More thoughts on auth-header parsing noted

2026-03-10 08:01:17 +00:00 · 2023-11-09 23:28:15 +01:00
parent 52107163ab
commit 7202fbaf43
2 changed files with 14 additions and 1 deletions
--- a/sentry/utils/auth.py
+++ b/sentry/utils/auth.py
@@ -1,11 +1,21 @@
 def _make_key_value(val):
+    # strip, and then split on '='
    return val.strip().split("=", 1)


 def parse_auth_header(header):
+    # KvS: isn't this always either bytes or strings? I'd like to learn more (first quickly, and then formalizing for
+    # actual uses)
+    # https://github.com/getsentry/sentry/pull/12108 is the non-explanation
    if isinstance(header, bytes):
+        print("it's bytes, probably always so")
        header = header.decode("latin1")
+    else:
+        print("not bytes, already a string")
+
    try:
+        # the the RHS of the header (question: what's left of the space), split it on "," and put the x=y pairs into a
+        # dict as key-values
        return dict(map(_make_key_value, header.split(" ", 1)[1].split(",")))
    except Exception:
        return {}