fix(webdav): remove default Authorization header (close #893)

2025-04-22 12:58:45 +08:00 · 2022-04-03 18:19:15 +08:00 · 2022-04-03 18:19:15 +08:00 · f8650c9c0b
commit f8650c9c0b
parent bf2e5768d6
1 changed files with 5 additions and 0 deletions
--- a/server/common/proxy.go
+++ b/server/common/proxy.go
@ -12,6 +12,7 @@ import (
 	"net/url"
 	"os"
 	"strconv"
+	"strings"
 )

 var HttpClient = &http.Client{}
@ -56,8 +57,12 @@ func Proxy(w http.ResponseWriter, r *http.Request, link *base.Link, file *model.
 			return err
 		}
 		for h, val := range r.Header {
+			if strings.ToLower(h) == "authorization" {
+				continue
+			}
 			req.Header[h] = val
 		}
+		log.Debugf("req headers: %+v", r.Header)
 		for _, header := range link.Headers {
 			req.Header.Set(header.Name, header.Value)
 		}