fix: propagate baseUrl correctly in API key authentication (#446)

amikofalvy · claude · web-flow · commit 782057178a11 · 2025-10-01T18:33:39.000-07:00
Fix bug where baseUrl was not properly propagated through the authentication chain, causing remote deployments to fall back to localhost:3003 instead of using the actual deployment URL. Changes: - Update extractContextFromApiKey to accept and pass baseUrl parameter - Update all calls to extractContextFromApiKey to pass baseUrl from request - Improve error logging in A2AClient to show actual error details This ensures A2A agent card fetches use the correct deployment URL in production environments. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-authored-by: Claude <noreply@anthropic.com>
diff --git a/agents-run-api/src/a2a/client.ts b/agents-run-api/src/a2a/client.ts
@@ -186,7 +186,7 @@ export class A2AClient {
       this.serviceEndpointUrl = agentCard.url; // Cache the service endpoint URL from the agent card
       return agentCard;
     } catch (error) {
-      console.error('Error fetching or parsing Agent Card:');
+      console.error('Error fetching or parsing Agent Card:', error);
       // Allow the promise to reject so users of agentCardPromise can handle it.
       throw error;
     }
diff --git a/agents-run-api/src/middleware/api-key-auth.ts b/agents-run-api/src/middleware/api-key-auth.ts
@@ -37,7 +37,7 @@ export const apiKeyAuth = () =>
 
       if (authHeader?.startsWith('Bearer ')) {
         try {
-          executionContext = await extractContextFromApiKey(authHeader.substring(7));
+          executionContext = await extractContextFromApiKey(authHeader.substring(7), baseUrl);
           executionContext.agentId = agentId;
           logger.info({}, 'Development/test environment - API key authenticated successfully');
         } catch {
@@ -115,7 +115,7 @@ export const apiKeyAuth = () =>
         await next();
         return;
       } else if (apiKey) {
-        const executionContext = await extractContextFromApiKey(apiKey);
+        const executionContext = await extractContextFromApiKey(apiKey, baseUrl);
         executionContext.agentId = agentId;
 
         c.set('executionContext', executionContext);
@@ -141,7 +141,7 @@ export const apiKeyAuth = () =>
     }
 
     try {
-      const executionContext = await extractContextFromApiKey(apiKey);
+      const executionContext = await extractContextFromApiKey(apiKey, baseUrl);
       executionContext.agentId = agentId;
 
       c.set('executionContext', executionContext);
@@ -172,7 +172,7 @@ export const apiKeyAuth = () =>
     }
   });
 
-export const extractContextFromApiKey = async (apiKey: string) => {
+export const extractContextFromApiKey = async (apiKey: string, baseUrl?: string) => {
   const apiKeyRecord = await validateAndGetApiKey(apiKey, dbClient);
 
   if (!apiKeyRecord) {
@@ -187,6 +187,7 @@ export const extractContextFromApiKey = async (apiKey: string) => {
     projectId: apiKeyRecord.projectId,
     graphId: apiKeyRecord.graphId,
     apiKeyId: apiKeyRecord.id,
+    baseUrl: baseUrl,
   });
 };
 /**

Original file line number	Diff line number	Diff line change
`@@ -186,7 +186,7 @@ export class A2AClient {`
`186`	`186`	`this.serviceEndpointUrl = agentCard.url; // Cache the service endpoint URL from the agent card`
`187`	`187`	`return agentCard;`
`188`	`188`	`} catch (error) {`
`189`		`- console.error('Error fetching or parsing Agent Card:');`
	`189`	`+ console.error('Error fetching or parsing Agent Card:', error);`
`190`	`190`	`// Allow the promise to reject so users of agentCardPromise can handle it.`
`191`	`191`	`throw error;`
`192`	`192`	`}`