MOPC/MOPC-Portal
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fix invitation flow by allowing unauthenticated tRPC requests

Browse Source 
The middleware was blocking /api/trpc requests for unauthenticated users,
which prevented the accept-invite page from calling the public
validateInviteToken procedure. tRPC handles its own authentication
via procedure middleware, so the NextAuth middleware should allow
all tRPC requests through.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
This commit is contained in:
Matt
2026-02-04 00:26:05 +01:00
parent b0189cad92
commit 0f956cf23f
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
src/lib/auth.config.ts
View File

@@ -45,6 +45,7 @@ export const authConfig: NextAuthConfig = {
'/accept-invite', '/accept-invite',
'/apply', '/apply',
'/api/auth', '/api/auth',
'/api/trpc', // tRPC handles its own auth via procedures
] ]
// Check if it's a public path // Check if it's a public path