public api测试

2025-11-26 18:04:15 +08:00
parent 22aa782648
commit 371d959646
7 changed files with 94 additions and 1 deletions
--- a/auth.py
+++ b/auth.py
@@ -66,7 +66,17 @@ class APIKeyMiddleware(BaseHTTPMiddleware):
        """
        判断是否跳过鉴权的路径
        """
-        # 所有API路径都需要鉴权，不跳过
+        # 公共API路径不需要鉴权
+        public_api_paths = [
+            "/api/contents/public/",
+        ]
+        
+        # 检查是否是公共API路径
+        for public_path in public_api_paths:
+            if path.startswith(public_path):
+                return True
+        
+        # 所有其他API路径都需要鉴权，不跳过
        # 如果路径以/api开头，则不跳过（需要鉴权）
        if path.startswith("/api"):
            return False