fix: No static key fallback; reject non-OIDC tokens

This commit is contained in:
2026-06-29 16:43:09 +02:00
parent ffe0a1cf18
commit c0bfa85688
+1 -3
View File
@@ -73,9 +73,7 @@ class AuthHeaders(BaseModel):
# First check if it's a valid OIDC token
if self.validate_oidc_token():
return True
# Fallback to the old static key for compatibility
if token == "abc":
return True
# No static key fallback; reject non-OIDC tokens
return False
def validate_oidc_token(self) -> bool: