From da43b31aa3e8d8902a6cef4896c4e713476b365a Mon Sep 17 00:00:00 2001
From: Gregor Lohaus <lohausgregor@gmail.com>
Date: Fri, 24 Apr 2026 12:11:29 +0200
Subject: [PATCH] chat interface, validate user id

---
 src/server/routers/chat.ts | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/server/routers/chat.ts b/src/server/routers/chat.ts
index bdf0127..055aa8f 100644
--- a/src/server/routers/chat.ts
+++ b/src/server/routers/chat.ts
@@ -9,12 +9,12 @@ import { eq } from 'drizzle-orm';
 import { clerkClient, auth } from '@clerk/nextjs/server'
 export const chatRouter = router({
   getSession: publicProcedure.query(async () => {
-		const clerk = await clerkClient()
     const { userId } = await auth();
-    const user = await clerk.users.getUser(userId?userId:"")
-    if (user == undefined) {
+    if (!userId) {
       throw new TRPCError({ message: "chat is only available to signed in users", code: 'UNAUTHORIZED' });
     }
+		const clerk = await clerkClient()
+    const user = await clerk.users.getUser(userId)
     let session = await db.query.chatSession.findFirst({
       where(fields, operators) {
         return operators.eq(fields.userId, user.id)