Nearle_express/Express_developer_docs
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

cors apifix

Browse Source
This commit is contained in:
Suriya
2026-05-20 17:47:35 +05:30
parent c78b9a16e7
commit 302c7c0e8e
2 changed files with 28 additions and 22 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
src/components/TopicView.jsx
View File

@@ -7,13 +7,13 @@ import { LEGACY_BASE_URL, REST_BASE_URL } from '../data/topics'
const ADMIN_SECRET = 'nearle-admin-secret' const ADMIN_SECRET = 'nearle-admin-secret'
function toProxyPath(fullUrl) { function toProxyPath(fullUrl) {
// In dev, route REST through the Vite proxy (/live → jupiter.nearle.app) // REST: always strip to a relative /live/... path so the request goes through
// to bypass CORS restrictions on localhost. // the local server proxy (Vite dev/preview, or nginx in production).
if (import.meta.env.DEV && fullUrl.startsWith(REST_BASE_URL)) { // This avoids CORS entirely — the browser never talks to jupiter.nearle.app directly.
if (fullUrl.startsWith(REST_BASE_URL)) {
return fullUrl.slice(REST_BASE_URL.length) return fullUrl.slice(REST_BASE_URL.length)
} }
// Legacy (api.workolik.com): CORS open, admin secret injected in headers. // Legacy (api.workolik.com): CORS is open, admin secret injected in headers.
// REST in production: deployed origin is whitelisted by jupiter.nearle.app.
return fullUrl return fullUrl
} }

40
vite.config.js
View File

@@ -11,28 +11,34 @@ export default defineConfig(({ mode }) => {
console.warn('[xpress-docs] HASURA_ADMIN_SECRET is not set in .env.local; proxied requests will hit the API without auth.') console.warn('[xpress-docs] HASURA_ADMIN_SECRET is not set in .env.local; proxied requests will hit the API without auth.')
} }
const proxyConfig = {
'/api': {
target: 'https://api.workolik.com',
changeOrigin: true,
secure: true,
configure: (proxy) => {
proxy.on('proxyReq', (proxyReq) => {
if (secret) proxyReq.setHeader('x-hasura-admin-secret', secret)
})
}
},
'/live': {
target: 'https://jupiter.nearle.app',
changeOrigin: true,
secure: true,
}
}
return { return {
plugins: [react()], plugins: [react()],
server: { server: {
port: 5173, port: 5173,
open: true, open: true,
proxy: { proxy: proxyConfig,
'/api': { },
target: 'https://api.workolik.com', preview: {
changeOrigin: true, port: 4173,
secure: true, proxy: proxyConfig,
configure: (proxy) => {
proxy.on('proxyReq', (proxyReq) => {
if (secret) proxyReq.setHeader('x-hasura-admin-secret', secret)
})
}
},
'/live': {
target: 'https://jupiter.nearle.app',
changeOrigin: true,
secure: true,
}
}
} }
} }
}) })