Skip to content

Commit 6904621

Browse files
KailigithubKailigithub
committed
fix(bluebubbles): resolve SecretRef password before trimming in webhook auth
1 parent 8151231 commit 6904621

1 file changed

Lines changed: 2 additions & 1 deletion

File tree

extensions/bluebubbles/src/monitor.ts

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -2,6 +2,7 @@ import type { IncomingMessage, ServerResponse } from "node:http";
22
import { formatErrorMessage } from "openclaw/plugin-sdk/error-runtime";
33
import { safeEqualSecret } from "openclaw/plugin-sdk/security-runtime";
44
import { normalizeLowercaseStringOrEmpty } from "openclaw/plugin-sdk/string-coerce-runtime";
5+
import { normalizeSecretInputString } from "./secret-input.js";
56
import { resolveBlueBubblesEffectiveAllowPrivateNetwork } from "./accounts.js";
67
import { createBlueBubblesDebounceRegistry } from "./monitor-debounce.js";
78
import {
@@ -193,7 +194,7 @@ export async function handleBlueBubblesWebhookRequest(
193194
targets,
194195
res,
195196
isMatch: (target) => {
196-
const token = target.account.config.password?.trim() ?? "";
197+
const token = normalizeSecretInputString(target.account.config.password)?.trim() ?? "";
197198
return safeEqualAuthToken(guid, token);
198199
},
199200
});

0 commit comments

Comments
 (0)