'use client'; import { useEffect, useState } from 'react'; import { authApi } from '@/lib/api'; export default function AdminGuard({ children }: { children: React.ReactNode }) { const [state, setState] = useState<'checking' | 'ok' | 'denied'>('checking'); useEffect(() => { let cancelled = false; (async () => { const url = new URL(window.location.href); const adm = url.searchParams.get('adm'); try { if (adm) { await authApi.session({ adm }); url.searchParams.delete('adm'); window.history.replaceState({}, '', url.toString()); } const who = await authApi.whoami(); if (cancelled) return; if (who.role === 'admin') setState('ok'); else setState('denied'); } catch { if (!cancelled) setState('denied'); } })(); return () => { cancelled = true; }; }, []); if (state === 'checking') return

Verificando…

; if (state === 'denied') return

Acesso restrito

Adicione ?adm=<token> à URL para entrar.

; return <>{children}; }