app-auth: check app-version AFTER app-id

bigcat88 · bigcat88 · commit d5c5709b9f03 · 2023-09-13T23:07:54.000+03:00
Signed-off-by: Alexander Piskun &lt;bigcat88@icloud.com&gt;
diff --git a/nc_py_api/_session.py b/nc_py_api/_session.py
@@ -365,13 +365,13 @@ def sign_check(self, request: Request) -> None:
         if empty_headers:
             raise ValueError(f"Missing required headers:{empty_headers}")
 
+        if headers["EX-APP-ID"] != self.cfg.app_name:
+            raise ValueError(f"Invalid EX-APP-ID:{headers['EX-APP-ID']} != {self.cfg.app_name}")
+
         our_version = self.adapter.headers.get("EX-APP-VERSION", "")
         if headers["EX-APP-VERSION"] != our_version:
             raise ValueError(f"Invalid EX-APP-VERSION:{headers['EX-APP-VERSION']} <=> {our_version}")
 
-        if headers["EX-APP-ID"] != self.cfg.app_name:
-            raise ValueError(f"Invalid EX-APP-ID:{headers['EX-APP-ID']} != {self.cfg.app_name}")
-
         app_secret = get_username_secret_from_headers(headers)[1]
         if app_secret != self.cfg.app_secret:
             raise ValueError(f"Invalid App secret:{app_secret} != {self.cfg.app_secret}")
