mirror of
https://github.com/MODSetter/SurfSense.git
synced 2026-05-25 19:15:18 +02:00
refactor(desktop): harden OAuth redirect rewrite for host variants and self-hosters
The interceptor previously matched a strict `${HOSTED_FRONTEND_URL}/*`
prefix and did a naive String.replace, which broke whenever the backend
NEXT_FRONTEND_URL differed at all (apex vs www, http vs https, or a
self-hosted domain). Now:
- Match by host: apex + www. sibling, both http and https.
- Rewrite via URL parsing so only protocol/host change; query strings
containing the host as a value are left intact.
- Read HOSTED_FRONTEND_URL through getHostedFrontendUrl() which honors
a SURFSENSE_HOSTED_FRONTEND_URL_OVERRIDE env var, letting self-hosters
point their builds at their own frontend without rebuilding.
Default behavior is identical when override is unset and backend host
matches the baked-in value.
This commit is contained in:
CREDO23
parent
fe98c17b1d
commit
1b6c238c68
2 changed files with 39 additions and 6 deletions
|
|
@ -5,6 +5,11 @@
|
|||
# inside the desktop app. Set to your production frontend domain.
|
||||
HOSTED_FRONTEND_URL=https://surfsense.net
|
||||
|
||||
# Runtime override for the above (read at app start, no rebuild required).
|
||||
# Useful for self-hosters whose backend NEXT_FRONTEND_URL differs from the
|
||||
# value baked into the official desktop builds. Leave empty to use HOSTED_FRONTEND_URL.
|
||||
# SURFSENSE_HOSTED_FRONTEND_URL_OVERRIDE=
|
||||
|
||||
# PostHog analytics (leave empty to disable)
|
||||
POSTHOG_KEY=
|
||||
POSTHOG_HOST=https://assets.surfsense.com
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue