Netlify Framework Patterns

import { authenticateRequest, initClient, users } from '@wacht/backend';

export default async (request: Request, context: { env: Record<string, string> }) => {
  initClient({
    apiKey: context.env.WACHT_API_KEY,
    baseUrl: context.env.WACHT_BACKEND_API_URL,
  });

  const { auth } = await authenticateRequest(request);
  await auth.protect({ permission: 'user:read' });

  return Response.json(await users.listUsers({ limit: 20 }));
};

import { gateway, initClient, users } from '@wacht/backend';

export default async (request: Request, context: { env: Record<string, string> }) => {
  initClient({
    apiKey: context.env.WACHT_API_KEY,
    baseUrl: context.env.WACHT_BACKEND_API_URL,
  });

  const decision = await gateway.checkPrincipalAuthz({
    principalType: 'api_key',
    principalValue: request.headers.get('x-api-key') ?? '',
    resource: '/machine/users',
    method: 'GET',
    requiredPermissions: ['user:read'],
  });

  if (!decision.allowed) {
    return new Response(JSON.stringify({ error: 'forbidden' }), { status: 403 });
  }

  return Response.json(await users.listUsers({ limit: 20 }));
};

import { authenticateRequest, users } from '@wacht/backend';

export async function authListUsers(request: Request): Promise<Response> {
  const { auth } = await authenticateRequest(request);
  await auth.protect({ permission: 'user:read' });
  return Response.json(await users.listUsers({ limit: 20 }));
}