2.4 페이지/컴포넌트 가드 훅 구현(usePermission)

src/app/api/auth/permissions/route.ts

@@ -0,0 +1,18 @@
+import { NextResponse } from "next/server";
+import prisma from "@/lib/prisma";
+import { getUserIdFromRequest } from "@/lib/auth";
+
+export async function GET(req: Request) {
+  const userId = getUserIdFromRequest(req);
+  if (!userId) return NextResponse.json({ permissions: [] });
+  const roles = await prisma.userRole.findMany({ where: { userId }, select: { roleId: true } });
+  if (roles.length === 0) return NextResponse.json({ permissions: [] });
+  const roleIds = roles.map((r) => r.roleId);
+  const permissions = await prisma.rolePermission.findMany({
+    where: { roleId: { in: roleIds }, allowed: true },
+    select: { resource: true, action: true },
+  });
+  return NextResponse.json({ permissions });
+}
+
+

src/lib/usePermission.ts

@@ -0,0 +1,24 @@
+"use client";
+import useSWR from "swr";
+
+type Resource = "BOARD" | "POST" | "COMMENT" | "USER" | "ADMIN";
+type Action = "READ" | "CREATE" | "UPDATE" | "DELETE" | "MODERATE" | "ADMINISTER";
+
+const fetcher = (url: string) => fetch(url).then((r) => r.json());
+
+export function usePermission() {
+  const { data } = useSWR<{ permissions: { resource: Resource; action: Action }[] }>(
+    "/api/auth/permissions",
+    fetcher
+  );
+  const perms = data?.permissions ?? [];
+  function can(resource: Resource, action: Action) {
+    return (
+      perms.some((p) => p.resource === "ADMIN" && p.action === "ADMINISTER") ||
+      perms.some((p) => p.resource === resource && p.action === action)
+    );
+  }
+  return { can };
+}
+
+