Browse Source

chore: 新增/api/content/免认证代理前缀并移除隐私政策接口的token校验

1.  在AUTH_EXEMPT_API_PREFIXES中添加/api/content/,允许该路径下请求跳过登录校验
2.  移除隐私政策最新版接口的请求token获取和携带逻辑
feature/interaction
huangmin 1 month ago
parent
commit
75c2b36c8c
  1. 6
      src/app/api/content/privacy-policy/latest/route.ts
  2. 1
      src/proxy.ts

6
src/app/api/content/privacy-policy/latest/route.ts

@ -1,5 +1,4 @@
import { NextRequest, NextResponse } from "next/server";
import { getRequestToken } from "@/app/api/_auth";
const UPSTREAM_PRIVACY_POLICY_LATEST_PATH = "/api_client/content/privacyPolicy/latest";
@ -26,11 +25,6 @@ export async function GET(request: NextRequest) {
const headers: Record<string, string> = {
Accept: "application/json",
};
const token = getRequestToken(request);
if (token) {
headers.Authorization = `Bearer ${token}`;
headers.token = token;
}
const upstream = await fetch(upstreamUrl, {
method: "GET",

1
src/proxy.ts

@ -10,6 +10,7 @@ const AUTH_EXEMPT_API_PREFIXES = [
"/api/proxy-media",
"/api/auth/",
"/api/captcha/",
"/api/content/",
];
function hasLoginToken(request: NextRequest): boolean {

Loading…
Cancel
Save