merchant

Merchant backend to process payments, run by merchants
Log | Files | Refs | Submodules | README | LICENSE
commit 44d052a35e0964eee72a79b53b37131dc4f8c6d5
parent 6e0c4d8602911518b1050549db141d659491caf8
Author: Martin Schanzenbach <schanzen@gnunet.org>
Date:   Mon,  7 Jul 2025 15:47:10 +0200

remove no longer needed comment on disabled auth; and actually disable auth if necessary

Diffstat:

Msrc/backend/taler-merchant-httpd.c | 13++++---------


1 file changed, 4 insertions(+), 9 deletions(-)

diff --git a/src/backend/taler-merchant-httpd.c b/src/backend/taler-merchant-httpd.c
@@ -2202,12 +2202,6 @@ url_handler (void *cls,
 
     if (NULL != auth)
     {
-      /* We _only_ complain about malformed auth headers if
-         authorization was truly required (#6737). This helps
-         in case authorization was disabled in the backend
-         because some reverse proxy is already doing it, and
-         then that reverse proxy may forward malformed auth
-         headers to the backend. */
       extract_auth (&auth,
                     &is_basic_auth);
       if (NULL == auth)
@@ -2216,9 +2210,10 @@ url_handler (void *cls,
     }
 
     /* If we have zero configured instances (not even ones that have been
-       purged), THEN we accept anything (no access
-       control), as we then also have no data to protect. */
-    if (0 == GNUNET_CONTAINER_multihashmap_size (TMH_by_id_map))
+       purged) or explicitly disabled authentication, THEN we accept anything
+       (no access control), as we then also have no data to protect. */
+    if ((0 == GNUNET_CONTAINER_multihashmap_size (TMH_by_id_map)) ||
+        (GNUNET_YES == TMH_auth_disabled))
     {
       hc->auth_scope = TMH_AS_ALL;
     }