Issue connecting NextJs APi route NestJs app

rationem · March 2, 2023, 8:25pm

Hi, I am having an issue connecting from nextJS API route to NestJs API

Using the Test token and postman the authentication in NestJS works it only fails when attempting to connect from NExtJS frontend.

My code follows Auth0 documentation:
My protected API route is:

// pages/api/v1/protectedExternalApi.js
import { getAccessToken, withApiAuthRequired } from '@auth0/nextjs-auth0';

export default withApiAuthRequired(async function products(req, res) {
	// If your access token is expired and you have a refresh token
	// `getAccessToken` will fetch you a new one using the `refresh_token` grant
	console.log('api/v1/protectedExternalApi');
	const { accessToken } = await getAccessToken(req, res);
	console.log(`accessToken ${accessToken}`);
	const response = await fetch(
		'http://localhost:8000/api/v1/messages/protected',
		{
			headers: {
				Authorization: `Bearer ${accessToken}`,
			},
		}
	);
	console.log('response on nestJs');
	console.log(response);
	const products = await response.json();
	console.log(products);
	res.status(200).json(products);
});

The logging of the access key shows that a key is found and I am definitely logged in on the frontend

The NextJs Guard is as below:

import {
  CanActivate,
  ExecutionContext,
  Injectable,
  InternalServerErrorException,
  UnauthorizedException,
} from '@nestjs/common';
import { ConfigService } from '@nestjs/config';
import { Request, Response } from 'express';
import { auth, InvalidTokenError, UnauthorizedError } from 'express-oauth2-jwt-bearer';
import { promisify } from 'util';

@Injectable()
export class AuthorizationGuard implements CanActivate {
  constructor(private configService: ConfigService) {}
  ISSUER_BASE_URL = this.configService.get('ISSUER_BASE_URL');
  AUDIENCE = this.configService.get('AUDIENCE');

  async canActivate(context: ExecutionContext): Promise<boolean> {
    const request = context.switchToHttp().getRequest<Request>();
    const response = context.switchToHttp().getResponse<Response>();
    console.log(request);
    const validateAccessToken = promisify(auth());

    try {
      console.log('canActivate request');
      console.log(request);
      await validateAccessToken(request, response);

      return true;
    } catch (error) {
      if (error instanceof InvalidTokenError) {
        throw new UnauthorizedException('Bad credentials');
      }

      if (error instanceof UnauthorizedError) {
        throw new UnauthorizedException('Requires authentication');
      }

      throw new InternalServerErrorException();
    }
  }
}

The NextJs application is registered on the dashboard as 'Regular Web App"
The NestJs is registered as API

If it would help I can add the GitHub repos.

I would be grateful for any assistance in getting this basic use case solved .