From c8f93eaa76d375143154e9d69ec299be474e0ab1 Mon Sep 17 00:00:00 2001
From: Cannon Lock <clock@wisc.edu>
Date: Mon, 21 Oct 2024 10:20:09 -0500
Subject: [PATCH] access_token_key -> access_token

---
 api/routes/security.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/api/routes/security.py b/api/routes/security.py
index 6d1c84d..dedfa3a 100644
--- a/api/routes/security.py
+++ b/api/routes/security.py
@@ -72,7 +72,7 @@ async def __call__(self, request: Request) -> Optional[str]:
         authorization = request.cookies.get(access_token_key)
         if authorization is None:
             # Use the header if the cookie isn't set
-            authorization = request.headers.get("Authorization")
+            authorization = request.headers.get(access_token_key)
 
         scheme, param = get_authorization_scheme_param(authorization)
         if not authorization or scheme.lower() != "bearer":