mirror/mihomo
1
1
Fork 0
mirror of https://github.com/MetaCubeX/mihomo.git synced 2025-12-20 00:50:06 +08:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity

fix: compare authentication scheme case-insensitively (#2386)

Browse Source
This commit is contained in:
TargetLocked 2025-11-23 19:34:02 +08:00 committed by GitHub
parent 140d892ccf
commit 438d4138d6
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 5 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
listener/http/utils.go
View File

@ -63,7 +63,11 @@ func removeExtraHTTPHostPort(req *http.Request) {
// parseBasicProxyAuthorization parse header Proxy-Authorization and return base64-encoded credential // parseBasicProxyAuthorization parse header Proxy-Authorization and return base64-encoded credential
func parseBasicProxyAuthorization(request *http.Request) string { func parseBasicProxyAuthorization(request *http.Request) string {
value := request.Header.Get("Proxy-Authorization") value := request.Header.Get("Proxy-Authorization")
if !strings.HasPrefix(value, "Basic ") { const prefix = "Basic "
// According to RFC7617, the scheme should be case-insensitive.
// In practice, some implementations do use different case styles, causing authentication to fail
// eg: https://github.com/algesten/ureq/blob/381fd42cfcb80a5eb709d64860aa0ae726f17b8e/src/unversioned/transport/connect.rs#L118
if len(value) < len(prefix) || !strings.EqualFold(value[:len(prefix)], prefix) {
return "" return ""
} }