add cors

cjustinobi · cjustinobi · commit 7d0c8e80f036 · 2026-03-22T16:42:21.000+01:00
diff --git a/Cargo.toml b/Cargo.toml
@@ -31,6 +31,7 @@ bigdecimal = { version = "0.4", features = ["serde"] }
 utoipa = { version = "5.4.0", features = ["macros", "axum_extras", "chrono", "uuid", "decimal"] }
 utoipa-swagger-ui = { version = "9", features = ["axum"] }
 tower-cookies = "0.5"
+tower-http = { version = "0.6.2", features = ["cors"] }
 r2d2 = "0.8.10"
 resend-rs = "0.19.0"
 hex = "0.4.3"
diff --git a/src/auth/socials.rs b/src/auth/socials.rs
@@ -11,6 +11,7 @@ pub fn login_or_register_social_user(
     conn: &mut PgConnection,
     profile: SocialProfile,
     provider: &str,
+    role: Option<Role>,
 ) -> Result<User, AppError> {
     use crate::schema::{social_accounts, users};
 
@@ -50,7 +51,7 @@ pub fn login_or_register_social_user(
                 dob: None,
                 image_url: None,
                 password_hash: "", // IMPORTANT: no password
-                role: Role::Patient,
+                role: role.unwrap_or(Role::Patient),
                 consultation_preference: None,
             };
 
diff --git a/src/handlers/socials.rs b/src/handlers/socials.rs
@@ -7,7 +7,7 @@ use crate::{
     auth::{socials, service as auth}, 
     error::AppError, 
     handlers::auth::AuthResponse, 
-    utils::response::ApiResponse,
+    utils::{response::ApiResponse, enums::Role},
 };
 
 #[derive(Deserialize)]
@@ -23,6 +23,7 @@ pub struct GoogleTokenInfo {
 pub struct SocialLoginRequest {
     pub provider: String,
     pub access_token: String,
+    pub role: Option<Role>,
 }
 
 #[derive(Serialize, ToSchema)]
@@ -62,6 +63,7 @@ pub async fn social_login(
         &mut conn,
         profile,
         &payload.provider,
+        payload.role,
     )?;
 
     let refresh_token = auth::create_refresh_token(&mut conn, user.id)?;
diff --git a/src/main.rs b/src/main.rs
@@ -19,6 +19,7 @@ mod utils;
 use axum::{Router, http::StatusCode, routing::get};
 use std::net::SocketAddr;
 use tracing_subscriber;
+use tower_http::cors::{Any, CorsLayer};
 use utoipa::OpenApi;
 use utoipa_swagger_ui::SwaggerUi;
 
@@ -50,6 +51,11 @@ async fn main() -> anyhow::Result<()> {
         cloudinary_service,
     };
 
+    let cors = CorsLayer::new()
+        .allow_origin(Any) // For development, we can allow any origin. For production, specify origins.
+        .allow_methods(Any)
+        .allow_headers(Any);
+
     let app = Router::new()
         .merge(SwaggerUi::new("/docs").url("/api-docs/openapi.json", ApiDoc::openapi()))
         .nest("/api", routes::create_router())
@@ -58,6 +64,7 @@ async fn main() -> anyhow::Result<()> {
             get(|| async { (StatusCode::OK, "The health is healthing! ...") }),
         )
         .layer(axum::Extension(state.clone()))
+        .layer(cors)
         .with_state(state);
 
     let addr: SocketAddr = cfg.bind_addr.parse()?;
