From 1b1d669f966efe9c64cacdeeea2b7b3c3ee6a2e9 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Simon=20K=C3=BCnzel?= <simonk@fsmpi.rwth-aachen.de>
Date: Tue, 13 May 2025 15:44:43 +0200
Subject: [PATCH] Make ORIGINAL_IP_HEADER_NAME optional

---
 api/src/api/authentication.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/api/src/api/authentication.py b/api/src/api/authentication.py
index 0d880cf..944dd4e 100644
--- a/api/src/api/authentication.py
+++ b/api/src/api/authentication.py
@@ -18,7 +18,7 @@ from api.database import *
 import api
 
 _BASE_URL = api.config["API_BASE_URL"]
-_ORIGINAL_IP_HEADER_NAME = api.config["ORIGINAL_IP_HEADER_NAME"]
+_ORIGINAL_IP_HEADER_NAME = api.config.get("ORIGINAL_IP_HEADER_NAME")
 
 
 def api_moderator_route(require_csrf_token: bool = False):
@@ -111,7 +111,7 @@ def are_view_permissions_fulfilled(perm: ViewPermissions):
     if isinstance(perm, ViewPermissionsAuthentication):
         if perm.rwth_authentication and (
                 api_session.is_rwth_authenticated
-                or (_ORIGINAL_IP_HEADER_NAME in request.headers and is_rwth_ip(request.headers[_ORIGINAL_IP_HEADER_NAME]))
+                or (_ORIGINAL_IP_HEADER_NAME is not None and _ORIGINAL_IP_HEADER_NAME in request.headers and is_rwth_ip(request.headers[_ORIGINAL_IP_HEADER_NAME]))
         ):
             return True
         
-- 
GitLab