From b399af74e47ab5a614786e6887a0dcf2891d4e25 Mon Sep 17 00:00:00 2001
From: Aidan <aidan@p0ntus.com>
Date: Mon, 7 Jul 2025 20:35:15 -0400
Subject: [PATCH] should respect __Secure, filter admin through middleware

---
 middleware.ts | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/middleware.ts b/middleware.ts
index acd855d..8b69af7 100644
--- a/middleware.ts
+++ b/middleware.ts
@@ -1,6 +1,6 @@
 import { NextRequest, NextResponse } from 'next/server';
 
-const protectedRoutes = ['/dashboard'];
+const protectedRoutes = ['/dashboard', '/admin'];
 
 export async function middleware(request: NextRequest) {
   const { pathname } = request.nextUrl;
@@ -13,7 +13,7 @@ export async function middleware(request: NextRequest) {
     return NextResponse.next();
   }
 
-  const sessionToken = request.cookies.get('better-auth.session_token')?.value;
+  const sessionToken = request.cookies.get('better-auth.session_token')?.value || request.cookies.get('__Secure-better-auth.session_token')?.value;
 
   if (!sessionToken) {
     const loginUrl = new URL('/login', request.url);