fix(auth): 🚑️ Don't allow user without id

2022-02-24 15:37:47 +01:00
parent cc1dd5152e
commit 7e7596d75e
1 changed files with 1 additions and 2 deletions
--- a/apps/builder/pages/api/typebots.ts
+++ b/apps/builder/pages/api/typebots.ts
@ -8,11 +8,10 @@ import { methodNotAllowed } from 'utils'

 const handler = async (req: NextApiRequest, res: NextApiResponse) => {
  const session = await getSession({ req })
-
  if (!session?.user)
    return res.status(401).json({ message: 'Not authenticated' })
-
  const user = session.user as User
+  if (!user.id) return res.status(401).json({ message: 'Not authenticated' })
  try {
    if (req.method === 'GET') {
      const folderId = req.query.folderId ? req.query.folderId.toString() : null