Spaces:

codersHub12
/

Taskflow

Sleeping

App Files Files Community

taahaasaif commited on Dec 23, 2025

Commit

44e5c21

verified ·

1 Parent(s): a7a60af

Update src/main.py

Browse files

Files changed (1) hide show

src/main.py +28 -10

src/main.py CHANGED Viewed

@@ -1,43 +1,61 @@
-from fastapi import FastAPI
 from fastapi.middleware.cors import CORSMiddleware
 from .database import engine
 from .models import user, task  # Import models to register them with SQLModel
 def create_app():
     app = FastAPI(
         title="Task Management API",
         description="API for managing tasks with user authentication",
         version="1.0.0"
     )
     # Add CORS middleware
     # Note: When allow_credentials=True, you cannot use wildcard '*' for origins
     # Must specify exact origins
     app.add_middleware(
         CORSMiddleware,
-        allow_origins=["http://localhost:3000"],  # Frontend origin
         allow_credentials=True,
         allow_methods=["*"],
         allow_headers=["*"],
     )
     # Import and include routers
     from .routers import auth, tasks
     app.include_router(auth.router, prefix="/api", tags=["authentication"])
     app.include_router(tasks.router, prefix="/api", tags=["tasks"])
     @app.get("/")
     def read_root():
         return {"message": "Task Management API"}
     @app.get("/health")
     def health_check():
         return {"status": "healthy"}
     return app
 app = create_app()
 # Create database tables on startup (for development)
 @app.on_event("startup")
 def on_startup():

+from fastapi import FastAPI, Request
 from fastapi.middleware.cors import CORSMiddleware
 from .database import engine
 from .models import user, task  # Import models to register them with SQLModel
+from .config import settings
+import os
 def create_app():
     app = FastAPI(
         title="Task Management API",
         description="API for managing tasks with user authentication",
         version="1.0.0"
     )
+    # Get allowed origins from environment variable or use defaults
+    # Support multiple origins separated by commas
+    allowed_origins_str = os.getenv("ALLOWED_ORIGINS", "http://localhost:3000", "https://full-stack-todo-application-gwz8.vercel.app")
+    allowed_origins = [origin.strip() for origin in allowed_origins_str.split(",")]
+    # Also add common Vercel patterns if not already included
+    vercel_url = os.getenv("VERCEL_URL")
+    if vercel_url and vercel_url not in allowed_origins:
+        # Add both http and https versions
+        if not vercel_url.startswith("http"):
+            allowed_origins.append(f"https://{vercel_url}")
+        else:
+            allowed_origins.append(vercel_url)
     # Add CORS middleware
     # Note: When allow_credentials=True, you cannot use wildcard '*' for origins
     # Must specify exact origins
     app.add_middleware(
         CORSMiddleware,
+        allow_origins=allowed_origins,
         allow_credentials=True,
         allow_methods=["*"],
         allow_headers=["*"],
     )
     # Import and include routers
     from .routers import auth, tasks
     app.include_router(auth.router, prefix="/api", tags=["authentication"])
     app.include_router(tasks.router, prefix="/api", tags=["tasks"])
     @app.get("/")
     def read_root():
         return {"message": "Task Management API"}
     @app.get("/health")
     def health_check():
         return {"status": "healthy"}
+    @app.get("/debug/cookies")
+    def debug_cookies(request: Request):
+        """Debug endpoint to check if cookies are being received"""
+        return {
+            "cookies": dict(request.cookies),
+            "headers": dict(request.headers),
+            "origin": request.headers.get("origin"),
+            "referer": request.headers.get("referer"),
+        }
     return app
 app = create_app()
 # Create database tables on startup (for development)
 @app.on_event("startup")
 def on_startup():