Forward the request headers from the frontend to the auth server (#728)

Forwards the headers the backend server receives from the frontend to the authentication server. This provides the authentication server with the information it needs to validate sessions locally without needing to query the authentication endpoint every time.

Author: tieneupin

src/murfey/server/api/auth.py

@@ -8,7 +8,7 @@
 
 import aiohttp
 import requests
-from fastapi import APIRouter, Depends, HTTPException, status
+from fastapi import APIRouter, Depends, HTTPException, Request, status
 from fastapi.security import (
     APIKeyCookie,
     OAuth2PasswordBearer,
@@ -84,18 +84,22 @@ def check_user(username: str) -> bool:
     return username in [u.username for u in users]
 
 
-async def validate_token(token: Annotated[str, Depends(oauth2_scheme)]):
+async def validate_token(
+    token: Annotated[str, Depends(oauth2_scheme)],
+    request: Request,
+):
     """
     Used by the backend routers to validate requests coming in from frontend.
     """
     try:
         # Validate using auth URL if provided; will error if invalid
         if auth_url:
-            headers = (
-                {}
-                if security_config.auth_type == "cookie"
-                else {"Authorization": f"Bearer {token}"}
-            )
+            # Extract and forward headers as-is
+            headers = dict(request.headers)
+            # Update/add authorization header if authenticating using password
+            if security_config.auth_type == "password":
+                headers["authorization"] = f"Bearer {token}"
+            # Forward the cookie along if authenticating using cookie
             cookies = (
                 {security_config.cookie_key: token}
                 if security_config.auth_type == "cookie"