fix: skip duplicate key-auth check for malformed credential JSON

AlinsRan · Copilot · AlinsRan · commit 70b6a7c883ea · 2026-05-06T16:05:33.000+08:00
Returning the unmarshal error would deny Consumers with malformed
inline credential config, and also deny new Consumers when any
existing Consumer has a malformed credential (because we'd fail while
reading the existing consumer's keys). Log at debug level and skip
the credential from duplicate detection instead, preserving the
original fail-open behaviour.

Co-authored-by: Copilot &lt;223556219+Copilot@users.noreply.github.com&gt;
diff --git a/internal/webhook/v1/consumer_webhook.go b/internal/webhook/v1/consumer_webhook.go
@@ -231,7 +231,11 @@ func (v *ConsumerCustomValidator) extractCredentialKey(ctx context.Context, cons
 		Key string `json:"key"`
 	}
 	if err := json.Unmarshal(credential.Config.Raw, &cfg); err != nil {
-		return "", err
+		// Malformed JSON is not a hard error: skip duplicate detection for this
+		// credential so existing consumers with bad config are not suddenly denied.
+		consumerLog.V(1).Info("skipping duplicate key-auth check: malformed credential config",
+			"consumer", consumer.Name, "error", err)
+		return "", nil
 	}
 	return cfg.Key, nil
 }

Original file line number	Diff line number	Diff line change
`@@ -231,7 +231,11 @@ func (v *ConsumerCustomValidator) extractCredentialKey(ctx context.Context, cons`
`231`	`231`	Key string `json:"key"`
`232`	`232`	`}`
`233`	`233`	`if err := json.Unmarshal(credential.Config.Raw, &cfg); err != nil {`
`234`		`- return "", err`
	`234`	`+ // Malformed JSON is not a hard error: skip duplicate detection for this`
	`235`	`+ // credential so existing consumers with bad config are not suddenly denied.`
	`236`	`+ consumerLog.V(1).Info("skipping duplicate key-auth check: malformed credential config",`
	`237`	`+ "consumer", consumer.Name, "error", err)`
	`238`	`+ return "", nil`
`235`	`239`	`}`
`236`	`240`	`return cfg.Key, nil`
`237`	`241`	`}`