improvement

go-gitea · lunny · Dec 28, 2022 · Dec 13, 2022 · Dec 13, 2022 · Dec 13, 2022
commit 0376f236c36c3c20618ea05d710679e6ff269285
diff --git a/modules/context/context.go b/modules/context/context.go
@@ -666,7 +666,7 @@ func Auth(authMethod auth.Method) func(*Context) {
 		ctx.Doer, err = authMethod.Verify(ctx.Req, ctx.Resp, ctx, ctx.Session)
 		if err != nil {
 			log.Error("Failed to verify user %v: %v", ctx.Req.RemoteAddr, err)
-			ctx.Error(401, "Verify")
+			ctx.Error(http.StatusUnauthorized, "Verify")
 			return
 		}
 		if ctx.Doer != nil {

diff --git a/routers/api/packages/container/auth.go b/routers/api/packages/container/auth.go
@@ -23,10 +23,8 @@ func (a *Auth) Name() string {
 func (a *Auth) Verify(req *http.Request, w http.ResponseWriter, store auth.DataStore, sess auth.SessionStore) (*user_model.User, error) {
 	uid, err := packages.ParseAuthorizationToken(req)
 	if err != nil {
-		if err.Error() != "no token" {
-			log.Trace("ParseAuthorizationToken: %v", err)
-			return nil, err
-		}
+		log.Trace("ParseAuthorizationToken: %v", err)
+		return nil, err
 	}
 
 	if uid == 0 {

diff --git a/services/packages/auth.go b/services/packages/auth.go
@@ -41,9 +41,14 @@ func CreateAuthorizationToken(u *user_model.User) (string, error) {
 }
 
 func ParseAuthorizationToken(req *http.Request) (int64, error) {
-	parts := strings.SplitN(req.Header.Get("Authorization"), " ", 2)
+	h := req.Header.Get("Authorization")
+	if h == "" {
+		return 0, nil
+	}
+
+	parts := strings.SplitN(h, " ", 2)
 	if len(parts) != 2 {
-		return 0, fmt.Errorf("no token")
+		return 0, fmt.Errorf("split token failed: %s", h)
 	}
 
 	token, err := jwt.ParseWithClaims(parts[1], &packageClaims{}, func(t *jwt.Token) (interface{}, error) {