feat: api route proxy

clinia · Mar 11, 2024 · 1e330e0 · 1e330e0
1 parent 9098e1d
commit 1e330e0
Show file tree

Hide file tree

Showing 5 changed files with 136 additions and 8 deletions.
diff --git a/.env.example b/.env.example
@@ -0,0 +1,22 @@
+API_URL=http://localhost:7999
+
+# Enable or disable authentication if disabled it will mock the user and session
+AUTH_ENABLE=false
+# This is the client ID of this app
+AUTH_CLIENT_ID=
+# This is the client secret of this app
+AUTH_CLIENT_SECRET=
+# This is the URL of the auth server
+AUTH_ISSUER_URL=https://auth.dev.clinia.com
+# This is the secret used to sign the session cookie
+AUTH_SECRET=
+# This is the URL to redirect to after logout
+AUTH_POST_LOGOUT_REDIRECT_URI=https://auth.dev.clinia.com/logout
+
+
+
+# Instrumentation
+OTEL_EXPORTER_OTLP_ENDPOINT=http://localhost:55679
+OTEL_EXPORTER_OTLP_INSECURE=true
+OTEL_EXPORTER_OTLP_PROTOCOL=grpc
+NEXT_OTEL_VERBOSE=1
diff --git a/.gitignore b/.gitignore
@@ -34,3 +34,7 @@ yarn-error.log*
 # typescript
 *.tsbuildinfo
 next-env.d.ts
+
+.env
+.env.*
+!.env.example
diff --git a/package.json b/package.json
@@ -12,6 +12,7 @@
     "test": "vitest"
   },
   "dependencies": {
+    "@auth0/nextjs-auth0": "^3.5.0",
     "@clinia-ui/icons": "^0.1.8",
     "@clinia-ui/react": "^0.1.8",
     "@clinia/search-sdk-core": "^0.1.0",
@@ -32,6 +33,7 @@
   "devDependencies": {
     "@testing-library/react": "^14.2.1",
     "@trivago/prettier-plugin-sort-imports": "^4.3.0",
+    "@types/http-proxy": "^1.17.14",
     "@types/node": "^20",
     "@types/react": "^18",
     "@types/react-dom": "^18",

diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
diff --git a/src/pages/api/[...path].ts b/src/pages/api/[...path].ts
@@ -1,4 +1,4 @@
-import { getSession, withApiAuthRequired } from '@/lib/auth';
+import { withApiAuthRequired } from '@/lib/auth';
 import { logger } from '@/logger';
 import httpProxy from 'http-proxy';
 import type { NextApiRequest, NextApiResponse } from 'next';
@@ -14,22 +14,16 @@ export const config = {
 // We are currently using this proxy to avoid CORS issues with the API.
 // We are using api routes from the page directory as it is easier to have a catch all route and using a reverse proxy.
 async function proxy(req: NextApiRequest, res: NextApiResponse) {
-  const session = await getSession(req, res);
   return new Promise<void>((resolve, reject) => {
     if (req.url) {
       req.url = req.url.replace('/api', '');
     }
 
-    // Set the authorization header to the idToken from the session
-    if (session?.idToken) {
-      req.headers.authorization = `Bearer ${session.idToken}`;
-    }
-
     proxyServer.web(
       req,
       res,
       {
-        target: process.env.API_URL ?? 'http://localhost:3000',
+        target: process.env.API_URL ?? 'http://localhost:7999',
       },
       (err: Error | null | undefined) => {
         if (err) {