fix: prevent app access after logout by ensuring proper session handling

apps/OSC/middleware.ts

@@ -5,6 +5,9 @@ const locals = ['fa']
 export default function middleware(req: NextRequest) {
   const loggedin = req.cookies.get('authToken')
   const { pathname, href, host } = req.nextUrl
+  const response = NextResponse.next()
+  response.headers.set('Cache-Control', 'no-store')
+
   const urlSplitList = href.split('/')
   const hostIndex = urlSplitList.findIndex(item => item === host)
   let langSuffix = ''
@@ -22,7 +25,7 @@ export default function middleware(req: NextRequest) {
     return NextResponse.redirect(new URL(redirectUrl, req.url))
   }
 
-  return NextResponse.next()
+  return response
 }
 
 export const config = {

apps/dragon-foods/middleware.ts

@@ -1,30 +1,30 @@
-// middleware.ts
-
 import { NextRequest, NextResponse } from 'next/server'
 
 export default function middleware(req: NextRequest) {
   const loggedin = req.cookies.get('authToken')
   const { pathname } = req.nextUrl
 
-  const url = req.nextUrl
-  const urlObj = new URL(url)
-  const searchParams = urlObj.searchParams
+  // Create a response with no-store caching
+  const response = NextResponse.next()
+  response.headers.set('Cache-Control', 'no-store')
 
+  const searchParams = req.nextUrl.searchParams
   const externalUrlParam = searchParams.get('external_url')
 
+  // Redirect logged-in users away from sign-in or sign-up pages
   if (loggedin && (pathname === '/signIn' || pathname === '/signUp')) {
     return NextResponse.redirect(new URL('/', req.url))
   }
 
+  // Redirect non-logged-in users to the sign-in page
   if (!loggedin && pathname !== '/signIn' && pathname !== '/signUp') {
     const signInRoute = externalUrlParam ? `/signIn?external_url=${externalUrlParam}` : '/signIn'
 
     return NextResponse.redirect(new URL(signInRoute, req.url))
   }
 
-  // It's important to return a response for all paths, you might want to return `undefined` or `NextResponse.next()`
-  // for other cases to let the request continue.
-  return NextResponse.next()
+  // Allow the request to proceed if no conditions are met
+  return response
 }
 
 export const config = {

apps/dsep/middleware.ts

@@ -5,6 +5,9 @@ import { NextRequest, NextResponse } from 'next/server'
 export default function middleware(req: NextRequest) {
   const loggedin = req.cookies.get('authToken')
   const { pathname } = req.nextUrl
+  const response = NextResponse.next()
+  response.headers.set('Cache-Control', 'no-store')
+
   if (loggedin && (pathname === '/signin' || pathname === '/signUp')) {
     return NextResponse.redirect(new URL('/', req.url))
   }
@@ -14,7 +17,7 @@ export default function middleware(req: NextRequest) {
   }
   // It's important to return a response for all paths, you might want to return `undefined` or `NextResponse.next()`
   // for other cases to let the request continue.
-  return NextResponse.next()
+  return response
 }
 
 export const config = {

apps/dsnp-v2/middleware.ts

@@ -6,7 +6,8 @@ export default function middleware(req: NextRequest) {
   // TypeScript will correctly understand the type of `loggedin`
   const loggedin = req.cookies.get('authToken')
   const { pathname } = req.nextUrl
-  console.log('Dank', pathname, loggedin)
+  const response = NextResponse.next()
+  response.headers.set('Cache-Control', 'no-store')
 
   if (loggedin && (pathname === '/signin' || pathname === '/signUp')) {
     // Correctly redirect to the home page if the user is already logged in
@@ -20,7 +21,7 @@ export default function middleware(req: NextRequest) {
 
   // It's important to return a response for all paths, you might want to return `undefined` or `NextResponse.next()`
   // for other cases to let the request continue.
-  return NextResponse.next()
+  return response
 }
 
 export const config = {

apps/earth-support-initiative/middleware.ts

@@ -6,9 +6,10 @@ export default function middleware(req: NextRequest) {
   const loggedin = req.cookies.get('authToken')
   const { pathname } = req.nextUrl
 
-  const url = req.nextUrl
-  const urlObj = new URL(url)
-  const searchParams = urlObj.searchParams
+  const response = NextResponse.next()
+  response.headers.set('Cache-Control', 'no-store')
+
+  const searchParams = req.nextUrl.searchParams
 
   const externalUrlParam = searchParams.get('external_url')
 
@@ -24,7 +25,7 @@ export default function middleware(req: NextRequest) {
 
   // It's important to return a response for all paths, you might want to return `undefined` or `NextResponse.next()`
   // for other cases to let the request continue.
-  return NextResponse.next()
+  return response
 }
 
 export const config = {

apps/envirogrowth/middleware.ts

@@ -6,9 +6,10 @@ export default function middleware(req: NextRequest) {
   const loggedin = req.cookies.get('authToken')
   const { pathname } = req.nextUrl
 
-  const url = req.nextUrl
-  const urlObj = new URL(url)
-  const searchParams = urlObj.searchParams
+  const response = NextResponse.next()
+  response.headers.set('Cache-Control', 'no-store')
+
+  const searchParams = req.nextUrl.searchParams
 
   const externalUrlParam = searchParams.get('external_url')
 
@@ -24,7 +25,7 @@ export default function middleware(req: NextRequest) {
 
   // It's important to return a response for all paths, you might want to return `undefined` or `NextResponse.next()`
   // for other cases to let the request continue.
-  return NextResponse.next()
+  return response
 }
 
 export const config = {

apps/harmoni-aids/middleware.ts

@@ -6,9 +6,10 @@ export default function middleware(req: NextRequest) {
   const loggedin = req.cookies.get('authToken')
   const { pathname } = req.nextUrl
 
-  const url = req.nextUrl
-  const urlObj = new URL(url)
-  const searchParams = urlObj.searchParams
+  const response = NextResponse.next()
+  response.headers.set('Cache-Control', 'no-store')
+
+  const searchParams = req.nextUrl.searchParams
 
   const externalUrlParam = searchParams.get('external_url')
 
@@ -24,7 +25,7 @@ export default function middleware(req: NextRequest) {
 
   // It's important to return a response for all paths, you might want to return `undefined` or `NextResponse.next()`
   // for other cases to let the request continue.
-  return NextResponse.next()
+  return response
 }
 
 export const config = {

apps/industry_4.0/middleware.ts

@@ -5,9 +5,11 @@ import { NextRequest, NextResponse } from 'next/server'
 export default function middleware(req: NextRequest) {
   const loggedin = req.cookies.get('authToken')
   const { pathname } = req.nextUrl
-  const url = req.nextUrl
-  const urlObj = new URL(url)
-  const searchParams = urlObj.searchParams
+
+  const response = NextResponse.next()
+  response.headers.set('Cache-Control', 'no-store')
+
+  const searchParams = req.nextUrl.searchParams
 
   const externalUrlParam = searchParams.get('external_url')
 
@@ -23,7 +25,7 @@ export default function middleware(req: NextRequest) {
 
   // It's important to return a response for all paths, you might want to return `undefined` or `NextResponse.next()`
   // for other cases to let the request continue.
-  return NextResponse.next()
+  return response
 }
 
 export const config = {

apps/odr-v2/middleware.ts

@@ -6,9 +6,10 @@ export default function middleware(req: NextRequest) {
   const loggedin = req.cookies.get('authToken')
   const { pathname } = req.nextUrl
 
-  const url = req.nextUrl
-  const urlObj = new URL(url)
-  const searchParams = urlObj.searchParams
+  const response = NextResponse.next()
+  response.headers.set('Cache-Control', 'no-store')
+
+  const searchParams = req.nextUrl.searchParams
 
   const externalUrlParam = searchParams.get('external_url')
 
@@ -24,7 +25,7 @@ export default function middleware(req: NextRequest) {
 
   // It's important to return a response for all paths, you might want to return `undefined` or `NextResponse.next()`
   // for other cases to let the request continue.
-  return NextResponse.next()
+  return response
 }
 
 export const config = {

apps/open-spark/middleware.ts

@@ -6,6 +6,8 @@ export default function middleware(req: NextRequest) {
   const loggedin = req.cookies.get('authToken')
   const role = req.cookies.get('roleSelected')
   const { pathname } = req.nextUrl
+  const response = NextResponse.next()
+  response.headers.set('Cache-Control', 'no-store')
 
   if (role && loggedin && (pathname === '/signIn' || pathname === '/signUp' || pathname === '/welcome')) {
     return NextResponse.redirect(new URL('/', req.url))
@@ -26,7 +28,7 @@ export default function middleware(req: NextRequest) {
 
   // It's important to return a response for all paths, you might want to return `undefined` or `NextResponse.next()`
   // for other cases to let the request continue.
-  return NextResponse.next()
+  return response
 }
 
 export const config = {

apps/policy-admin/middleware.ts

@@ -6,6 +6,9 @@ export default function middleware(req: NextRequest) {
   const loggedin = req.cookies.get('authToken')
   const { pathname } = req.nextUrl
 
+  const response = NextResponse.next()
+  response.headers.set('Cache-Control', 'no-store')
+
   // once API is integrated then we can add middleware
   if (loggedin && (pathname === '/signIn' || pathname === '/signUp')) {
     return NextResponse.redirect(new URL('/', req.url))
@@ -23,7 +26,7 @@ export default function middleware(req: NextRequest) {
 
   // It's important to return a response for all paths, you might want to return `undefined` or `NextResponse.next()`
   // for other cases to let the request continue.
-  return NextResponse.next()
+  return response
 }
 
 export const config = {

apps/retail/middleware.ts

@@ -6,9 +6,10 @@ export default function middleware(req: NextRequest) {
   const loggedin = req.cookies.get('authToken')
   const { pathname } = req.nextUrl
 
-  const url = req.nextUrl
-  const urlObj = new URL(url)
-  const searchParams = urlObj.searchParams
+  const response = NextResponse.next()
+  response.headers.set('Cache-Control', 'no-store')
+
+  const searchParams = req.nextUrl.searchParams
 
   const externalUrlParam = searchParams.get('external_url')
 
@@ -24,7 +25,7 @@ export default function middleware(req: NextRequest) {
 
   // It's important to return a response for all paths, you might want to return `undefined` or `NextResponse.next()`
   // for other cases to let the request continue.
-  return NextResponse.next()
+  return response
 }
 
 export const config = {

apps/sky-analytics/middleware.ts

@@ -6,9 +6,10 @@ export default function middleware(req: NextRequest) {
   const loggedin = req.cookies.get('authToken')
   const { pathname } = req.nextUrl
 
-  const url = req.nextUrl
-  const urlObj = new URL(url)
-  const searchParams = urlObj.searchParams
+  const response = NextResponse.next()
+  response.headers.set('Cache-Control', 'no-store')
+
+  const searchParams = req.nextUrl.searchParams
 
   const externalUrlParam = searchParams.get('external_url')
 
@@ -24,7 +25,7 @@ export default function middleware(req: NextRequest) {
 
   // It's important to return a response for all paths, you might want to return `undefined` or `NextResponse.next()`
   // for other cases to let the request continue.
-  return NextResponse.next()
+  return response
 }
 
 export const config = {

apps/state-forest-department/middleware.ts

@@ -6,9 +6,10 @@ export default function middleware(req: NextRequest) {
   const loggedin = req.cookies.get('authToken')
   const { pathname } = req.nextUrl
 
-  const url = req.nextUrl
-  const urlObj = new URL(url)
-  const searchParams = urlObj.searchParams
+  const response = NextResponse.next()
+  response.headers.set('Cache-Control', 'no-store')
+
+  const searchParams = req.nextUrl.searchParams
 
   const externalUrlParam = searchParams.get('external_url')
 
@@ -24,7 +25,7 @@ export default function middleware(req: NextRequest) {
 
   // It's important to return a response for all paths, you might want to return `undefined` or `NextResponse.next()`
   // for other cases to let the request continue.
-  return NextResponse.next()
+  return response
 }
 
 export const config = {

apps/taxi-bpp-v2/middleware.ts

@@ -6,6 +6,9 @@ export default function middleware(req: NextRequest) {
   const loggedin = req.cookies.get('authToken')
   const { pathname } = req.nextUrl
 
+  const response = NextResponse.next()
+  response.headers.set('Cache-Control', 'no-store')
+
   if (loggedin && (pathname === '/signIn' || pathname === '/signUp')) {
     return NextResponse.redirect(new URL('/', req.url))
   }
@@ -18,7 +21,7 @@ export default function middleware(req: NextRequest) {
 
   // It's important to return a response for all paths, you might want to return `undefined` or `NextResponse.next()`
   // for other cases to let the request continue.
-  return NextResponse.next()
+  return response
 }
 
 export const config = {

apps/tourismV1.1/middleware.ts

@@ -7,6 +7,8 @@ export default function middleware(req: NextRequest) {
   const loggedin = req.cookies.get('authToken')
   const { pathname, href, host, searchParams } = req.nextUrl
   const response = NextResponse.next()
+  response.headers.set('Cache-Control', 'no-store')
+
   // const tourismType = req.cookies.get('tourismType')?.value || ''
   const queryTourismType = searchParams.get('tourismType')
   const tourismType = queryTourismType