Allow for proxying Authorization header and automatically convert (#4832)

Authorization header to X-DS-Authorization in backend_srv.js
10 years ago · c9d6321f38
parent 4038b4d17e
commit c9d6321f38
2 changed files with 12 additions and 0 deletions
--- a/pkg/api/dataproxy.go
+++ b/pkg/api/dataproxy.go
@ -55,6 +55,13 @@ func NewReverseProxy(ds *m.DataSource, proxyPath string, targetUrl *url.URL) *ht
 			req.Header.Add("Authorization", util.GetBasicAuthHeader(ds.BasicAuthUser, ds.BasicAuthPassword))
 		}

+		dsAuth := req.Header.Get("X-DS-Authorization")
+		if len(dsAuth) > 0 {
+			req.Header.Del("X-DS-Authorization")
+			req.Header.Del("Authorization")
+			req.Header.Add("Authorization", dsAuth)
+		}
+
 		// clear cookie headers
 		req.Header.Del("Cookie")
 		req.Header.Del("Set-Cookie")
--- a/public/app/core/services/backend_srv.js
+++ b/public/app/core/services/backend_srv.js
@ -96,6 +96,11 @@ function (angular, _, coreModule, config) {
      var requestIsLocal = options.url.indexOf('/') === 0;
      var firstAttempt = options.retry === 0;

+      if (requestIsLocal && options.headers && options.headers.Authorization) {
+        options.headers['X-DS-Authorization'] = options.headers.Authorization;
+        delete options.headers.Authorization;
+      }
+
      return $http(options).then(null, function(err) {
        // handle unauthorized for backend requests
        if (requestIsLocal && firstAttempt  && err.status === 401) {