Fix incorrectly sending authentication tokens to application service as headers (#14301)

2025-05-03 09:24:50 -04:00 · 2022-10-26 14:00:01 +01:00 · 2022-10-26 14:00:01 +01:00 · 04fd6221de
commit 04fd6221de
parent 23fa636ed7
3 changed files with 13 additions and 8 deletions
--- a/synapse/appservice/api.py
+++ b/synapse/appservice/api.py
@ -123,7 +123,7 @@ class ApplicationServiceApi(SimpleHttpClient):
            response = await self.get_json(
                uri,
                {"access_token": service.hs_token},
-                headers={"Authorization": f"Bearer {service.hs_token}"},
+                headers={"Authorization": [f"Bearer {service.hs_token}"]},
            )
            if response is not None:  # just an empty json object
                return True
@ -147,7 +147,7 @@ class ApplicationServiceApi(SimpleHttpClient):
            response = await self.get_json(
                uri,
                {"access_token": service.hs_token},
-                headers={"Authorization": f"Bearer {service.hs_token}"},
+                headers={"Authorization": [f"Bearer {service.hs_token}"]},
            )
            if response is not None:  # just an empty json object
                return True
@ -190,7 +190,9 @@ class ApplicationServiceApi(SimpleHttpClient):
                b"access_token": service.hs_token,
            }
            response = await self.get_json(
-                uri, args=args, headers={"Authorization": f"Bearer {service.hs_token}"}
+                uri,
+                args=args,
+                headers={"Authorization": [f"Bearer {service.hs_token}"]},
            )
            if not isinstance(response, list):
                logger.warning(
@ -230,7 +232,7 @@ class ApplicationServiceApi(SimpleHttpClient):
                info = await self.get_json(
                    uri,
                    {"access_token": service.hs_token},
-                    headers={"Authorization": f"Bearer {service.hs_token}"},
+                    headers={"Authorization": [f"Bearer {service.hs_token}"]},
                )

                if not _is_valid_3pe_metadata(info):
@ -327,7 +329,7 @@ class ApplicationServiceApi(SimpleHttpClient):
                uri=uri,
                json_body=body,
                args={"access_token": service.hs_token},
-                headers={"Authorization": f"Bearer {service.hs_token}"},
+                headers={"Authorization": [f"Bearer {service.hs_token}"]},
            )
            if logger.isEnabledFor(logging.DEBUG):
                logger.debug(