From 7b3c9834ee335eb834e49ca2595577f1dbe0b373 Mon Sep 17 00:00:00 2001
From: Luigi Marini <lmarini@illinois.edu>
Date: Wed, 4 Mar 2026 15:36:12 -0600
Subject: [PATCH] Remove old security check on POST /file/:id/extract in favor
 of current Depends(FileAuthorization("uploader")) pattern.

This was throwing a 401 with a valid API key.
---
 backend/app/routers/files.py | 1 -
 openapi.json                 | 3 ---
 2 files changed, 4 deletions(-)

diff --git a/backend/app/routers/files.py b/backend/app/routers/files.py
index d4276e0ce..a9eaf678d 100644
--- a/backend/app/routers/files.py
+++ b/backend/app/routers/files.py
@@ -555,7 +555,6 @@ async def post_file_extract(
     # parameters don't have a fixed model shape
     parameters: dict = None,
     user=Depends(get_current_user),
-    credentials: HTTPAuthorizationCredentials = Security(security),
     rabbitmq_client: BlockingChannel = Depends(dependencies.get_rabbitmq),
     allow: bool = Depends(FileAuthorization("uploader")),
 ):
diff --git a/openapi.json b/openapi.json
index 849fee1f2..c01697098 100644
--- a/openapi.json
+++ b/openapi.json
@@ -3465,9 +3465,6 @@
           },
           {
             "APIKeyCookie": []
-          },
-          {
-            "HTTPBearer": []
           }
         ]
       }