Add logic to auto authorize role with usage of redirectAuthenticatedTo (#4257)

* add logic to auto handle role with usage of `redirectAuthenticatedTo`

* Create hot-knives-vanish.md

* fix `globalThis.__BLITZ_GET_RSC_CONTEXT` being overriden

* pnpm lock fix

Author: siddhsuresh

.changeset/hot-knives-vanish.md

@@ -0,0 +1,6 @@
+---
+"@blitzjs/auth": patch
+"blitz": patch
+---
+
+Automatically authorize role with usage of `redirectAuthenticatedTo` in `useAuthenticatedBlitzContext` utility

packages/blitz-auth/src/server/auth-plugin.ts

@@ -125,7 +125,9 @@ export const AuthServerPlugin = createServerPlugin((options: AuthPluginOptions)
     }
     return blitzSessionMiddleware
   }
-  globalThis.__BLITZ_GET_RSC_CONTEXT = getBlitzContext
+  if (!globalThis.__BLITZ_GET_RSC_CONTEXT) {
+    globalThis.__BLITZ_GET_RSC_CONTEXT = getBlitzContext
+  }
   return {
     requestMiddlewares: [authPluginSessionMiddleware()],
     exports: () => ({

packages/blitz-auth/src/server/auth-sessions.ts

@@ -243,8 +243,17 @@ export async function useAuthenticatedBlitzContext({
           ? redirectAuthenticatedTo
           : formatWithValidation(redirectAuthenticatedTo)
       debug("[useAuthenticatedBlitzContext] Redirecting to", redirectUrl)
-      log.info("Authentication Redirect: " + customChalk.dim("(Authenticated)"), redirectUrl)
-      redirect(redirectUrl)
+      if (role) {
+        try {
+          ctx.session.$authorize(role)
+        } catch (e) {
+          log.info("Authentication Redirect: " + customChalk.dim(`Role ${role}`), redirectTo)
+          redirect(redirectUrl)
+        }
+      } else {
+        log.info("Authentication Redirect: " + customChalk.dim("(Authenticated)"), redirectUrl)
+        redirect(redirectUrl)
+      }
     }
     if (redirectTo && role) {
       debug("[useAuthenticatedBlitzContext] redirectTo and role are both defined.")