refactor-group · jhodapp · Dec 14, 2024 · Dec 12, 2024 · Dec 12, 2024 · Dec 12, 2024
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/Dockerfile b/Dockerfile
@@ -67,7 +67,7 @@ EXPOSE 4000
 
 # Default command starts an interactive bash shell
 # Set ENTRYPOINT to default to run the Rust binary with arguments
-ENTRYPOINT ["/bin/bash", "-c", "/usr/local/bin/refactor_platform_rs -l DEBUG -i \"$SERVICE_INTERFACE\" -p \"$SERVICE_PORT\" -d \"$DATABASE_URL\""]
+ENTRYPOINT ["/bin/bash", "-c", "/usr/local/bin/refactor_platform_rs -l $LOG_LEVEL_FILTER -i \"$BACKEND_INTERFACE\" -p \"$BACKEND_PORT\" -d \"$DATABASE_URL\" --allowed_origins=\"$ALLOWED_ORIGINS\""]
 
 # Default CMD allows overriding with custom commands
 CMD ["bash"]
diff --git a/docker-compose.yaml b/docker-compose.yaml
@@ -34,10 +34,10 @@ services:
       POSTGRES_HOST: postgres  # Set PostgreSQL host to "postgres" service
       POSTGRES_PORT: ${POSTGRES_PORT}  # Set PostgreSQL port from environment variable
       DATABASE_URL: postgres://${POSTGRES_USER}:${POSTGRES_PASSWORD}@postgres:${POSTGRES_PORT}/${POSTGRES_DB}  # Configure database URL
-      SERVICE_PORT: ${SERVICE_PORT}  # Set service port from environment variable
-      SERVICE_INTERFACE: ${SERVICE_INTERFACE}  # Set service interface from environment variable
+      PORT: ${BACKEND_PORT}  # Set service port from environment variable
+      INTERFACE: ${BACKEND_INTERFACE}  # Set service interface from environment variable
     ports:
-      - "${SERVICE_PORT}:${SERVICE_PORT}"  # Map host port to container's service port
+      - "${BACKEND_PORT}:${BACKEND_PORT}"  # Map host port to container's service port
     depends_on:
       - postgres  # Ensure postgres service starts before rust-app
     networks:
@@ -50,7 +50,7 @@ services:
       dockerfile: Dockerfile
       target: runner  # Use runner target
     ports:
-      - "${NEXTJS_FRONTEND_PORT}:${NEXTJS_FRONTEND_PORT}"  # Map host port to frontend container's service port
+      - "${FRONTEND_PORT}:${FRONTEND_PORT}"  # Map host port to frontend container's service port
     depends_on:
       - rust-app  # Ensure postgres service starts before rust-app
 

diff --git a/service/Cargo.toml b/service/Cargo.toml
@@ -16,6 +16,7 @@ features = [
 
 [dependencies]
 clap = { version = "4.5.20", features = ["cargo", "derive", "env"] }
+dotenvy = "0.15"
 log = "0.4.22"
 simplelog = { version = "0.12.2", features = ["paris"] }
 serde = { version = "1.0.210", features = ["derive"] }

diff --git a/service/src/config.rs b/service/src/config.rs
@@ -1,5 +1,6 @@
 use clap::builder::TypedValueParser as _;
 use clap::Parser;
+use dotenvy::dotenv;
 use log::LevelFilter;
 use semver::{BuildMetadata, Prerelease, Version};
 use serde::Deserialize;
@@ -26,6 +27,16 @@ pub struct ApiVersion {
 #[derive(Clone, Debug, Parser)]
 #[command(author, version, about, long_about = None)]
 pub struct Config {
+    /// A list of full CORS origin URLs that allowed to receive server responses.
+    #[arg(
+        long,
+        env,
+        value_delimiter = ',',
+        use_value_delimiter = true,
+        default_value = "http://localhost:3000,https://localhost:3000"
+    )]
+    pub allowed_origins: Vec<String>,
+
     /// Set the current semantic version of the endpoint API to expose to clients. All
     /// endpoints not contained in the specified version will not be exposed by the router.
     #[arg(short, long, env, default_value = DEFAULT_API_VERSION,
@@ -44,17 +55,18 @@ pub struct Config {
     database_uri: Option<String>,
 
     /// The host interface to listen for incoming connections
-    #[arg(short, long, default_value = "127.0.0.1")]
+    #[arg(short, long, env, default_value = "127.0.0.1")]
     pub interface: Option<String>,
 
     /// The host TCP port to listen for incoming connections
-    #[arg(short, long, default_value_t = 4000)]
+    #[arg(short, long, env, default_value_t = 4000)]
     pub port: u16,
 
     /// Set the log level verbosity threshold (level) to control what gets displayed on console output
     #[arg(
         short,
         long,
+        env,
         default_value_t = LevelFilter::Warn,
         value_parser = clap::builder::PossibleValuesParser::new(["OFF", "ERROR", "WARN", "INFO", "DEBUG", "TRACE"])
             .map(|s| s.parse::<LevelFilter>().unwrap()),
@@ -70,6 +82,9 @@ impl Default for Config {
 
 impl Config {
     pub fn new() -> Self {
+        // Load .env file first
+        dotenv().ok();
+        // Then parse the command line parameters and flags
         Config::parse()
     }
 

diff --git a/web/src/lib.rs b/web/src/lib.rs
@@ -1,4 +1,7 @@
-use axum::http::{header::CONTENT_TYPE, HeaderName, HeaderValue, Method};
+use axum::http::{
+    header::{AUTHORIZATION, CONTENT_TYPE},
+    HeaderName, HeaderValue, Method,
+};
 use axum_login::{
     tower_sessions::{Expiry, SessionManagerLayer},
     AuthManagerLayerBuilder,
@@ -22,6 +25,7 @@ pub(crate) mod extractors;
 mod router;
 
 pub async fn init_server(app_state: AppState) -> Result<()> {
+    info!("Connecting to DB with URI: {}", app_state.config.database_uri());
     // Session layer
     let session_store = PostgresStore::new(
         app_state
@@ -60,6 +64,15 @@ pub async fn init_server(app_state: AppState) -> Result<()> {
     info!("Server starting... listening for connections on http://{host}:{port}");
 
     let listener = TcpListener::bind(listen_addr).await.unwrap();
+    // Convert the type of the allow_origins Vec into a HeaderValue that the CorsLayer accepts
+    let allowed_origins = app_state
+        .config
+        .allowed_origins
+        .iter()
+        .filter_map(|origin| origin.parse().ok())
+        .collect::<Vec<HeaderValue>>();
+    info!("allowed_origins: {:#?}", allowed_origins);
+
     let cors_layer = CorsLayer::new()
         .allow_methods([
             Method::DELETE,
@@ -72,10 +85,12 @@ pub async fn init_server(app_state: AppState) -> Result<()> {
         // Allow and expose the X-Version header across origins
         .allow_headers([
             ApiVersion::field_name().parse::<HeaderName>().unwrap(),
+            AUTHORIZATION,
             CONTENT_TYPE,
         ])
         .expose_headers([ApiVersion::field_name().parse::<HeaderName>().unwrap()])
-        .allow_origin("http://localhost:3000".parse::<HeaderValue>().unwrap());
+        .allow_private_network(true)
+        .allow_origin(allowed_origins);
 
     axum::serve(
         listener,