lib/vault-tools/web.rb in vault-tools-0.5.21 vs lib/vault-tools/web.rb in vault-tools-0.5.22

@@ -85,9 +85,16 @@
       end
 
       # Check request for HTTP Basic creds and
       # password matches settings.basic_password
       def authorized?(passwords)
+        if passwords.empty?
+          if settings.basic_password.is_a?(String)
+            passwords << settings.basic_password
+          else
+            passwords = passwords + settings.basic_password
+          end
+        end
         passwords << settings.basic_password if passwords.empty?
         @auth ||= Rack::Auth::Basic::Request.new(request.env)
         @auth.provided? && @auth.basic? && @auth.credentials &&
           passwords.include?(@auth.credentials[1])
       end