Fix flashcards API endpoints

[atul-upadhyay-7]

Fixes #449. Renamed RAG endpoints to match frontend and added Express proxy routes.

[vercel]

@atul-upadhyay-7 is attempting to deploy a commit to the firefistisdead's projects Team on Vercel.

A member of the Team first needs to authorize it.

[coderabbitai]

Warning

Review limit reached

@atul-upadhyay-7, we couldn't start this review because you've reached your PR review rate limit.

More reviews will be available in 49 minutes and 2 seconds. Learn how PR review limits work.

Your organization has run out of usage credits. Purchase more in the billing tab.

⌛ How to resolve this issue?

After more reviews become available, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans include higher PR review limits than trial, open-source, and free plans. In all cases, reviews become available again over time. During sustained high-volume PR review activity, CodeRabbit may temporarily slow when the next review becomes available.

Please see our Fair Usage Limits Policy for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro Plus

Run ID: af09a1c6-3da9-4a1b-99a3-2b86f9b39780

📥 Commits

Reviewing files that changed from the base of the PR and between 42ae762 and a6bc688.

📒 Files selected for processing (3)

• rag-service/main.py
• server.js
• server.test.js

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[Copilot]

Pull request overview

Note

Copilot was unable to run its full agentic suite in this review.

Adds “flashcards” functionality by proxying new session flashcard endpoints through the Node server to the RAG service, updates the RAG service route paths to match, and adjusts tests to use a signed Supabase JWT.

Changes:

• Add /sessions/flashcards and /sessions/flashcards/progress endpoints to server.js with request validation and RAG error propagation.
• Rename/align RAG service endpoints to /sessions/flashcards and /sessions/flashcards/progress.
• Extend server tests to cover the new endpoints and update Authorization headers to use a signed JWT.

Reviewed changes

Copilot reviewed 3 out of 3 changed files in this pull request and generated 7 comments.

File	Description
server.test.js	Updates auth header handling and adds tests for new flashcards endpoints + internal token forwarding.
server.js	Adds validated proxy routes for flashcard generation and progress updates to the RAG service.
rag-service/main.py	Aligns FastAPI route paths with the new server proxy endpoints and marks them as protected routes.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.