fix(vite): Special handling for auth requests in proxy server during startup (#520)

Author: Tobbe

packages/vite/src/lib/getMergedConfig.ts

@@ -83,14 +83,22 @@ export function getMergedConfig(rwConfig: Config, rwPaths: Paths) {
                 waitingForApiServer = false
               }, 2500)
 
-              proxy.on('error', (err, _req, res) => {
+              proxy.on('error', (err, req, res) => {
                 const isWaiting =
                   waitingForApiServer && err.message.includes('ECONNREFUSED')
 
                 if (!isWaiting) {
                   console.error(err)
                 }
 
+                // This heuristic isn't perfect. It's written to handle dbAuth.
+                // But it's very unlikely the user would have code that does
+                // this exact request without it being a auth token request.
+                // We need this special handling because we don't want the error
+                // message below to be used as the auth token.
+                const isAuthTokenRequest =
+                  isWaiting && req.url === '/auth?method=getToken'
+
                 const waitingMessage =
                   '⌛ API Server launching, please refresh your page...'
                 const genericMessage =
@@ -103,11 +111,16 @@ export function getMergedConfig(rwConfig: Config, rwPaths: Paths) {
                   ],
                 }
 
+                // Use 203 to indicate that the response was modified by a proxy
                 res.writeHead(203, {
                   'Content-Type': 'application/json',
                   'Cache-Control': 'no-cache',
                 })
-                res.write(JSON.stringify(responseBody))
+
+                if (!isAuthTokenRequest) {
+                  res.write(JSON.stringify(responseBody))
+                }
+
                 res.end()
               })
             },