Stack Auth Proxy

[fomalhautb]

[vercel[bot]]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
stack-backend	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Sep 11, 2024 10:17pm
stack-dashboard	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Sep 11, 2024 10:17pm
stack-demo	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Sep 11, 2024 10:17pm
stack-partial-prerendering	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Sep 11, 2024 10:17pm

[zeropath-ai[bot]]

We have finished reviewing your PR. We have determined it as doing the following: Here are the key points describing what this PR does:

• Adds a new example project express-proxied-server with:

  • A .gitignore file
  • A package.json file with Express as a dependency
  • A server.js file containing a simple Express server

• Creates a new package stack-proxy with:

  • Next.js app structure and configuration files
  • A main.ts file implementing a proxy server
  • A README explaining the purpose and usage of the Stack Auth Proxy
  • Dependencies and scripts in package.json

• The Stack Auth Proxy:

  • Acts as a reverse proxy for authenticating HTTP requests
  • Redirects unauthenticated users to a sign-in page
  • Forwards authenticated requests to the target server with user info headers
  • Provides customizable protection patterns for routes
  • Includes built-in auth pages and user management functionality

• Adds configuration files for ESLint, TypeScript, and Tailwind CSS

• Implements Next.js API routes and pages for handling auth flows

• Includes assets like example screenshots

This PR essentially introduces a new authentication proxy tool built on Stack Auth, along with an example server to demonstrate its usage. We have found no vulnerabilities.

[zeropath-ai[bot]]

We have finished reviewing your PR. We have determined it as doing the following: Here are the key points describing what this PR does:

• Adds a new example project express-proxied-server with:

  • A .gitignore file
  • A package.json file with Express as a dependency
  • A server.js file containing a simple Express server

• Creates a new package stack-proxy with:

  • Next.js app structure and configuration files
  • A README explaining the purpose and usage of the Stack Auth Proxy
  • A main TypeScript file (main.ts) implementing the proxy server logic
  • Various configuration files for TypeScript, ESLint, and Tailwind CSS

• The stack-proxy package includes:

  • A command-line interface for running the proxy
  • Integration with Stack Auth for user authentication
  • Proxy functionality to forward requests to a target server
  • Handling of protected routes and authentication redirects

• Updates the root pnpm-lock.yaml file with new dependencies related to the added packages

This PR essentially introduces a new authentication proxy tool along with an example server to demonstrate its usage. We have found no vulnerabilities.

[zeropath-ai[bot]]

We have finished reviewing your PR. We have determined it as doing the following: Here are the key points describing what this PR does:

• Adds a new example project express-proxied-server with:

  • A .gitignore file
  • A package.json file with Express as a dependency
  • A server.js file containing a simple Express server

• Creates a new package stack-proxy with:

  • Next.js app structure and configuration files
  • A README explaining the purpose and usage of the Stack Auth Proxy
  • A main TypeScript file (main.ts) implementing the proxy server logic
  • Various configuration files for TypeScript, ESLint, and Tailwind CSS

• The stack-proxy package includes:

  • Authentication handling
  • Proxying requests to a backend server
  • User information headers management
  • Protected route patterns
  • Sign-in page rendering

• Updates the pnpm-lock.yaml file with new dependencies for the added packages

This PR essentially introduces a new authentication proxy tool along with an example server to demonstrate its usage. We have found no vulnerabilities.

[zeropath-ai[bot]]

We have finished reviewing your PR. We have determined it as doing the following: Here are the key points describing what this PR does:

• Adds a new example project express-proxied-server with:

  • A .gitignore file
  • A package.json file with Express as a dependency
  • A server.js file containing a simple Express server

• Creates a new package stack-proxy with:

  • Next.js app structure and configuration files
  • A README explaining the purpose and usage of the Stack Auth Proxy
  • A main TypeScript file (main.ts) implementing the proxy server logic
  • Various configuration files for TypeScript, ESLint, and Tailwind CSS

• The stack-proxy package includes:

  • Authentication handling
  • Proxying requests to a backend server
  • User information headers management
  • Protected route patterns
  • Sign-in page rendering

• Updates the pnpm-lock.yaml file with new dependencies for both the example project and the stack-proxy package

This PR essentially introduces a new authentication proxy tool along with an example of how it can be used with an Express server. We have found no vulnerabilities.

[zeropath-ai[bot]]

We have finished reviewing your PR. We have determined it as doing the following: Here are the key points describing what this PR does:

• Adds a new example project express-proxied-server with:

  • A .gitignore file
  • A package.json file with dependencies and scripts
  • A server.js file containing an Express server implementation

• Creates a new package stack-proxy with:

  • Next.js app structure and configuration files
  • A README.md explaining the Stack Auth Proxy functionality
  • A main.ts file implementing the proxy server logic
  • Various configuration files for TypeScript, ESLint, Tailwind CSS, etc.

• The stack-proxy package implements:

  • A proxy server that authenticates HTTP requests
  • Integration with Stack Auth for user authentication
  • Forwarding of authenticated requests to the target server
  • Handling of authentication-related routes (/handler/*)
  • Addition of user info headers to proxied requests

• Updates to the root pnpm-lock.yaml file, adding dependencies for the new packages

This PR essentially introduces a new authentication proxy tool and an example server to demonstrate its usage. We have found no vulnerabilities.

[zeropath-ai[bot]]

A Cross Site Scripting (XSS) vulnerability was detected, please view https://github.com/stack-auth/stack/pull/240 to fix the issue before merging.

[zeropath-ai[bot]]

A Cross Site Request Forgery (CSRF) vulnerability was detected, please view https://github.com/stack-auth/stack/pull/241 to fix the issue before merging.

[zeropath-ai[bot]]

A Insecure Configuration vulnerability was detected, please view https://github.com/stack-auth/stack/pull/244 to fix the issue before merging.

[zeropath-ai[bot]]

We have finished reviewing your PR. We have determined it as doing the following: Here are the key changes in this PR:

• Adds a new stack-proxy package with the following features:

  • A simple proxy server that authenticates HTTP requests and provides a sign-in interface
  • Forwards authenticated requests to the target server with user info headers
  • Includes Next.js pages for handling authentication flows
  • Configurable via command-line arguments

• Adds an example express-proxied-server to demonstrate usage of the proxy

• Updates various GitHub workflow files to include environment setup for the new stack-proxy package

• Removes the "Remove 2FA" option from the user actions in the dashboard

• Minor updates to VSCode settings and some package dependencies

This PR primarily introduces a new authentication proxy tool to the Stack Auth project, along with supporting examples and configuration updates. We have found no vulnerabilities.

[github-actions[bot]]

🌿 Preview your docs: https://stack-auth-preview-a16f92c7-bc5b-441e-b8f8-92a49e8a0fbf.docs.buildwithfern.com