From 9b9d5d84f414d29f360df43794a1bd03961921ea Mon Sep 17 00:00:00 2001 From: Timothy Jaeryang Baek Date: Thu, 12 Jun 2025 12:22:15 +0400 Subject: [PATCH] fix: trusted header email case sensitive issue --- backend/open_webui/utils/auth.py | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/backend/open_webui/utils/auth.py b/backend/open_webui/utils/auth.py index c8c1f1372..9befaf2a9 100644 --- a/backend/open_webui/utils/auth.py +++ b/backend/open_webui/utils/auth.py @@ -228,7 +228,9 @@ def get_current_user( ) else: if WEBUI_AUTH_TRUSTED_EMAIL_HEADER: - trusted_email = request.headers.get(WEBUI_AUTH_TRUSTED_EMAIL_HEADER) + trusted_email = request.headers.get( + WEBUI_AUTH_TRUSTED_EMAIL_HEADER, "" + ).lower() if trusted_email and user.email != trusted_email: # Delete the token cookie response.delete_cookie("token")