I have a simple app written in Go using SuperTokens, but for some reason frontend requests get a 403...
d
dan6erbond
10/18/2023, 9:44 AMI have a simple app written in Go using SuperTokens, but for some reason frontend requests get a 403 Forbidden on OPTIONS requests which seems to trigger CORS issues:```go
func main() {
apiBasePath := "/auth"
websiteBasePath := "/auth"
err := supertokens.Init(supertokens.TypeInput{
Supertokens: &supertokens.ConnectionInfo{
ConnectionURI: "http://localhost:3567",
APIKey: "hrR6QzAuKmGbqcDSt5MKdaFb8Y88iboj",
},
AppInfo: supertokens.AppInfo{
AppName: "Sitling",
APIDomain: "http://localhost:5001",
WebsiteDomain: "http://127.0.0.1:5173",
APIBasePath: &apiBasePath,
WebsiteBasePath: &websiteBasePath,
},
RecipeList: []supertokens.Recipe{
thirdpartyemailpassword.Init(&tpepmodels.TypeInput{}),
session.Init(nil),
userroles.Init(nil),
dashboard.Init(nil),
},
})
if err != nil {
panic(err.Error())
}
r := chi.NewRouter()
// CORS
r.Use(cors.Handler(cors.Options{
AllowedOrigins: []string{"http://127.0.0.1:5173", "http://localhost:5173"},
AllowedMethods: []string{"GET", "POST", "PUT", "DELETE", "OPTIONS"},
AllowedHeaders: append([]string{"Content-Type"},
supertokens.GetAllCORSHeaders()...),
AllowCredentials: true,
}))
// SuperTokens Middleware
r.Use(supertokens.Middleware)
err = http.ListenAndServe(":5001", r)
if err != nil {
panic(err.Error())
}
}
```
r
rp_st
10/18/2023, 10:46 AMhey @dan6erbond
rp_st
10/18/2023, 10:47 AMhave you tried running our demo app? https://github.com/supertokens/supertokens-golang/blob/master/examples/with-chi/main.go
Does this face the same issue?
d
dan6erbond
10/18/2023, 11:46 AMTurns out having at least one route that uses
session.VerifySessionr
rp_st
10/18/2023, 11:51 AMHuh. That’s odd.
rp_st
10/18/2023, 11:51 AMIf you can open an issue about it, we can investigate
SuperTokens.com
SuperTokens is an open source authentication solution offering features like: Different types of login: Email / password, Passwordless (OTP or Magic link based).
Powered by