Open-WebUI security headers are not passed through

[jmiedzinski]

I noticed that security headers that can be enabled in Open-WebUI configuration by this variable are not passed by MCP-Bridge to inference endpoints. For me it's an issue as I rely on it in next proxy hop.

[jmiedzinski]

Upon further analysis I found that these headers are not passed for:

@router.get("/models")
async def models():
    """List models"""
    response = await client.get("/models")
    return response.json()

in endpoints.py
I managed to fix it temporarily by mapping necessary headers from request. Other endpoints seems to pass headers properly.

[SecretiveShell]

if you want to submit a pr for this then I am happy to review/merge.

[jmiedzinski]

sure, here you have it #68