https://supertokens.com/ logo
Channels
Powered by
#support-questions
Title
# support-questions
p

pepegc

04/01/2022, 6:10 PM
Specific to supertokens-python with fastapi: I am getting unauthorized when trying to pass a body(pydantic schema) in a post request to an endpoint with 
session: SessionContainer = Depends(verify_session())
. In the the endpoint definition parans, does the order matter? (Schema and Depends)
r

rp

04/01/2022, 6:18 PM
Specific to supertokens-python with fastapi: I am getting unauthorized when trying to pass a body(pydantic schema) in a post request to an endpoint with 
session: SessionContainer = Depends(verify_session())
. In the the endpoint definition parans, does the order matter? (Schema and Depends)
I don’t think that the order should matter
I don’t think so that the order should matter
p

pepegc

04/01/2022, 6:32 PM
upon inspection of the request headers I see that on my post request the cookies are not being attached, while in a test get request they do get attached
both (post and get) endpoints are protected with 
session: SessionContainer = Depends(verify_session())
r

rp

04/01/2022, 6:33 PM
Are you sending access-control-allow-credentials to true? That should happen automatically if you are using our frontend SDK and the interceptors are getting applied
p

pepegc

04/01/2022, 6:34 PM
both get and post functions use the same send method, with access-control-allow-credentials set to true
r

rp

04/01/2022, 6:34 PM
Can I see the request headers for post?
Interceptors are not getting applied
p

pepegc

04/01/2022, 6:36 PM
and that's the get
r

rp

04/01/2022, 6:36 PM
What’s the request url for post and what’s it for get?
p

pepegc

04/01/2022, 6:37 PM
r

rp

04/01/2022, 6:38 PM
Hmm
Is there an OPTIONS API call before the get or post is made? What’s the response of that?
What’s strange is that the post request is not getting the interception applied
p

pepegc

04/01/2022, 6:40 PM
there no OPTIONS call now, but pretty sure I've seen those before... can those by cache'd?
r

rp

04/01/2022, 6:40 PM
Nope those can’t be
p

pepegc

04/01/2022, 6:41 PM
yes, do you see anything strange on the `send`function above? with the fetch
cause that's the only difference between the two calls
r

rp

04/01/2022, 6:41 PM
Hmm
I’m not sure what’s wrong here. Will have to debug this like we did yesterday.
p

pepegc

04/01/2022, 6:46 PM
._.
I'll find an hour
r

rp

04/01/2022, 6:46 PM
It’s probably some tiny config error…
Do you see any console logs when making get or post request?
p

pepegc

04/01/2022, 6:54 PM
frontend or backend?
r

rp

04/01/2022, 6:54 PM
Frontend
p

pepegc

04/01/2022, 6:54 PM
like in 
send
function? yes
r

rp

04/01/2022, 6:55 PM
I mean the browser console
p

pepegc

04/01/2022, 6:55 PM
I'm now gonna test two endpoints
yes. console.logs when making the requests
r

rp

04/01/2022, 6:56 PM
No I mean the browser might give an indication as to why it’s not attaching cookies
So when you make the get or post calls, do you see any logs in the browser console?
p

pepegc

04/01/2022, 6:59 PM
ah, no
r

rp

04/01/2022, 6:59 PM
Hmm
So I think the first thing to debug here is why the interception is not being applied
Similarity to how we did yesterday
p

pepegc

04/01/2022, 7:01 PM
w8
I'm pretty sure it's related to my original question, about the endpoint also receiving a pydantic Schema
I made and tested these two endpoints
which use path value instead of body/schema
the second one is secure and as you see above it worked well
the one not working, on the other hand, looks like this:
r

rp

04/01/2022, 7:04 PM
The frontend not sending cookies has nothing to do with the backend setup in this case though
The request that’s not working, can I see the full request screenshot? Including the url?
Is this happening on the server side?
p

pepegc

04/01/2022, 7:06 PM
no
r

rp

04/01/2022, 7:08 PM
I’d you remove the body from the request that’s not working, does it send the cookies?
Try to comment out the stuff in the if (data) block and see if they request now sends cookies
p

pepegc

04/01/2022, 7:09 PM
no, I get the same headers
ok
w8
w8 that's actually what I just did by not sending any body
r

rp

04/01/2022, 7:10 PM
Huh?
p

pepegc

04/01/2022, 7:11 PM
it does not send the cookies
by removing the body/data, that section was not called. Cookies were not included
r

rp

04/01/2022, 7:12 PM
Can you add a debugger and see if it’s coming in the interception of the SDK?
Like we did yesterday?
p

pepegc

04/01/2022, 7:13 PM
mm I'll try
r

rp

04/01/2022, 7:22 PM
@User I’m available for a call now
R u free?
p

pepegc

04/01/2022, 7:22 PM
yes
r

rp

04/01/2022, 7:22 PM
Ok great
p

pepegc

04/01/2022, 7:22 PM
just sent an OPTIONS before
thanks so much, send me a link and Ill join
r

rp

04/01/2022, 7:24 PM
2 Views
Powered by