Merge pull request #208 from Devoxin/dev

Return 401/Unauthorized on failed WebSocket Auth

Merge pull request #208 from Devoxin/dev
Return 401/Unauthorized on failed WebSocket Auth
3e93ddde · Frederik Ar. Mikkelsen · GitHub · b3cb671d · d6b5256b · 3e93ddde
Unverified Commit 3e93ddde authored 5 years ago by Frederik Ar. Mikkelsen Committed by GitHub 5 years ago
--- a/LavalinkServer/src/main/java/lavalink/server/io/HandshakeInterceptorImpl.kt
+++ b/LavalinkServer/src/main/java/lavalink/server/io/HandshakeInterceptorImpl.kt
@@ -4,6 +4,7 @@ import lavalink.server.config.ServerConfig
 import org.slf4j.Logger
 import org.slf4j.LoggerFactory
 import org.springframework.beans.factory.annotation.Autowired
+import org.springframework.http.HttpStatus
 import org.springframework.http.server.ServerHttpRequest
 import org.springframework.http.server.ServerHttpResponse
 import org.springframework.stereotype.Controller
@@ -26,8 +27,6 @@ constructor(private val serverConfig: ServerConfig, private val socketServer: So
     */
    override fun beforeHandshake(request: ServerHttpRequest, response: ServerHttpResponse, wsHandler: WebSocketHandler,
                                 attributes: Map<String, Any>): Boolean {
-        response.headers.add("Lavalink-Major-Version", "3")
-
        val password = request.headers.getFirst("Authorization")
        val matches = password == serverConfig.password

@@ -35,6 +34,7 @@ constructor(private val serverConfig: ServerConfig, private val socketServer: So
            log.info("Incoming connection from " + request.remoteAddress)
        } else {
            log.error("Authentication failed from " + request.remoteAddress)
+            response.setStatusCode(HttpStatus.UNAUTHORIZED)
        }

        val resumeKey = request.headers.getFirst("Resume-Key")