ClassroomCopilot/api - api - Gitea: Git with a cup of tea

ClassroomCopilot/api

Fork 0

Commit Graph

Author	SHA1	Message	Date
CC Worker	93972a62f7	fix: revert explicit apikey header (caused Kong duplicate-apikey 401) Some checks failed api-ci-deploy / test-build-deploy (push) Has been cancelled Details The previous commit added apikey to _create_base_client headers, but supabase-py already sets apikey from the key arg → two apikey headers → Kong rejected every as-user call with 401 'Duplicate API key found' (exam API 502'd on auth). Revert to Authorization-only; fix the two header unit tests to assert the real contract (apikey via the key arg; options.headers carries only the user Authorization). Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-06 19:30:36 +00:00
kcar	54760083b5	fix: tighten API P0 auth and route handling	2026-05-28 12:42:42 +01:00

Author

SHA1

Message

Date

CC Worker

93972a62f7

fix: revert explicit apikey header (caused Kong duplicate-apikey 401)

api-ci-deploy / test-build-deploy (push) Has been cancelled

Details

The previous commit added apikey to _create_base_client headers, but supabase-py
already sets apikey from the key arg → two apikey headers → Kong rejected every
as-user call with 401 'Duplicate API key found' (exam API 502'd on auth). Revert
to Authorization-only; fix the two header unit tests to assert the real contract
(apikey via the key arg; options.headers carries only the user Authorization).

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>

2026-06-06 19:30:36 +00:00

kcar

54760083b5

fix: tighten API P0 auth and route handling

2026-05-28 12:42:42 +01:00

2 Commits