Fix parse token error (#23909)

Signed-off-by: N Enwei Jiao <enwei.jiao@zilliz.com>

Fix parse token error (#23909)
Signed-off-by: N Enwei Jiao <enwei.jiao@zilliz.com>
d7edd1b9 · Enwei Jiao · GitHub · f1cc31ce · d7edd1b9 · d7edd1b9
Showing with 7 addition and 0 deletion

internal/proxy/authentication_interceptor.go internal/proxy/authentication_interceptor.go +4 -0

internal/proxy/authentication_interceptor_test.go internal/proxy/authentication_interceptor_test.go +3 -0

未找到文件。
--- a/internal/proxy/authentication_interceptor.go
+++ b/internal/proxy/authentication_interceptor.go
@@ -29,6 +29,10 @@ func parseMD(authorization []string) (username, password string) {
 		return
 	}
 	secrets := strings.SplitN(rawToken, util.CredentialSeperator, 2)
+	if len(secrets) < 2 {
+		log.Warn("invalid token format, length of secrets less than 2")
+		return
+	}
 	username = secrets[0]
 	password = secrets[1]
 	return

--- a/internal/proxy/authentication_interceptor_test.go
+++ b/internal/proxy/authentication_interceptor_test.go
@@ -38,6 +38,9 @@ func TestValidAuth(t *testing.T) {
 	assert.Nil(t, err)
 	res = validAuth(ctx, []string{crypto.Base64Encode("mockUser:mockPass")})
 	assert.True(t, res)
+
+	res = validAuth(ctx, []string{crypto.Base64Encode("mock")})
+	assert.False(t, res)
 }

 func TestValidSourceID(t *testing.T) {