Compare commits

...

1 Commits

Author SHA1 Message Date
hurui200320 bcd6c8dccf fix(General): make auth header optional for forward auth endpoint
Unit test coverage / gradle-test (push) Failing after 3m2s
Unit test coverage / gradle-test (pull_request) Failing after 3m1s
CI for publishing docker image / build-and-publish (push) Successful in 3m19s
2025-06-20 18:09:46 +08:00
@@ -179,7 +179,8 @@ public class AuthController {
RequestMethod.PUT, RequestMethod.DELETE,
RequestMethod.PATCH})
public Mono<ResponseEntity<?>> forwardAuth(
@RequestHeader(HttpHeaders.AUTHORIZATION) String authorizationHeader,
@RequestHeader(value = HttpHeaders.AUTHORIZATION, required = false)
String authorizationHeader,
@RequestHeader(HEADER_X_FORWARDED_METHOD) String originalMethod,
@RequestHeader(HEADER_X_FORWARDED_URI) String originalUriString
) {
@@ -199,6 +200,9 @@ public class AuthController {
if (shouldPassThrough(targetServiceClientId, serviceRelativePath)) {
return Mono.just(ResponseEntity.status(HttpStatus.NO_CONTENT).build());
}
if (authorizationHeader == null) {
return Mono.just(ResponseEntity.status(HttpStatus.BAD_REQUEST).build());
}
// no pass-through, check permission
final var accessToken = extractBearerToken(authorizationHeader);
if (accessToken == null) {