fix: Stripe loading

Author: danieldanielecki

.env.example

@@ -14,8 +14,8 @@ NEXT_PUBLIC_STRIPE_PRICE_ADS_FREE=price_...
 NEXT_PUBLIC_STRIPE_PRICE_BYOK=price_...
 NEXT_PUBLIC_STRIPE_PRICE_DITECTREV=price_...
 NEXT_PUBLIC_STRIPE_PRICE_LOCAL=price_...
-STRIPE_SECRET_KEY=
+NEXT_PUBLIC_STRIPE_SECRET_KEY=
 
 # AI Provider Keys (for Ditectrev premium service)
 DITECTREV_OPENAI_KEY=sk-...
-DITECTREV_MISTRAL_KEY=...
+DITECTREV_MISTRAL_KEY=...

.github/workflows/azure-static-web-apps-kind-plant-0e80e5803.yml

@@ -30,8 +30,9 @@ jobs:
       NEXT_PUBLIC_APPWRITE_COLLECTION_ID: ${{ secrets.NEXT_PUBLIC_APPWRITE_COLLECTION_ID }}
 
       # Stripe Configuration
-      STRIPE_SECRET_KEY: ${{ secrets.STRIPE_SECRET_KEY }} # Secret (sensitive)
-      NEXT_PUBLIC_STRIPE_SECRET_KEY: ${{ secrets.STRIPE_SECRET_KEY }} # TEMPORARY: Testing if NEXT_PUBLIC_ prefix is needed (SECURITY RISK - will expose to client!)
+      # Note: Using NEXT_PUBLIC_ prefix is required for Azure Static Web Apps runtime access
+      # This is safe because it's only used in server-side API routes, never in client components
+      NEXT_PUBLIC_STRIPE_SECRET_KEY: ${{ secrets.NEXT_PUBLIC_STRIPE_SECRET_KEY }}
       # Stripe Price IDs (environment variables, distinguished per environment)
       NEXT_PUBLIC_STRIPE_PRICE_ADS_FREE: ${{ vars.NEXT_PUBLIC_STRIPE_PRICE_ADS_FREE }}
       NEXT_PUBLIC_STRIPE_PRICE_LOCAL: ${{ vars.NEXT_PUBLIC_STRIPE_PRICE_LOCAL }}
@@ -52,20 +53,9 @@ jobs:
           node-version: "20.x"
         env:
           NODE_VERSION: "20.x"
-      - name: Verify Environment Variables
-        run: |
-          echo "Checking STRIPE_SECRET_KEY..."
-          if [ -z "$STRIPE_SECRET_KEY" ]; then
-            echo "ERROR: STRIPE_SECRET_KEY is not set!"
-            exit 1
-          else
-            echo "STRIPE_SECRET_KEY is set (length: ${#STRIPE_SECRET_KEY})"
-          fi
       - name: Build And Deploy
         id: builddeploy
         uses: Azure/static-web-apps-deploy@v1
-        env:
-          STRIPE_SECRET_KEY: ${{ secrets.STRIPE_SECRET_KEY }}
         with:
           azure_static_web_apps_api_token: ${{ secrets.AZURE_STATIC_WEB_APPS_API_TOKEN_KIND_PLANT_0E80E5803 }}
           repo_token: ${{ secrets.GITHUB_TOKEN }} # Used for Github integrations (i.e. PR comments)

app/api/stripe/create-checkout-session/route.ts

@@ -3,21 +3,6 @@ import Stripe from "stripe";
 
 export async function POST(request: NextRequest) {
   try {
-    // Diagnostic logging - check all environment variables
-    console.log("Environment variables check:", {
-      hasStripeKey: !!process.env.STRIPE_SECRET_KEY,
-      hasCosmosEndpoint: !!process.env.AZURE_COSMOSDB_ENDPOINT,
-      hasCosmosKey: !!process.env.AZURE_COSMOSDB_KEY,
-      hasCosmosDatabase: !!process.env.AZURE_COSMOSDB_DATABASE,
-      nodeEnv: process.env.NODE_ENV,
-      allEnvKeys: Object.keys(process.env).filter(
-        (key) =>
-          key.includes("STRIPE") ||
-          key.includes("COSMOS") ||
-          key.includes("AZURE"),
-      ),
-    });
-
     const { priceId } = await request.json();
 
     // Validate priceId
@@ -29,10 +14,10 @@ export async function POST(request: NextRequest) {
       );
     }
 
-    // Check for Stripe secret key (try both with and without NEXT_PUBLIC_ prefix)
-    const stripeSecretKey =
-      process.env.STRIPE_SECRET_KEY ||
-      process.env.NEXT_PUBLIC_STRIPE_SECRET_KEY;
+    // Check for Stripe secret key
+    // Note: Using NEXT_PUBLIC_ prefix is required for Azure Static Web Apps runtime access
+    // This is safe because it's only used in server-side API routes, never in client components
+    const stripeSecretKey = process.env.NEXT_PUBLIC_STRIPE_SECRET_KEY;
     if (!stripeSecretKey) {
       console.error("STRIPE_SECRET_KEY is not configured");
       return NextResponse.json(