Michilis/SatsFaucet
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Backend: add PUBLIC_BASE_PATH for NIP-98 URL behind /api proxy

Browse Source 
Made-with: Cursor
This commit is contained in:
Michaël
2026-02-28 00:21:01 -03:00
parent c1ee2d54f9
commit bdb4892014
2 changed files with 5 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
backend/src/config.ts
View File

@@ -24,6 +24,8 @@ function envBool(key: string, defaultValue: boolean): boolean {
export const config = {
port: envInt("PORT", 3001),
trustProxy: envBool("TRUST_PROXY", false),
/** Public path prefix when behind a reverse proxy that strips it (e.g. nginx /api/ -> backend /). */
publicBasePath: (process.env.PUBLIC_BASE_PATH ?? "").replace(/\/$/, ""),
allowedOrigins: (process.env.ALLOWED_ORIGINS ?? process.env.FRONTEND_URL ?? "http://localhost:5173,http://localhost:5174").split(",").map((s) => s.trim()),
// Database: omit DATABASE_URL for SQLite; set for Postgres

5
backend/src/middleware/nip98.ts
View File

@@ -83,11 +83,12 @@ export async function nip98Auth(req: Request, res: Response, next: NextFunction)
return;
}
// Reconstruct absolute URL (protocol + host + path + query)
// Reconstruct absolute URL (protocol + host + base path + path + query)
const proto = (req.headers["x-forwarded-proto"] as string | undefined) ?? ((req.socket as { encrypted?: boolean }).encrypted ? "https" : "http");
const host = (req.headers["x-forwarded-host"] as string | undefined) ?? req.headers.host ?? "";
const path = req.originalUrl ?? req.url;
const absoluteUrl = `${proto}://${host}${path}`;
const basePath = config.publicBasePath ? `/${config.publicBasePath.replace(/^\//, "")}` : "";
const absoluteUrl = `${proto}://${host}${basePath}${path}`;
if (u !== absoluteUrl) {
res.status(401).json({
code: "invalid_nip98",