fix: allow routes outside /admin when using authenticated router

mtmarco87 · dziraf · commit eb16a684c10e · 2022-08-02T11:58:51.000+02:00
diff --git a/src/authentication/protected-routes.handler.ts b/src/authentication/protected-routes.handler.ts
@@ -8,9 +8,10 @@ export const withProtectedRoutesHandler = (
   const { rootPath } = admin.options;
 
   fastifyApp.addHook('preHandler', async (request, reply) => {
-    if (AdminRouter.assets.find(asset => request.url.match(asset.path))) {
+    if (AdminRouter.assets.find((asset) => request.url.match(asset.path))) {
       return;
     } else if (
+      !request.url.startsWith(rootPath) ||
       request.session.adminUser ||
       // these routes doesn't need authentication
       request.url.startsWith(admin.options.loginPath) ||
