fix: trusted header email case sensitive issue

2025-06-26 18:26:48 +00:00 · 2025-06-12 12:22:15 +04:00 · 2025-06-12 12:22:15 +04:00 · 9b9d5d84f4
commit 9b9d5d84f4
parent c27d8a4a28
1 changed files with 3 additions and 1 deletions
--- a/backend/open_webui/utils/auth.py
+++ b/backend/open_webui/utils/auth.py
@ -228,7 +228,9 @@ def get_current_user(
            )
        else:
            if WEBUI_AUTH_TRUSTED_EMAIL_HEADER:
-                trusted_email = request.headers.get(WEBUI_AUTH_TRUSTED_EMAIL_HEADER)
+                trusted_email = request.headers.get(
+                    WEBUI_AUTH_TRUSTED_EMAIL_HEADER, ""
+                ).lower()
                if trusted_email and user.email != trusted_email:
                    # Delete the token cookie
                    response.delete_cookie("token")