fix: update authorization header parsing to be case-insensitive

getlarge · Oct 7, 2024 · b3bafcf · b3bafcf
1 parent b65c113
commit b3bafcf
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/packages/kratos-client-wrapper/src/lib/ory-authentication.guard.ts b/packages/kratos-client-wrapper/src/lib/ory-authentication.guard.ts
@@ -45,7 +45,7 @@ const defaultOptions: OryAuthenticationGuardOptions = {
     ctx
       .switchToHttp()
       .getRequest()
-      ?.headers?.authorization?.replace('Bearer ', ''),
+      ?.headers?.authorization?.replace(/bearer/i, ''),
   cookieResolver: (ctx) => ctx.switchToHttp().getRequest()?.headers?.cookie,
   unauthorizedFactory() {
     return new UnauthorizedException();