From 99c3194181a1459eb549379eb75fbf331f96c66b Mon Sep 17 00:00:00 2001
From: Timothy Jaeryang Baek <tim@openwebui.com>
Date: Fri, 3 Jan 2025 13:08:21 -0800
Subject: [PATCH] fix: API_KEY_ALLOWED_ENDPOINTS

---
 backend/open_webui/utils/auth.py | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/backend/open_webui/utils/auth.py b/backend/open_webui/utils/auth.py
index 2c16afd76..3a0490960 100644
--- a/backend/open_webui/utils/auth.py
+++ b/backend/open_webui/utils/auth.py
@@ -99,9 +99,9 @@ def get_current_user(
         if request.app.state.config.ENABLE_API_KEY_ENDPOINT_RESTRICTIONS:
             allowed_paths = [
                 path.strip()
-                for path in str(request.app.state.config.API_KEY_ALLOWED_PATHS).split(
-                    ","
-                )
+                for path in str(
+                    request.app.state.config.API_KEY_ALLOWED_ENDPOINTS
+                ).split(",")
             ]
 
             if request.url.path not in allowed_paths: