From 1105b4a41b2a91a24a164c70264b294a80afe97b Mon Sep 17 00:00:00 2001
From: Mohamed Bassem <me@mbassem.com>
Date: Sat, 12 Jul 2025 23:37:52 +0000
Subject: feat(api): Expose the update user API in the openapi specs

---
 packages/api/middlewares/auth.ts | 22 ++++++++++++++++++++++
 1 file changed, 22 insertions(+)

(limited to 'packages/api/middlewares/auth.ts')

diff --git a/packages/api/middlewares/auth.ts b/packages/api/middlewares/auth.ts
index 42bca6c8..92f591ad 100644
--- a/packages/api/middlewares/auth.ts
+++ b/packages/api/middlewares/auth.ts
@@ -35,3 +35,25 @@ export const authMiddleware = createMiddleware<{
   c.set("api", createCaller(c.get("ctx")));
   await next();
 });
+
+export const adminAuthMiddleware = createMiddleware<{
+  Variables: {
+    ctx: AuthedContext;
+    api: ReturnType<typeof createCaller>;
+  };
+}>(async (c, next) => {
+  if (!c.var.ctx || !c.var.ctx.user || c.var.ctx.user === null) {
+    throw new HTTPException(401, {
+      message: "Unauthorized",
+    });
+  }
+
+  if (c.var.ctx.user.role !== "admin") {
+    throw new HTTPException(403, {
+      message: "Forbidden - Admin access required",
+    });
+  }
+
+  c.set("api", createCaller(c.get("ctx")));
+  await next();
+});
-- 
cgit v1.2.3-70-g09d2