From cb89a4574343166b8286a3a2d565202bc7a569c5 Mon Sep 17 00:00:00 2001
From: Anys <anys.rafai@etu.univ-amu.fr>
Date: Tue, 6 Jan 2026 10:32:52 +0100
Subject: [PATCH] Check if user is allowed to access

---
 routes/_middleware.ts | 15 ++++++++++-----
 1 file changed, 10 insertions(+), 5 deletions(-)

diff --git a/routes/_middleware.ts b/routes/_middleware.ts
index 01b449e..c8f8184 100644
--- a/routes/_middleware.ts
+++ b/routes/_middleware.ts
@@ -21,8 +21,9 @@ const deleteKey = (user: string) => delete jwtKeyCache[user];
  * @returns `true` if the route is public, `false` otherwise.
  */
 function isRoutePublic(route: string): boolean {
-  return PUBLIC_ROUTES.includes(route) ||
-    !!(route.match(/\..+$/)?.[0] ?? false);
+  return (
+    PUBLIC_ROUTES.includes(route) || !!(route.match(/\..+$/)?.[0] ?? false)
+  );
 }
 
 /**
@@ -67,9 +68,13 @@ export const handler: MiddlewareHandler<State>[] = [
     );
 
     if (context.state.isAuthenticated) {
-      const session: CasContent =
-        (getJwtPayload(cookies["sessionToken"]) as LoginJWT).user;
-      context.state.session = session;
+      const session: CasContent = (
+        getJwtPayload(cookies["sessionToken"]) as LoginJWT
+      ).user;
+      if (session.memberOf.includes("cn=amu:ufr:polytech:ldap")) {
+        console.log("Polytech trouvé !");
+        context.state.session = session;
+      }
     }
 
     return await context.next();