Skip to main content

3. Exposing Auth APIs

We will add all the backend APIs for auth on /auth/*. This can be changed by setting the apiBasePath property in the appInfo object on the backend and frontend. For the rest of this page, we will assume you are using /auth/*.

Copy this snippet to your handler file#

An example of this can be found here.

auth.js
import supertokens from "supertokens-node";
import { middleware } from "supertokens-node/framework/awsLambda";
import { getBackendConfig } from "./config";
import middy from "@middy/core";
import cors from "@middy/http-cors";

supertokens.init(getBackendConfig());

module.exports.handler = middy(middleware()).use(cors({
origin: getBackendConfig().appInfo.websiteDomain,
credentials: true,
headers: ["Content-Type", ...supertokens.getAllCORSHeaders()].join(", "),
methods: "OPTIONS,POST,GET,PUT,DELETE"
})).onError(request => {
throw request.error;
});
important

Notice that we called supertokens.init above. We will need to call this in all API endpoints that use any functions related to supertokens.

Which frontend SDK do you use?
supertokens-web-js / mobile
supertokens-auth-react