fix(proxy): prevent from passing auth tokens to proxy destination

2023-02-22 13:14:09 +01:00 · 2023-02-22 13:14:09 +01:00 · 91c70a51a0
commit 91c70a51a0
parent dfe30d7f5e
1 changed files with 4 additions and 0 deletions
--- a/packages/proxy/bin/server.ts
+++ b/packages/proxy/bin/server.ts
@ -34,6 +34,10 @@ http
      return
    }

+    delete req.headers.authorization
+    delete req.headers['x-auth-token']
+    delete req.headers['x-auth-offline-token']
+
    const target = (req.url as string).slice(1)
    req.url = target
    proxy.web(req, res, {