[#2] Allow unauthenticated requests to GET and SEARCH

Signed-off-by: Denis Kirillov <denis@nspcc.ru>
2022-10-26 12:40:17 +03:00 · 2022-10-26 12:40:17 +03:00 · 3f05207530
commit 3f05207530
parent ac5750670f
6 changed files with 151 additions and 88 deletions
--- a/handlers/auth.go
+++ b/handlers/auth.go
@ -106,13 +106,7 @@ func (a *API) PostAuth(params operations.AuthParams) middleware.Responder {

 // FormBinaryBearer handler that forms binary bearer token using headers with body and signature.
 func (a *API) FormBinaryBearer(params operations.FormBinaryBearerParams, principal *models.Principal) middleware.Responder {
-	bearerHeaders, err := prepareBearerTokenHeaders(params.XBearerSignature, params.XBearerSignatureKey, *params.WalletConnect, false)
-	if err != nil {
-		resp := a.logAndGetErrorResponse("invalid bearer headers", err)
-		return operations.NewFormBinaryBearerBadRequest().WithPayload(resp)
-	}
-
-	btoken, err := getBearerToken(principal, bearerHeaders)
+	btoken, err := getBearerToken(principal, params.XBearerSignature, params.XBearerSignatureKey, *params.WalletConnect, false)
 	if err != nil {
 		resp := a.logAndGetErrorResponse("invalid bearer token", err)
 		return operations.NewFormBinaryBearerBadRequest().WithPayload(resp)