merged audit from pryv

Author: Perki

components/register/src/config.js

@@ -52,11 +52,12 @@ module.exports = {
     if (settingPublicUrl.slice(-1) !== '/') {
       settingPublicUrl += '/';
     }
-    // const pathPublicUrl = settingPublicUrl.slice(0, -1);
+    const pathPublicUrl = settingPublicUrl.slice(0, -1);
     config.publicUrl = settingPublicUrl;
     config['access:trustedAuthUrls'] = [settingPublicUrl];
-    config['access:defaultAuthUrl'] = [settings.get('hds:defaultAuthUrl')];
-    // pathPublicUrl + wwwPath + '/access/access.html' ];
+    // defaultAuthUrl is assigned to locally served app web auth unless configured
+    const defaultAuthUrl = settings.get('access:defaultAuthUrl') || pathPublicUrl + wwwPath + '/access/access.html';
+    config['access:defaultAuthUrl'] = [defaultAuthUrl];
 
     // load admin keys
     config.adminKey = settings.get('auth:adminAccessKey');

configs/api.yml

@@ -12,6 +12,9 @@ http:
 auth:
   adminAccessKey: REPLACE_ME # key to use for system calls such as `/reg/admin/users`. A random key should be generated on setup.
   trustedApps: "*@https://pryv.github.io*, *@https://*.rec.la*, *@https://*.backloop.dev*" # list of web apps that can be trusted-app functionalities
+
+access:
+  # defaultAuthUrl: https://your.host/path/access/access.html # uncomment to set another path for your app-web-auth3 
 service:
   serial: 1000001 # change serial number each time assets content needs to be reloaded by clients
   name: Open-Pryv.io