Merge pull request #10967 from ywk253100/200307_auth_header

Only set "Www-Authenticate" header for registry API
2024-06-26 14:55:06 +02:00 · 2020-03-09 11:58:09 +08:00 · 2020-03-09 11:58:09 +08:00 · 52c6d354d1
commit 52c6d354d1
parent 7b8aca6cd2 8bd632316c
3 changed files with 1 additions and 4 deletions
--- a/src/server/error/error.go
+++ b/src/server/error/error.go
@ -59,9 +59,6 @@ func SendError(w http.ResponseWriter, err error) {
 		// only log the error whose status code < 500 when debugging to avoid log flooding
 		log.Debug(errPayload)
 	}
-	if statusCode == http.StatusUnauthorized {
-		w.Header().Set("Www-Authenticate", `Basic realm="harbor"`)
-	}
 	w.WriteHeader(statusCode)
 	fmt.Fprintln(w, errPayload)
 }
--- a/src/server/error/error_test.go
+++ b/src/server/error/error_test.go
@ -31,7 +31,6 @@ func TestSendError(t *testing.T) {
 	SendError(rw, err)
 	assert.Equal(t, http.StatusUnauthorized, rw.Code)
 	assert.Equal(t, `{"errors":[{"code":"UNAUTHORIZED","message":"unauthorized"}]}`+"\n", rw.Body.String())
-	assert.Equal(t, `Basic realm="harbor"`, rw.Header().Get("Www-Authenticate"))

 	// internal server error
 	rw = httptest.NewRecorder()
--- a/src/server/middleware/v2auth/auth.go
+++ b/src/server/middleware/v2auth/auth.go
@ -132,6 +132,7 @@ func Middleware() func(http.Handler) http.Handler {
 			if err := checker.check(req); err != nil {
 				// the header is needed for "docker manifest" commands: https://github.com/docker/cli/issues/989
 				rw.Header().Set("Docker-Distribution-Api-Version", "registry/2.0")
+				rw.Header().Set("Www-Authenticate", `Basic realm="harbor"`)
 				serror.SendError(rw, ierror.UnauthorizedError(err).WithMessage(err.Error()))
 				return
 			}