Skip to main content

3. Exposing Auth APIs

We will add all the backend APIs for auth on /auth/*. This can be changed by setting the apiBasePath property in the appInfo object on the backend and frontend. For the rest of this page, we will assume you are using /auth/*.

Copy this snippet to your handler file#

An example of this can be found here.

import supertokens from "supertokens-node";
import { middleware } from "supertokens-node/framework/awsLambda";
import { getBackendConfig } from "./config";
import middy from "@middy/core";
import cors from "@middy/http-cors";


module.exports.handler = middy(middleware()).use(cors({
origin: getBackendConfig().appInfo.websiteDomain,
credentials: true,
headers: ["Content-Type", ...supertokens.getAllCORSHeaders()].join(", "),
})).onError(request => {
throw request.error;

Notice that we called supertokens.init above. We will need to call this in all API endpoints that use any functions related to supertokens.

Which frontend SDK do you use?
supertokens-web-js / mobile