root
/
open-webui
mirror of https://github.com/open-webui/open-webui.git
1
0
Fork 0
Code Issues Actions 4 Packages Projects Releases Wiki Activity

fix: api key restrictions

This commit is contained in:
Timothy Jaeryang Baek 2024-12-27 00:32:25 -08:00
parent d99e3d49e1
commit 99386bf680
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
backend/open_webui/utils/auth.py
View File

@ -96,10 +96,12 @@ def get_current_user(
status.HTTP_403_FORBIDDEN, detail=ERROR_MESSAGES.API_KEY_NOT_ALLOWED status.HTTP_403_FORBIDDEN, detail=ERROR_MESSAGES.API_KEY_NOT_ALLOWED
) )
if request.app.state.ENABLE_API_KEY_ENDPOINT_RESTRICTIONS: if request.app.state.config.ENABLE_API_KEY_ENDPOINT_RESTRICTIONS:
allowed_paths = [ allowed_paths = [
path.strip() path.strip()
for path in str(request.app.state.API_KEY_ALLOWED_PATHS).split(",") for path in str(request.app.state.config.API_KEY_ALLOWED_PATHS).split(
","
)
] ]
if request.url.path not in allowed_paths: if request.url.path not in allowed_paths: