change ACCESS_KEY header to ACCESS-KEY, add test env file

2025-11-10 03:03:43 +08:00 · 2023-04-20 18:13:05 +08:00
parent 296d83c3a1
commit 00db78b446
5 changed files with 8 additions and 7 deletions
--- a/server/server.go
+++ b/server/server.go
@@ -188,7 +188,7 @@ func corsMiddleware() gin.HandlerFunc {
 			c.Header("Access-Control-Allow-Origin", origin)
 			c.Header("Access-Control-Allow-Methods", "POST, GET, OPTIONS, PUT, DELETE, UPDATE")
 			//允许跨域设置可以返回其他子段，可以自定义字段
-			c.Header("Access-Control-Allow-Headers", "Authorization, Content-Length, Content-Type, ChatGPT-TOKEN, ACCESS_KEY")
+			c.Header("Access-Control-Allow-Headers", "Authorization, Content-Length, Content-Type, ChatGPT-TOKEN, ACCESS-KEY")
 			// 允许浏览器（客户端）可以解析的头部 （重要）
 			c.Header("Access-Control-Expose-Headers", "Content-Length, Access-Control-Allow-Origin, Access-Control-Allow-Headers")
 			//设置缓存时间
@@ -223,7 +223,7 @@ func AuthorizeMiddleware(s *Server) gin.HandlerFunc {
 		}

 		if strings.HasPrefix(c.Request.URL.Path, "/api/config") {
-			accessKey := c.GetHeader("ACCESS_KEY")
+			accessKey := c.GetHeader("ACCESS-KEY")
 			if accessKey != strings.TrimSpace(s.Config.AccessKey) {
 				c.Abort()
 				c.JSON(http.StatusOK, types.BizVo{Code: types.NotAuthorized, Message: "No Permissions"})