Skip to main content

3. Exposing Auth APIs

We will add all the backend APIs for auth on /auth/*. This can be changed by setting the apiBasePath property in the appInfo object on the backend and frontend. For the rest of this page, we will assume you are using /auth/*.

Create a new file auth.js#

  • An example of this can be found here.
auth.js
let cors = require("cors");const express = require("express");const serverless = require("serverless-http");let supertokens = require("supertokens-node");let { getBackendConfig } = require("./config");
const app = express();
supertokens.init(getBackendConfig());
app.use(cors({    origin: websiteUrl,    allowedHeaders: ["content-type", ...supertokens.getAllCORSHeaders()],    credentials: true,}));
app.use(supertokens.middleware());
app.use(supertokens.errorHandler());
app.use((err, req, res, next) => {    res.status(500).send(        "Something went wrong"    );});
module.exports.handler = serverless(app);
important

Notice that we called supertokens.init above. We will need to call this in all API endpoints that use any functions related to supertokens.