File size: 855 Bytes
6851411 ee07ed2 6851411 ee07ed2 6851411 ee07ed2 6851411 |
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 |
from fastapi import Request, HTTPException
from fastapi.responses import JSONResponse
from app.config import settings
async def api_key_guard(request: Request, call_next):
# Public endpoints that don't require authentication
public_paths = ["/", "/health", "/docs", "/redoc", "/openapi.json"]
# Skip auth for public endpoints
if request.url.path in public_paths:
return await call_next(request)
# Skip auth if no API key is configured
if not settings.service_api_key:
return await call_next(request)
# Check API key
key = request.headers.get("x-api-key") or request.headers.get("authorization")
if key and key.replace("Bearer ", "").strip() == settings.service_api_key:
return await call_next(request)
return JSONResponse({"error": "unauthorized"}, status_code=401)
|