PM-2131 - allow other types of authentication tokens throughout the app

vas3a · vas3a · commit 36a330e056cf · 2025-09-29T09:09:42.000+03:00
diff --git a/src/shared/guards/gitea-webhook-auth.guard.ts b/src/shared/guards/gitea-webhook-auth.guard.ts
@@ -45,7 +45,7 @@ export class GiteaWebhookAuthGuard implements CanActivate {
         throw new BadRequestException('Missing authorization header');
       }
 
-      if (authHeader !== `Bearer ${auth}`) {
+      if (authHeader !== `SecretKey ${auth}`) {
         this.logger.error('Invalid authorization header');
         throw new ForbiddenException('Invalid authorization');
       }
diff --git a/src/shared/request/tokenRequestValidator.middleware.ts b/src/shared/request/tokenRequestValidator.middleware.ts
@@ -22,7 +22,11 @@ export class TokenValidatorMiddleware implements NestMiddleware {
 
     const [type, idToken] = request.headers.authorization.split(' ') ?? [];
 
-    if (type !== 'Bearer' || !idToken) {
+    if (type !== 'Bearer') {
+      return next();
+    }
+    
+    if (!idToken) {
       throw new UnauthorizedException('Invalid or missing JWT!');
     }
 

Original file line number	Diff line number	Diff line change
`@@ -45,7 +45,7 @@ export class GiteaWebhookAuthGuard implements CanActivate {`
`45`	`45`	`throw new BadRequestException('Missing authorization header');`
`46`	`46`	`}`
`47`	`47`
`48`		- if (authHeader !== `Bearer ${auth}`) {
	`48`	+ if (authHeader !== `SecretKey ${auth}`) {
`49`	`49`	`this.logger.error('Invalid authorization header');`
`50`	`50`	`throw new ForbiddenException('Invalid authorization');`
`51`	`51`	`}`