always check authentication

2025-06-04 09:21:58 +02:00
parent a02332745b
commit 8aa562afee
1 changed files with 2 additions and 3 deletions
--- a/Pilz.Net/Api/ApiServer.cs
+++ b/Pilz.Net/Api/ApiServer.cs
@@ -481,10 +481,9 @@ public class ApiServer : IApiServer
        // Check authentication
        Log.Debug("Check authentication");
        var isAuthenticated = false;
-        if (!string.IsNullOrWhiteSpace(authKey) && DecodeAuthKey(authKey) is string authKeyDecoded)
-            isAuthenticated = CheckAuthentication(authKeyDecoded, handler.Handler, context);
-        else
+        if (string.IsNullOrWhiteSpace(authKey) || DecodeAuthKey(authKey) is not string authKeyDecoded)
            authKeyDecoded = null!;
+        isAuthenticated = CheckAuthentication(authKeyDecoded, handler.Handler, context);
        if (handler.Attribute.RequiesAuth && !isAuthenticated)
            return new(ApiResult.Unauthorized(), null);