tylerkohn Comments - Convex Community

tylerkohn

Posts Comments

CCConvex Community

•Created by samira.barouti on 4/17/2023 in #general

Authorization header in HTTP endpoints

ok, thanks!

16 replies

CCConvex Community

•Created by samira.barouti on 4/17/2023 in #general

Authorization header in HTTP endpoints

thanks, makes sense. Auth is always a challenge!

16 replies

CCConvex Community

•Created by samira.barouti on 4/17/2023 in #general

Authorization header in HTTP endpoints

there might have been some misunderstanding during an earlier conversation that led us to believe that if we used an http endpoint we could be in control of the authorization but I don't think we explicitly said we'd need to use bearer tokens.

16 replies

CCConvex Community

•Created by samira.barouti on 4/17/2023 in #general

Authorization header in HTTP endpoints

@sshader unfortunately this does not unblock us since some of our user are using clients that can only set the bearer token (we don't always control the client library, just the api endpoint)

16 replies

CCConvex Community

•Created by samira.barouti on 4/17/2023 in #general

Authorization header in HTTP endpoints

@ballingt to follow up on this. If I make a request like: curl -X POST https://hearty-crocodile-ABC.convex.site/test -d '{"name": "bob"}' -H "Content-Type: application/json" -H "X-API-key: apikeyvalue" my http endpoint get the request and I can process it. If I call: curl -X POST https://hearty-crocodile-ABC.convex.site/test -d '{"name": "bob"}' -H "Content-Type: application/json" -H "Authorization: Bearer apikeyvalue" I get: {"code":"InvalidHeader","message":"Invalid Authorization header"}%
and my http endpoint never gets the request

16 replies

CCConvex Community

•Created by tylerkohn on 4/7/2023 in #support-community

Http endpoints for client sdks using api keys vs auth tokens (e.g. clerk)

ok, thanks for the update on Elysia

12 replies

CCConvex Community

•Created by tylerkohn on 4/7/2023 in #support-community

Http endpoints for client sdks using api keys vs auth tokens (e.g. clerk)

thanks. will check out elysia. For 2) we'd much prefer to use a header since that's generally best practices from a security standpoint (did consider passing the api key as an argument). Yea are going down the road of writing our own client. was just hoping for some faster ways to get this done!

12 replies

CCConvex Community

•Created by tylerkohn on 4/7/2023 in #support-community

Http endpoints for client sdks using api keys vs auth tokens (e.g. clerk)

thanks, correct.

12 replies

CCConvex Community

•Created by Tristan on 3/1/2023 in #general

Deploy Preview Environments

yea we get it via NEXT_PUBLIC_CONVEX_URL in a vercel env variable. that's the easy part! I added a check to not deploy if in the preview build. seems to work. Would be really nice to have support for preview environments (or integration builds, etc) so we can have a true CI/CD system in place. looking forward to that announcement 😉 !

43 replies

CCConvex Community

•Created by Tristan on 3/1/2023 in #general

Deploy Preview Environments

I'll dig that up. unfortunately I need to run. will be online later. thanks!

43 replies

CCConvex Community

•Created by Tristan on 3/1/2023 in #general

Deploy Preview Environments

yep

43 replies

CCConvex Community