srizan/hctv
1
0
Fork 0
mirror of https://github.com/SrIzan10/hctv.git synced 2026-06-06 00:56:56 +00:00
Code Issues Packages Projects Releases 5 Wiki Activity

Add consistent prefix validation for both auth methods

Browse Source 
Co-authored-by: SrIzan10 <66965250+SrIzan10@users.noreply.github.com>
This commit is contained in:
copilot-swe-agent[bot]
2026-01-30 16:04:33 +00:00
committed by Izan Gil
parent 80595d6299
commit 1e27c7e77a
1 changed files with 6 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
apps/chat/src/index.ts
View File

@@ -44,9 +44,14 @@ app.get(
let personalChannel: any = null;
// Check for bot authentication via Authorization header or botAuth query parameter
// Authorization header takes precedence if both are provided
let apiKey: string | null = null;
if (authHeader && authHeader.startsWith('Bearer ')) {
apiKey = authHeader.substring(7);
const extractedKey = authHeader.substring(7);
// Validate the API key format before attempting database lookup
if (extractedKey.startsWith('hctvb_')) {
apiKey = extractedKey;
}
} else if (botAuth && typeof botAuth === 'string' && botAuth.trim().length > 0) {
// Validate botAuth query parameter format
if (botAuth.startsWith('hctvb_')) {