lib/httpserver: skip basic auth check for additional request paths, which should call httpserver.CheckAuthFlag()

This is a follow-up for 61dce6f2a1 Updates https://github.com/VictoriaMetrics/VictoriaMetrics/pull/6338 Updates https://github.com/VictoriaMetrics/VictoriaMetrics/issues/6329
2026-05-23 19:56:31 +03:00 · 2024-07-16 01:00:42 +02:00
parent 0cf18a6f63
commit 8b76a40715
20 changed files with 109 additions and 96 deletions
--- a/lib/httpserver/httpserver_test.go
+++ b/lib/httpserver/httpserver_test.go
@@ -6,6 +6,8 @@ import (
 	"net/http/httptest"
 	"strings"
 	"testing"
+
+	"github.com/VictoriaMetrics/VictoriaMetrics/lib/flagutil"
 )

 func TestGetQuotedRemoteAddr(t *testing.T) {
@@ -97,7 +99,11 @@ func TestAuthKeyMetrics(t *testing.T) {
 		req.Header.Set("Content-Type", "application/x-www-form-urlencoded;param=value")
 		w := httptest.NewRecorder()

-		CheckAuthFlag(w, req, "rightKey", "metricsAuthkey")
+		p := &flagutil.Password{}
+		if err := p.Set("rightKey"); err != nil {
+			t.Fatalf("cannot set password: %s", err)
+		}
+		CheckAuthFlag(w, req, p)

 		res := w.Result()
 		defer res.Body.Close()
@@ -115,7 +121,11 @@ func TestAuthKeyMetrics(t *testing.T) {
 		req.SetBasicAuth(user, pass)

 		w := httptest.NewRecorder()
-		CheckAuthFlag(w, req, "", "metricsAuthkey")
+		p := &flagutil.Password{}
+		if err := p.Set(""); err != nil {
+			t.Fatalf("cannot set password: %s", err)
+		}
+		CheckAuthFlag(w, req, p)

 		res := w.Result()
 		_ = res.Body.Close()