Added auth overview (#731)

devagrawal09 · LadyBluenotes · web-flow · commit 28ae1e6ecb13 · 2024-05-22T10:04:52.000-07:00
Co-authored-by: Sarah &lt;gerrardsarah@gmail.com&gt;
diff --git a/src/routes/solid-start/advanced/auth.mdx b/src/routes/solid-start/advanced/auth.mdx
@@ -0,0 +1,46 @@
+---
+title: "Auth"
+---
+
+Server functions can be used to protect sensitive resources like user data.
+
+```tsx
+"use server"
+
+async function getPrivatePosts() {
+	const user = await getUser()
+	if(!user) {
+		return null  // or throw an error
+	}
+	
+	return db.getPosts({ userId: user.id, private: true })
+}
+```
+
+The `getUser` function can be [implemented using sessions](https://docs.solidjs.com/solid-start/advanced/session).
+
+## Protected Routes
+
+Routes can be protected by checking the user or session object during data fetching. 
+This example uses [Solid Router](/solid-router).
+
+```tsx
+const getPrivatePosts = cache(async function() {
+	"use server"
+	const user = await getUser()
+	if(!user) {
+		throw redirect("/login"); 
+	}
+	
+	return db.getPosts({ userId: user.id, private: true })
+})
+
+export const route = {
+  load() {
+    void getPrivatePosts()
+  }
+} satisfies RouteDefinition
+```
+
+Once the user hits this route, the router will immediately attempt to fetch `getPrivatePosts` data. 
+If the user is not signed in, `getPrivatePosts` will throw and the router will redirect to the login page.
diff --git a/src/routes/solid-start/advanced/data.json b/src/routes/solid-start/advanced/data.json
@@ -4,6 +4,7 @@
 		"middleware.mdx",
 		"session.mdx",
 		"request-events.mdx",
-		"return-responses.mdx"
+		"return-responses.mdx",
+		"auth.mdx"
 	]
 }

Original file line number	Diff line number	Diff line change
`@@ -4,6 +4,7 @@`
`4`	`4`	`"middleware.mdx",`
`5`	`5`	`"session.mdx",`
`6`	`6`	`"request-events.mdx",`
`7`		`- "return-responses.mdx"`
	`7`	`+ "return-responses.mdx",`
	`8`	`+ "auth.mdx"`
`8`	`9`	`]`
`9`	`10`	`}`