Token type matching should be case-insensitive

dievsky · jonnyzzz · commit 5991cc9ecfa8 · 2021-08-02T10:29:53.000+02:00
See https://datatracker.ietf.org/doc/html/rfc2617#section-1.2
diff --git a/lambda/lambda.js b/lambda/lambda.js
@@ -52,8 +52,8 @@ function parseToken(headers) {
     if (authorization.length > 0) {
         for (let i = 0; i < authorization.length; i++) {
             const token = authorization[i].value || ''
-            const prefix = 'Bearer ';
-            if (token.startsWith(prefix)) {
+            const prefix = 'bearer ';
+            if (token.toLowerCase().startsWith(prefix)) {
                 return token.substring(prefix.length)
             }
         }

Original file line number	Diff line number	Diff line change
`@@ -52,8 +52,8 @@ function parseToken(headers) {`
`52`	`52`	`if (authorization.length > 0) {`
`53`	`53`	`for (let i = 0; i < authorization.length; i++) {`
`54`	`54`	`const token = authorization[i].value \|\| ''`
`55`		`- const prefix = 'Bearer ';`
`56`		`- if (token.startsWith(prefix)) {`
	`55`	`+ const prefix = 'bearer ';`
	`56`	`+ if (token.toLowerCase().startsWith(prefix)) {`
`57`	`57`	`return token.substring(prefix.length)`
`58`	`58`	`}`
`59`	`59`	`}`