()
+        },
+        setAll(cookiesToSet) {
+          try {
+            cookiesToSet.forEach(({ name, value, options }) =>
+              cookieStore.set(name, value, options)
+            )
+          } catch {
+            // The `setAll` method was called from a Server Component.
+            // This can be ignored if you have middleware refreshing
+            // user sessions.
+          }
+        },
+      },
+    }
+  )
+}
\ No newline at end of file