[Bug?]: Cookie/auth issues for vercel deployment on versions v8 + #11641
Comments
|
Hi @jgal1 I'll try to reproduce but I am curious if perhaps https://community.redwoodjs.com/t/app-hosted-with-flightcontrol-issue-logging-in-signing-up-auth-resetting-cookie/7364/23?u=dthyresson might help? Perhaps CORS/credentials need to be set now for Vercel as well? Might you be able to try this and see if helps? Thanks! |
|
@dthyresson I believe it has to be a change to something in redwood that caused this as it works on vercel with 7.7.4 but not 8.0.0 unless vercel is doing something different based on the version of redwood? The frontend and backend in the example repo serve from the same url, so I'm not even sure how to follow the instructions from the community link since there isn't a repro and in that case the person with the issue actually was serving the api and web side from different urls. Can you take a look? |
What's not working?
I'm seeing issues in a production deployment to vercel after upgrading from v7.7.4 to v8.3.0. The issue only shows up when deployed to vercel, local development behaves as expected. The issue is with auth/cookies not being set after the POST request to /api/auth (which does get a 200 response), but does not have the setCookie header. The subsequent GET request to /api/auth?method=getToken also has a 200 response but does not return the logged in users id. This results in the user not being able to get passed the login/signup page. The behavior does not show up when developing locally. I have a git repository with the minimal changes needed for a repro.
v7.7.4:
- Local developemnt works
- Production deploy DOES NOT have auth issues
- See the code in the v7.7.4 branch of the repro repository
- Live Vercel Deployment to working auth
v8.0.0:
- Local developemnt works
- Production deploy DOES have auth issues descibed above
- See the code in the v8.0.0 branch of the repro repository
- Live Vercel Deployment to broken auth v8.0.0
v8.3.0:
- Local developemnt works
- Production deploy DOES have auth issues descibed above
- See the code in the main branch of the repro repository
- Live Vercel Deployment to broken auth v8.3.0
Please let me know if you need any more information about my setup. The app is setup with a free supabase postgres instance (example format for env vars below), hosted on vercel with env vars set in the following format:
The codebase for the reproduction lives at https://github.com/jgal1/redwood-vercel . The v7.7.4 branch has the code which works for both local and vercel deployment, the v8.0.0 branch has the v8.0.0 code which does not work when deployed to vercel, and the main branch has the v8.3.0 version which also does not work when deployed to production.
To get a fresh repository for the minimal reproduction follow the below steps:
The vercel deployment uses the standard redwood preset, and the only requirement on vercel is to set the environmental variables which are stated above.
This shouldn't make any difference for this issue but for my specific case, to connect to the supabase postgres instance the schema.prisma file needs the following edit (add directUrl) to the 'datasource' config:
For local development, the DATABASE_URL and DIRECT_DATABASE_URL should be the same and should have the following format:
Please let me know if there is anything I can do to help debug, for example any vercel permissions issues viewing the deployed domains, or vercel logs.
The following two links to another github issue and the community discussion could be related, as they have similar symptoms:
How do we reproduce the bug?
See reproduction steps and repository above
What's your environment? (If it applies)
No response
Are you interested in working on this?
The text was updated successfully, but these errors were encountered: