Heyy,
We have a nest.js application deployed on R...
# support-questions-legacyr
rayhan_rahat
02/25/2023, 2:28 PMHeyy,
We have a nest.js application deployed on Railway.
In the frontend we have next.js deployed on Vercel.
In the backend CORS is set like this
Copy code
app.enableCors({
origin: [
'*',
'http://localhost:3001',
'http://localhost:3000',
'https://*.vercel.app',
'https://*.vercel.app/*',
],
allowedHeaders: ['content-type', ...supertokens.getAllCORSHeaders()],
credentials: true,
});r
rp_st
02/25/2023, 2:30 PMHey @rayhan_rahat
rp_st
02/25/2023, 2:31 PMCan I see the response headers in the OPTION Api? And does that actual request get made post that?
r
rayhan_rahat
02/25/2023, 2:33 PMHere is the options API headers
r
rp_st
02/25/2023, 2:34 PMHmmm. That’s odd
rp_st
02/25/2023, 2:35 PMI’m not sure. This is a cors setting. You should ask in the support of your web framework being used.
r
rayhan_rahat
02/25/2023, 2:36 PMOkay there was two preflights, one passed, one failed,
and actual request gets CORS errored
rayhan_rahat
02/25/2023, 2:36 PMYeah This is really confusing man -_-
r
rp_st
02/25/2023, 2:37 PMIs the supertokens middleware before or after the cors?
r
rayhan_rahat
02/25/2023, 2:37 PMBefore
r
rp_st
02/25/2023, 2:38 PMMove the supertokens middleware to after the cors one and try again
r
rayhan_rahat
02/25/2023, 2:54 PMnope. doesn't work.
I think supertokens doesn't have proper support for vercel's dynamic url's
I can only test on production/non-dynamic urls
r
rp_st
02/25/2023, 2:55 PMThat warning has nothing to do with cors setting issues
r
rayhan_rahat
02/25/2023, 2:55 PMAhh.. 😐
okay
r
rp_st
02/25/2023, 2:55 PMSo you should see why the cors isnt applied before the middleware runs
r
rayhan_rahat
02/25/2023, 2:56 PMokay lemme try some things
rayhan_rahat
02/25/2023, 3:04 PMOkay I just added this regular expression,
and It fixed CORS issues
35 Views