fix(chat-web): inject runtime env vars for client-side auth

Problem: Browser was calling localhost:3001 instead of staging server IP because environment variables from Docker aren't available client-side. Solution: 1. Add PUBLIC_*_CLIENT env vars to docker-compose.staging.yml for browser URLs 2. Inject these into window.__PUBLIC_*__ via hooks.server.ts transformPageChunk 3. Auth store reads from window variable for client-side requests This pattern properly handles: - SSR: Uses Docker internal URLs (http://mana-core-auth:3001) - Client: Uses public URLs (http://46.224.108.214:3001) - Local dev: Falls back to localhost 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
2026-05-14 19:41:09 +02:00 · 2025-12-05 03:38:53 +01:00 · 2025-12-05 03:38:53 +01:00 · 44608074fc
commit 44608074fc
parent 0c05097459
3 changed files with 29 additions and 10 deletions
--- a/apps/chat/apps/web/src/hooks.server.ts
+++ b/apps/chat/apps/web/src/hooks.server.ts
@ -1,10 +1,27 @@
 /**
 * Server Hooks for SvelteKit
- * Auth is now handled client-side via Mana Core Auth
+ * - Injects runtime environment variables for client-side use
+ * - Auth is handled client-side via Mana Core Auth
 */

 import type { Handle } from '@sveltejs/kit';

+// Get client-side URLs from environment (Docker runtime)
+const PUBLIC_MANA_CORE_AUTH_URL_CLIENT =
+	process.env.PUBLIC_MANA_CORE_AUTH_URL_CLIENT || process.env.PUBLIC_MANA_CORE_AUTH_URL || '';
+const PUBLIC_BACKEND_URL_CLIENT =
+	process.env.PUBLIC_BACKEND_URL_CLIENT || process.env.PUBLIC_BACKEND_URL || '';
+
 export const handle: Handle = async ({ event, resolve }) => {
-	return resolve(event);
+	return resolve(event, {
+		transformPageChunk: ({ html }) => {
+			// Inject runtime environment variables into the HTML
+			// These will be available on window.__PUBLIC_*__ for client-side code
+			const envScript = `<script>
+window.__PUBLIC_MANA_CORE_AUTH_URL__ = "${PUBLIC_MANA_CORE_AUTH_URL_CLIENT}";
+window.__PUBLIC_BACKEND_URL__ = "${PUBLIC_BACKEND_URL_CLIENT}";
+</script>`;
+			return html.replace('<head>', `<head>${envScript}`);
+		},
+	});
 };
--- a/apps/chat/apps/web/src/lib/stores/auth.svelte.ts
+++ b/apps/chat/apps/web/src/lib/stores/auth.svelte.ts
@ -10,15 +10,13 @@ import type { UserData } from '@manacore/shared-auth';
 // Get auth URL dynamically at runtime - fallback for SSR and client
 function getAuthUrl(): string {
 	if (browser && typeof window !== 'undefined') {
-		// Client-side: check for injected env or use default
-		return (
-			(window as unknown as { __PUBLIC_MANA_CORE_AUTH_URL__?: string })
-				.__PUBLIC_MANA_CORE_AUTH_URL__ ||
-			import.meta.env.PUBLIC_MANA_CORE_AUTH_URL ||
-			'http://localhost:3001'
-		);
+		// Client-side: use injected window variable (set by hooks.server.ts)
+		// Falls back to localhost for local development
+		const injectedUrl = (window as unknown as { __PUBLIC_MANA_CORE_AUTH_URL__?: string })
+			.__PUBLIC_MANA_CORE_AUTH_URL__;
+		return injectedUrl || 'http://localhost:3001';
 	}
-	// Server-side: use process.env or default
+	// Server-side (SSR): use Docker internal URL for container-to-container communication
 	return process.env.PUBLIC_MANA_CORE_AUTH_URL || 'http://localhost:3001';
 }

--- a/docker-compose.staging.yml
+++ b/docker-compose.staging.yml
@ -135,8 +135,12 @@ services:
    environment:
      NODE_ENV: staging
      PORT: 3000
+      # Server-side URLs (Docker internal network)
      PUBLIC_BACKEND_URL: http://chat-backend:3002
      PUBLIC_MANA_CORE_AUTH_URL: http://mana-core-auth:3001
+      # Client-side URLs (browser access via public IP)
+      PUBLIC_BACKEND_URL_CLIENT: http://46.224.108.214:3002
+      PUBLIC_MANA_CORE_AUTH_URL_CLIENT: http://46.224.108.214:3001
    ports:
      - "3000:3000"
    healthcheck: