Merge pull request #451 from goecho/main

Fix bug: Header attributes (Host, Authorization, Origin, Referer) not sanitized.

Merge pull request #451 from goecho/main
Fix bug: Header attributes (Host, Authorization, Origin, Referer) not sanitized.
5c5bde3b · Timothy Jaeryang Baek · GitHub · b1f29aac · 74f91bc7 · 5c5bde3b
Unverified Commit 5c5bde3b authored Jan 11, 2024 by Timothy Jaeryang Baek Committed by GitHub Jan 11, 2024
Hide whitespace changes
Inline Side-by-side

Showing with 4 additions and 4 deletions

backend/apps/ollama/main.py backend/apps/ollama/main.py +4 -4

No files found.
--- a/backend/apps/ollama/main.py
+++ b/backend/apps/ollama/main.py
@@ -65,10 +65,10 @@ async def proxy(path: str, request: Request, user=Depends(get_current_user)):
    else:
        raise HTTPException(status_code=401, detail=ERROR_MESSAGES.ACCESS_PROHIBITED)
-    headers.pop("Host", None)
+    headers.pop("host", None)
-    headers.pop("Authorization", None)
+    headers.pop("authorization", None)
-    headers.pop("Origin", None)
+    headers.pop("origin", None)
-    headers.pop("Referer", None)
+    headers.pop("referer", None)
    r = None