https://supabase.com/ logo
Join Discord
Powered by
# help
  • d
    I edited the jwt secret to be more than 32 chars
  • d
    but
  • d
    I don't think I have to put it into the client code at all
  • d
    do I?
  • h
    there's an anon key that you can use client sided
  • h
  • d
    hmm.
  • d
    one strange thing is
  • d
    the main function of my app that uses a database works fine
  • d
    it's just loading the terms of service that seems to be the problem
  • d
    I guess it's not a huge deal
  • d
    I can just hard-code them in.
  • d
    Do you know what this would mean?
    Copy code
    Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://host/mainapiendpoint/rest/v1/public_variables?select=*. (Reason: CORS header ‘Access-Control-Allow-Origin’ missing). Status code: 404.
  • h
    CORS issue
  • h
    your server doesn't like that you're not requesting from the same origin (url)
  • h
    make your app also run on 
    https://host
  • d
    it is
  • d
    I setup an nginx reverse proxy
  • d
    with certbot
  • d
    for ssl
  • h
    Access-Control-Allow-Origin
    is this header present?
  • d
    in the post request?
  • d
    no
  • h
    it's a response header
  • h
    hm
  • h
    should work out of the box with supabase tbh
  • d
    my web app is deployed
  • d
    do you want to take a look
  • d
    to like
  • h
    nope
1...169170171...316Latest