fix(route): update backend URL handling for internal Docker network

- Modified backend URL assignment to ensure it resolves correctly within the internal Docker network, preventing 503 errors for authenticated Zero queries. - Added comments to clarify the routing behavior and the necessity of using the internal backend URL.
2026-06-02 19:55:18 +02:00 · 2026-06-01 18:33:08 -07:00 · 2026-06-01 18:33:08 -07:00 · 0bbeedda07
commit 0bbeedda07
parent bb5c8e49a8
1 changed files with 10 additions and 1 deletions
--- a/surfsense_web/app/api/zero/query/route.ts
+++ b/surfsense_web/app/api/zero/query/route.ts
@ -6,7 +6,16 @@ import type { Context } from "@/types/zero";
 import { queries } from "@/zero/queries";
 import { schema } from "@/zero/schema";

-const backendURL = BACKEND_URL;
+// This route is invoked server-to-server by zero-cache (via ZERO_QUERY_URL),
+// so it must reach the backend over the internal Docker network
+// (e.g. http://backend:8000). The browser-facing NEXT_PUBLIC_FASTAPI_BACKEND_URL
+// (e.g. http://localhost:8929) does NOT resolve from inside the frontend
+// container and would make every authenticated Zero query fail with a 503.
+const backendURL = (
+	process.env.FASTAPI_BACKEND_INTERNAL_URL ||
+	BACKEND_URL ||
+	"http://localhost:8000"
+).replace(/\/$/, "");

 async function authenticateRequest(
 	request: Request