yv01p/Umbraco-CMS
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fix rare concurrency issue in back-office auth middleware (#19418)

Browse Source
This commit is contained in:
Kenn Jacobsen
2025-05-26 12:25:04 +02:00
committed by GitHub
parent 50172ce16a
commit 407e7a24da
1 changed files with 9 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
src/Umbraco.Cms.Api.Management/Middleware/BackOfficeAuthorizationInitializationMiddleware.cs
View File

@@ -65,13 +65,21 @@ public class BackOfficeAuthorizationInitializationMiddleware : IMiddleware
return;
}
if (_knownHosts.Add($"{context.Request.Scheme}://{context.Request.Host}") is false)
var host = $"{context.Request.Scheme}://{context.Request.Host}";
if (_knownHosts.Contains(host))
{
return;
}
await _firstBackOfficeRequestLocker.WaitAsync();
// NOTE: _knownHosts is not thread safe; check again after entering the semaphore
if (_knownHosts.Add(host) is false)
{
_firstBackOfficeRequestLocker.Release();
return;
}
// ensure we explicitly add UmbracoApplicationUrl if configured (https://github.com/umbraco/Umbraco-CMS/issues/16179)
if (_webRoutingSettings.UmbracoApplicationUrl.IsNullOrWhiteSpace() is false)
{