Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Get my secret value in a fetch method ? #21

Open
bat79a opened this issue Nov 7, 2019 · 5 comments
Open

Get my secret value in a fetch method ? #21

bat79a opened this issue Nov 7, 2019 · 5 comments
Labels
more detail needed Please provide an example or recreation

Comments

@bat79a
Copy link

bat79a commented Nov 7, 2019
edited
Loading

Hi.

I'm trying to catch my secret value in a fetch method, can you tell me how to do that ?
Env vars works well but the secret env doesn't work.

I have tryed this in my index.vue :

async fetch ({ app, store, params, error, app: { $axios } }) {
  ...
  const oauthPassword = app.$env.OAUTH_API_PASSWORD => is empty
  const oauthPassword = this.$env.OAUTH_API_PASSWORD => is empty

  const oauthUser = app.$env.OAUTH_API_USER => Catch the good env from my kubernetes secrets
  ...
}

Here is my nuxt.config.js :

 modules: [
  ...
  ['nuxt-env', {
      keys: [
        { key: 'OAUTH_CLIENT_ID', default: 'abcd' },
        { key: 'OAUTH_API_HOST', default: 'https://oauth.io/' },
        { key: 'OAUTH_API_USER', default: 'my_user' },
        { key: 'OAUTH_API_PASSWORD', secret: true }
      ]
    }]
  ...

Thx a lot.
@bat79a bat79a mentioned this issue Nov 7, 2019
Closed
@aldarund
Copy link

aldarund commented Nov 7, 2019

Fetch will be executed on client side too when navigating between pages, so using secret wont work like this

@bat79a
Copy link
Author

bat79a commented Nov 7, 2019

Humm here is the doc : https://fr.nuxtjs.org/api/pages-fetch/

Extract from doc :

The fetch method, if set, is called every time before loading the component (only for page components). It will be called server-side once (on the first request to the Nuxt app) and client-side when navigating to further routes.

So normaly, the first time, I will be able to catch the secret env on the server side ?

@bat79a
Copy link
Author

bat79a commented Nov 28, 2019
edited
Loading

up !
if someone has a solution ?

Same probleme with asyncdata method...

@Soviut
Copy link

Soviut commented Dec 4, 2019

Your fetch should not rely on a secret. If it does, you should make a small API endpoint in the nuxt server.js. This backend has access to the secret without it ever getting into the frontend. You can then call that endpoint from your fetch to get the data.

Anything to do with sensitive keys should always be handled in the backend which the frontend can talk to through an API endpoint.

@samtgarson
Copy link
Owner

Thanks @Soviut, I would say the same. It does seem strange to me that you would want the API call to happen if you access the page from the server but not happen if you access the page from the client, but I don't know your specific use case so won't comment further.

@bat79a In your first example you have destructured app to { $axios } which would make app itself undefined, I assume this is a typo.

I can't see any reason why app.$env should not be populated at that point, if you still struggle please create an example in codesandbox so I can take a look.

@samtgarson samtgarson added the more detail needed Please provide an example or recreation label Apr 16, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
more detail needed Please provide an example or recreation
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@Soviut @aldarund @samtgarson @bat79a