Check if user is allowed to access

routes/_middleware.ts

@@ -21,8 +21,9 @@ const deleteKey = (user: string) => delete jwtKeyCache[user];
  * @returns `true` if the route is public, `false` otherwise.
  */
 function isRoutePublic(route: string): boolean {
-  return PUBLIC_ROUTES.includes(route) ||
-    !!(route.match(/\..+$/)?.[0] ?? false);
+  return (
+    PUBLIC_ROUTES.includes(route) || !!(route.match(/\..+$/)?.[0] ?? false)
+  );
 }
 
 /**
@@ -67,9 +68,13 @@ export const handler: MiddlewareHandler<State>[] = [
     );
 
     if (context.state.isAuthenticated) {
-      const session: CasContent =
-        (getJwtPayload(cookies["sessionToken"]) as LoginJWT).user;
-      context.state.session = session;
+      const session: CasContent = (
+        getJwtPayload(cookies["sessionToken"]) as LoginJWT
+      ).user;
+      if (session.memberOf.includes("cn=amu:ufr:polytech:ldap")) {
+        console.log("Polytech trouvé !");
+        context.state.session = session;
+      }
     }
 
     return await context.next();