Skip to content

fix: replace hardcoded API key with secure random token#640

Open
Lidang-Jiang wants to merge 1 commit intoOpenPipe:mainfrom
Lidang-Jiang:fix/hardcoded-api-key
Open

fix: replace hardcoded API key with secure random token#640
Lidang-Jiang wants to merge 1 commit intoOpenPipe:mainfrom
Lidang-Jiang:fix/hardcoded-api-key

Conversation

@Lidang-Jiang
Copy link
Copy Markdown

@Lidang-Jiang Lidang-Jiang commented Apr 3, 2026

Summary

The vLLM server was initialized with api_key="default" (CWE-798), allowing unauthenticated access with a well-known credential. Any user with network access could bypass authentication using Authorization: Bearer default.

Fix: Replace hardcoded "default" with _generate_api_key() that:

  • Uses secrets.token_urlsafe(32) for a cryptographically random token
  • Supports ART_API_KEY env var for operators who need a pinned credential
  • Updated all 4 call sites: openai_server.py, local/backend.py, tinker_native/backend.py, tinker/server.py

Fixes #628

Before 
# src/art/dev/openai_server.py line 30
server_args = ServerArgs(
    api_key="default",  # Well-known credential — anyone can authenticate
    ...
)

# PoC: unauthorized access succeeds
$ curl -s http://target:8000/v1/models -H "Authorization: Bearer default"
{"object": "list", "data": [{"id": "Qwen/Qwen1.5-0.5B", ...}]}
After 
# src/art/dev/openai_server.py
def _generate_api_key() -> str:
    import os, secrets
    return os.environ.get("ART_API_KEY") or secrets.token_urlsafe(32)

server_args = ServerArgs(
    api_key=_generate_api_key(),  # Unique random token per invocation
    ...
)

# PoC: "default" no longer works
$ curl -i http://target:8000/v1/models -H "Authorization: Bearer default"
HTTP/1.1 401 Unauthorized

$ pytest tests/unit/test_api_key_generation.py -v
PASSED test_key_is_not_hardcoded_default
PASSED test_key_has_sufficient_entropy
PASSED test_keys_are_unique_across_calls
PASSED test_env_var_override
PASSED test_env_var_empty_falls_back_to_random
PASSED test_config_key_is_not_default
PASSED test_config_uses_env_var
... 12 passed

Test plan

  • 12 unit tests for API key generation and config integration
  • Verified "default" string no longer appears in any api_key= assignment

@Lidang-Jiang
fix: replace hardcoded API key with secure random token
6ee6cf1 
The vLLM server was initialized with api_key="default", allowing
unauthenticated access with a well-known credential (CWE-798).

Replace with _generate_api_key() that uses secrets.token_urlsafe(32),
with ART_API_KEY env var override for operators who need a pinned key.
Also remove "default" fallbacks in client code.

Fixes OpenPipe#628

Signed-off-by: Lidang-Jiang <lidangjiang@gmail.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

[Security] Hardcoded API Key in vLLM Server Configuration Allows Authentication Bypass

1 participant

@Lidang-Jiang