Skip to content

fix: pass bearer token when downloading profile pictures #1136

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dredozubov wants to merge 1 commit into
base: main
Choose a base branch
from
Open

fix: pass bearer token when downloading profile pictures #1136

dredozubov wants to merge 1 commit into from

Conversation

@dredozubov
Copy link

@dredozubov dredozubov commented Dec 25, 2025

What kind of change does this PR introduce?

Bug fix

Why was this change needed?

LinkedIn integration fails during OAuth callback because Postiz cannot download the user's profile picture from LinkedIn's CDN. The CDN returns HTTP 403 (Forbidden), causing the entire integration to fail.

Root cause: LocalStorage.uploadSimple() performs a bare axios.get(url) with no headers. LinkedIn's CDN blocks this request because:

  • No User-Agent header (axios default is axios/x.x.x)
  • No Authorization header (Bearer token not passed)
  • Server-to-server request detected (non-browser fingerprint)

Related issue: Fixes #972

Solution

Two-part fix:

  1. Pass Bearer token: Add optional headers parameter to uploadSimple() and pass the Authorization header when downloading profile pictures
  2. Graceful fallback: Wrap picture upload in try-catch so integration succeeds even if picture download fails (user gets placeholder avatar instead)

Changes

  • upload.interface.ts: Added UploadSimpleOptions interface with optional headers
  • local.storage.ts: Added browser-like User-Agent and accepts optional headers
  • cloudflare.storage.ts: Same changes for Cloudflare storage provider
  • integration.service.ts: Pass Bearer token, wrap in try-catch for graceful fallback

Testing

Tested in combination with #1134 using a deployment branch on my fork. Successfully added LinkedIn Channel to self-hosted Postiz instance.

Checklist:

  • I have read the CONTRIBUTING guide.
  • I checked that there were not similar issues or PRs already open for this.
  • This PR fixes just ONE issue (do not include multiple issues or types of change in the same PR)

@dredozubov
fix: LinkedIn integration failing with HTTP 403
850b0a2 
   Changes:
   - Add optional headers parameter to uploadSimple interface
   - Pass Authorization bearer token when downloading profile pictures
   - Add browser-like User-Agent header for CDN compatibility
   - Wrap picture upload in try-catch for graceful fallback

   If picture download fails, integration now succeeds with a placeholder
   avatar instead of failing completely.

   Fixes gitroomhq#972
@vercel
Copy link

vercel bot commented Dec 25, 2025

@dredozubov is attempting to deploy a commit to the Listinai Team on Vercel.

A member of the Team first needs to authorize it.

@dredozubov dredozubov mentioned this pull request Dec 25, 2025
Open
3 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

LinkedIn integration fails with 403 error when fetching profile picture

1 participant

@dredozubov