From a8fa1434bedb25c0837a9841b1e435f8ba75f122 Mon Sep 17 00:00:00 2001 From: Gabor Torok Date: Fri, 27 Feb 2026 10:22:17 -0800 Subject: [PATCH] use bearer tokens --- app/routers/iri_router.py | 12 +++++++----- 1 file changed, 7 insertions(+), 5 deletions(-) diff --git a/app/routers/iri_router.py b/app/routers/iri_router.py index 950f68b..3ea6c28 100644 --- a/app/routers/iri_router.py +++ b/app/routers/iri_router.py @@ -4,11 +4,11 @@ import logging import importlib from fastapi import Request, Depends, HTTPException, APIRouter -from fastapi.security import APIKeyHeader +from fastapi.security import HTTPBearer, HTTPAuthorizationCredentials from .account.models import User -bearer_token = APIKeyHeader(name="Authorization") +bearer_scheme = HTTPBearer() def get_client_ip(request: Request) -> str | None: @@ -76,11 +76,13 @@ def create_adapter(router_name, router_adapter): async def current_user( self, request: Request, - api_key: str = Depends(bearer_token), + credentials: HTTPAuthorizationCredentials = Depends(bearer_scheme), ): + token = credentials.credentials + user_id = None try: - user_id = await self.adapter.get_current_user(api_key, get_client_ip(request)) + user_id = await self.adapter.get_current_user(token, get_client_ip(request)) except Exception as exc: logging.getLogger().error(f"Error parsing IRI_API_PARAMS: {exc}") traceback.print_exc() @@ -88,7 +90,7 @@ async def current_user( if not user_id: raise HTTPException(status_code=403, detail="Unauthorized access") request.state.current_user_id = user_id - request.state.api_key = api_key + request.state.api_key = token class AuthenticatedAdapter(ABC):