estel/dify
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

remove duplicated authorization header handling and bearer should be case-insensitive (#24852)

Browse Source
This commit is contained in:
NeatGuyCoding
2025-09-01 10:05:19 +08:00
committed by GitHub
parent b8d8dddd5a
commit c45d676477
1 changed files with 4 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
api/controllers/console/auth/oauth_server.py
View File

@@ -44,22 +44,19 @@ def oauth_server_access_token_required(view):
if not oauth_provider_app or not isinstance(oauth_provider_app, OAuthProviderApp): if not oauth_provider_app or not isinstance(oauth_provider_app, OAuthProviderApp):
raise BadRequest("Invalid oauth_provider_app") raise BadRequest("Invalid oauth_provider_app")
if not request.headers.get("Authorization"):
raise BadRequest("Authorization is required")
authorization_header = request.headers.get("Authorization") authorization_header = request.headers.get("Authorization")
if not authorization_header: if not authorization_header:
raise BadRequest("Authorization header is required") raise BadRequest("Authorization header is required")
parts = authorization_header.split(" ") parts = authorization_header.strip().split(" ")
if len(parts) != 2: if len(parts) != 2:
raise BadRequest("Invalid Authorization header format") raise BadRequest("Invalid Authorization header format")
token_type = parts[0] token_type = parts[0].strip()
if token_type != "Bearer": if token_type.lower() != "bearer":
raise BadRequest("token_type is invalid") raise BadRequest("token_type is invalid")
access_token = parts[1] access_token = parts[1].strip()
if not access_token: if not access_token:
raise BadRequest("access_token is required") raise BadRequest("access_token is required")