🐛 Fix api key auth issue

2025-08-25 22:39:35 +08:00
parent 442ee3bcfd
commit c44b0b64c3
2 changed files with 2 additions and 1 deletions
--- a/DysonNetwork.Pass/Auth/Auth.cs
+++ b/DysonNetwork.Pass/Auth/Auth.cs
@@ -70,7 +70,7 @@ public class DysonTokenAuthHandler(
            };

            // Add scopes as claims
-            session.Challenge.Scopes.ForEach(scope => claims.Add(new Claim("scope", scope)));
+            session.Challenge?.Scopes.ForEach(scope => claims.Add(new Claim("scope", scope)));

            // Add superuser claim if applicable
            if (session.Account.IsSuperuser)
--- a/DysonNetwork.Pass/Auth/TokenAuthService.cs
+++ b/DysonNetwork.Pass/Auth/TokenAuthService.cs
@@ -22,6 +22,7 @@ public class TokenAuthService(
    /// then cache and return.
    /// </summary>
    /// <param name="token">Incoming token string</param>
+    /// <param name="ipAddress">Client IP address, for logging purposes</param>
    /// <returns>(Valid, Session, Message)</returns>
    public async Task<(bool Valid, AuthSession? Session, string? Message)> AuthenticateTokenAsync(string token, string? ipAddress = null)
    {