Bennett/g0v0-server
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Pass timestamp as string to signature verification

Browse Source 
Changed the call to verify_request_signature to pass the timestamp as a string instead of an integer. This ensures proper signature verification and prevents unauthorized requests.
This commit is contained in:
咕谷酱
2025-08-24 02:16:49 +08:00
committed by MingxuanGame
parent c99807dabb
commit 9043389f25
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
app/router/lio.py
View File

@@ -461,7 +461,7 @@ async def remove_user_from_room(
# Verify request signature # Verify request signature
body = await request.body() body = await request.body()
now = utcnow() now = utcnow()
if not verify_request_signature(request, timestamp, body): if not verify_request_signature(request, str(timestamp), body):
raise HTTPException( raise HTTPException(
status_code=status.HTTP_401_UNAUTHORIZED, status_code=status.HTTP_401_UNAUTHORIZED,
detail="Invalid request signature" detail="Invalid request signature"