From c4790e70f1fbc4f8b509f1ad8f907672a3065852 Mon Sep 17 00:00:00 2001
From: Matt Phillips <mphillips81@bloomberg.net>
Date: Tue, 12 Mar 2019 09:44:03 -0400
Subject: [PATCH] don't pass an x-auth-header when /run

auth should be handled only by token provided in low
---
 pepper/libpepper.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pepper/libpepper.py b/pepper/libpepper.py
index 9dfe05c..c5cecf6 100644
--- a/pepper/libpepper.py
+++ b/pepper/libpepper.py
@@ -219,7 +219,7 @@ def req(self, path, data=None):
             req.add_header('Content-Length', clen)
 
         # Add auth header to request
-        if self.auth and 'token' in self.auth and self.auth['token']:
+        if path != '/run' and self.auth and 'token' in self.auth and self.auth['token']:
             req.add_header('X-Auth-Token', self.auth['token'])
 
         # Send request