fix #193 - auth middleware bug

2024-11-23 20:35:24 +01:00 · 2016-12-21 17:42:01 +09:00 · 2016-12-21 17:42:01 +09:00 · 324b6c9ee0
commit 324b6c9ee0
parent 411f612b85
1 changed files with 1 additions and 1 deletions
--- a/api/auth.go
+++ b/api/auth.go
@ -15,7 +15,7 @@ import (
 func authentication(c *gin.Context) {
 	var userID int
-	if authHeader := strings.ToLower(c.Request.Header.Get("authorization")); len(authHeader) > 0 {
+	if authHeader := strings.ToLower(c.Request.Header.Get("authorization")); len(authHeader) > 0 && strings.Contains(authHeader, "bearer") {
 		var token models.APIToken
 		if err := database.Mysql.SelectOne(&token, "select * from user__token where id=? and expired=0", strings.Replace(authHeader, "bearer ", "", 1)); err != nil {
 			if err == sql.ErrNoRows {