Skip to content

Add bearer token auth #2196

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 3 commits into
base: main
Choose a base branch
from
Open

Add bearer token auth #2196

wants to merge 3 commits into from

Conversation

@suqin-haha
Copy link

@suqin-haha suqin-haha commented Nov 5, 2025
edited by cursor bot
Loading

Summary

add simple auth token check when the environment variable configured

without the environment variable configured, it just bypass the authentication

Related Issues

Changes

Checklist

  • [ x] Code builds correctly
  • [x ] Tests have been added or updated
  • Documentation updated if necessary
  • [x ] I have reviewed my own changes

Note

Adds optional bearer token authentication (via MOONLINK_REST_TOKEN) enforced by Axum middleware with 401 on missing/invalid token, plus tests.

  • REST API (Axum):
    • Auth Middleware: Add auth_middleware that validates Authorization: Bearer <token> against MOONLINK_REST_TOKEN cached in ApiState.
      • If unset, auth is bypassed; if set and invalid/missing, returns 401 with JSON error.
    • Router: Wire middleware with .layer(middleware::from_fn_with_state(...)); update ApiState to include bearer_token and initialize from env.
    • Minor handler/import updates to support middleware (Request, HeaderMap, State cloning).
  • Tests:
    • Add test_bearer_token_authentication in src/moonlink_service/src/test.rs covering no header, wrong format, and correct token cases.

Written by Cursor Bugbot for commit 4f211c7. This will update automatically on new commits. Configure here.

cursor[bot]
cursor bot reviewed Nov 5, 2025
View reviewed changes
Copy link

@cursor cursor bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This PR is being reviewed by Cursor Bugbot

Details

Your team is on the Bugbot Free tier. On this plan, Bugbot will review limited PRs each billing cycle for each member of your team.

To receive Bugbot reviews on all of your PRs, visit the Cursor dashboard to activate Pro and start your 14-day free trial.

src/moonlink_service/src/test.rs
ma::assert_gt!(response.timestamp, 0);

// Clean up environment variable
std::env::remove_var("MOONLINK_REST_TOKEN");
Copy link

@cursor cursor bot Nov 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Bug: Preserve Environment State in Cleanup Checks

The test unconditionally removes the MOONLINK_REST_TOKEN environment variable in cleanup without preserving its original value. If the environment variable was set before the test ran (e.g., in a production environment or CI/CD), the test will remove it, potentially breaking subsequent code that expects it to be set. The test should save the original value with std::env::var("MOONLINK_REST_TOKEN").ok() before setting it, and restore the original state in cleanup rather than unconditionally removing it.

Fix in Cursor Fix in Web

@github-actions
Copy link

github-actions bot commented Nov 24, 2025

This PR has been inactive for 14 days and is now marked as stale. If this is still being worked on, please comment to keep it open.

@github-actions github-actions bot added the stale label Nov 24, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cursor cursor[bot] cursor[bot] left review comments

Assignees

No one assigned

Labels

community stale

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@suqin-haha