Merge pull request #6097 from 0x00101010/remove-auth-check
[proxyd] do not block auth rpc call when auth is not enabled
This commit is contained in:
commit
28032fa2b2
@ -16,11 +16,9 @@ import (
|
|||||||
"sync"
|
"sync"
|
||||||
"time"
|
"time"
|
||||||
|
|
||||||
"github.com/ethereum/go-ethereum/core"
|
|
||||||
|
|
||||||
"github.com/ethereum/go-ethereum/common/hexutil"
|
"github.com/ethereum/go-ethereum/common/hexutil"
|
||||||
|
"github.com/ethereum/go-ethereum/core"
|
||||||
"github.com/ethereum/go-ethereum/core/types"
|
"github.com/ethereum/go-ethereum/core/types"
|
||||||
|
|
||||||
"github.com/ethereum/go-ethereum/log"
|
"github.com/ethereum/go-ethereum/log"
|
||||||
"github.com/go-redis/redis/v8"
|
"github.com/go-redis/redis/v8"
|
||||||
"github.com/gorilla/mux"
|
"github.com/gorilla/mux"
|
||||||
@ -580,16 +578,7 @@ func (s *Server) populateContext(w http.ResponseWriter, r *http.Request) context
|
|||||||
}
|
}
|
||||||
ctx := context.WithValue(r.Context(), ContextKeyXForwardedFor, xff) // nolint:staticcheck
|
ctx := context.WithValue(r.Context(), ContextKeyXForwardedFor, xff) // nolint:staticcheck
|
||||||
|
|
||||||
if len(s.authenticatedPaths) == 0 {
|
if len(s.authenticatedPaths) > 0 {
|
||||||
// handle the edge case where auth is disabled
|
|
||||||
// but someone sends in an auth key anyway
|
|
||||||
if authorization != "" {
|
|
||||||
log.Info("blocked authenticated request against unauthenticated proxy")
|
|
||||||
httpResponseCodesTotal.WithLabelValues("404").Inc()
|
|
||||||
w.WriteHeader(404)
|
|
||||||
return nil
|
|
||||||
}
|
|
||||||
} else {
|
|
||||||
if authorization == "" || s.authenticatedPaths[authorization] == "" {
|
if authorization == "" || s.authenticatedPaths[authorization] == "" {
|
||||||
log.Info("blocked unauthorized request", "authorization", authorization)
|
log.Info("blocked unauthorized request", "authorization", authorization)
|
||||||
httpResponseCodesTotal.WithLabelValues("401").Inc()
|
httpResponseCodesTotal.WithLabelValues("401").Inc()
|
||||||
|
Loading…
Reference in New Issue
Block a user