defmodule MixerWeb.Router do use MixerWeb, :router use AshAuthentication.Phoenix.Router import AshAuthentication.Plug.Helpers pipeline :graphql do plug :load_from_bearer plug :set_actor, :user plug AshGraphql.Plug end pipeline :browser do plug :accepts, ["html"] plug :fetch_session plug :fetch_live_flash plug :put_root_layout, html: {MixerWeb.Layouts, :root} plug :protect_from_forgery plug :put_secure_browser_headers plug :load_from_session plug :set_actor, :user end pipeline :api do plug :accepts, ["json"] plug AshAuthentication.Strategy.ApiKey.Plug, resource: Mixer.Accounts.User, # if you want to require an api key to be supplied, set `required?` to true required?: false plug :load_from_bearer plug :set_actor, :user end scope "/", MixerWeb do pipe_through :browser get "/", PageController, :home get "/feed", PageController, :index get "/feed/:tweet_id", PageController, :show get "/users", PageController, :users_index get "/users/:user_id", PageController, :user_show post "/rpc/run", AshTypescriptRpcController, :run post "/rpc/validate", AshTypescriptRpcController, :validate post "/upload", UploadController, :create auth_routes AuthController, Mixer.Accounts.User, path: "/auth" sign_out_route AuthController # Remove these if you'd like to use your own authentication views sign_in_route register_path: "/register", reset_path: "/reset", auth_routes_prefix: "/auth", on_mount: [{MixerWeb.LiveUserAuth, :live_no_user}], overrides: [ MixerWeb.AuthOverrides, Elixir.AshAuthentication.Phoenix.Overrides.DaisyUI ] # Remove this if you do not want to use the reset password feature reset_route auth_routes_prefix: "/auth", overrides: [ MixerWeb.AuthOverrides, Elixir.AshAuthentication.Phoenix.Overrides.DaisyUI ] # Remove this if you do not use the confirmation strategy confirm_route Mixer.Accounts.User, :confirm_new_user, auth_routes_prefix: "/auth", overrides: [MixerWeb.AuthOverrides, Elixir.AshAuthentication.Phoenix.Overrides.DaisyUI] # Remove this if you do not use the magic link strategy. magic_sign_in_route(Mixer.Accounts.User, :magic_link, auth_routes_prefix: "/auth", overrides: [MixerWeb.AuthOverrides, Elixir.AshAuthentication.Phoenix.Overrides.DaisyUI] ) ash_authentication_live_session :authenticated_routes do # in each liveview, add one of the following at the top of the module: # # If an authenticated user must be present: # on_mount {MixerWeb.LiveUserAuth, :live_user_required} # # If an authenticated user *may* be present: # on_mount {MixerWeb.LiveUserAuth, :live_user_optional} # # If an authenticated user must *not* be present: # on_mount {MixerWeb.LiveUserAuth, :live_no_user} end end scope "/api/json" do pipe_through [:api] forward "/swaggerui", OpenApiSpex.Plug.SwaggerUI, path: "/api/json/open_api", default_model_expand_depth: 4 forward "/", MixerWeb.AshJsonApiRouter end scope "/gql" do pipe_through [:graphql] forward "/playground", Absinthe.Plug.GraphiQL, schema: Module.concat(["MixerWeb.GraphqlSchema"]), socket: Module.concat(["MixerWeb.GraphqlSocket"]), interface: :simple forward "/", Absinthe.Plug, schema: Module.concat(["MixerWeb.GraphqlSchema"]) end # Enable LiveDashboard and Swoosh mailbox preview in development if Application.compile_env(:mixer, :dev_routes) do # If you want to use the LiveDashboard in production, you should put # it behind authentication and allow only admins to access it. # If your application does not have an admins-only section yet, # you can use Plug.BasicAuth to set up some basic authentication # as long as you are also using SSL (which you should anyway). import Phoenix.LiveDashboard.Router scope "/dev" do pipe_through :browser live_dashboard "/dashboard", metrics: MixerWeb.Telemetry forward "/mailbox", Plug.Swoosh.MailboxPreview end end if Application.compile_env(:mixer, :dev_routes) do import AshAdmin.Router scope "/admin" do pipe_through :browser ash_admin "/" end end end