add comment for functionality explanation

2025-12-01 21:15:41 +01:00 · 2025-12-01 21:15:41 +01:00 · 6831b92169
commit 6831b92169
parent 7b6735be0e
1 changed files with 6 additions and 0 deletions
--- a/middleware.ts
+++ b/middleware.ts
@ -1,3 +1,9 @@
+/**
+ * Next.js middleware to protect admin routes.
+ * - Runs for paths matched by the config `matcher` (see bottom).
+ * - Checks for the `refreshToken` cookie; if missing, redirects to `/login` before any page renders.
+ * - No manual import/use needed—Next.js automatically executes this for matching requests.
+ */
 import { NextRequest, NextResponse } from 'next/server'

 // Move accessToken to HttpOnly cookie in future for better security