alemi/aioappsrv
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

fix: get access token from Authorization header

Browse source
This commit is contained in:
əlemi 2024-04-09 14:22:58 +02:00
parent b021ae5941
commit 1732fa23bd
1 changed files with 5 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
src/aioappsrv/app.py
View file

@ -50,7 +50,11 @@ class AppService:
async def _handler(self, request: web.Request) -> web.Response:
self.logger.debug("handling webhook callback %s", request)
hs_token = request.query.getone("access_token")
hs_token = request.headers.get("Authorization")
if not hs_token:
hs_token = request.query.get("access_token") # older method
else:
hs_token = hs_token.replace("Bearer ", "")
if not hs_token:
return web.Response(status=401)
if hs_token != self.hs_token: