hi, i have a question. When should I add a coreAPI key? I'm having a problem right now where it wor...

kazumo

03/27/2023, 1:43 AM

hi, i have a question. When should I add a coreAPI key? I'm having a problem right now where it works fine in local production mode, but not in the production environment. I am wondering if this is due to the fact that the domain has changed. Is there any rule that only one API key can be associated with one domain?

rp_st

03/27/2023, 4:15 AM

Hey @kazumo

rp_st

03/27/2023, 4:15 AM

You should add a coreApi key when you are replying to prod and the core instance is accessible via the internet as well

rp_st

03/27/2023, 4:15 AM

What’s the error that you are facing?

kazumo

03/27/2023, 6:09 AM

I am developing with nextjs and nestjs. On the front end, emailPasswordSignUp(), emailPasswordSignIn(), getAuthorisationURLWithQueryParams(), and emailPasswordSignIn(), getAuthorisationURLWithQueryParamsAndSetState() APIs on the front end and it works fine. However, in verifySession() in useGuard when I send a request to the backend, I get the following error

Copy code

SessionError: Session does not exist. Are you sending the session tokens in the request as cookies?
{
  type: 'UNAUTHORISED',
  payload: { clearCookies: false },
  errMagic: 'ndskajfasndlfkj435234krjdsa',
  fromRecipe: 'session'
 }

rp_st

03/27/2023, 7:11 AM

right. This means that the session tokens are not being sent to the backend. Whats the URL of the api you are querying? And also whats the configured

apiDomain

on the frontend?

kazumo

03/27/2023, 8:30 AM

URL of the api is https://api.persa.cloud/graphql and, the configured apiDomain on the frontend is https://persa.cloud

kazumo

03/27/2023, 8:34 AM

Must they be the same?

rp_st

03/27/2023, 9:03 AM

They do need to be the same, yes.

Previous Next

SuperTokens.com

SuperTokens is an open source authentication solution offering features like: Different types of login: Email / password, Passwordless (OTP or Magic link based).