yumoqing/uapi
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: get_apiusers cache key missing orgid causing cross-org data leak

Browse Source
This commit is contained in:
yumoqing 2026-05-30 11:01:05 +08:00
parent d67cc0b0da
commit 4360f34576
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
uapi/apidata.py
View File

@ -81,7 +81,7 @@ class UAPIData:
return None
async def get_apiusers(self, appid, orgid=None):
key = appid
key = f'{appid}.{orgid}' if orgid else str(appid)
if _cache_enabled():
d = self.org_users.get(key)
if d: