OpenWebUI/open-webui
1
0
Fork 0
mirror of https://github.com/open-webui/open-webui synced 2025-05-17 12:03:41 +00:00
Code Issues Actions 4 Packages Projects Releases Wiki Activity

Make auth error messages generic

Browse Source
This commit is contained in:
Juan Calderon-Perez 2025-04-05 09:56:11 -04:00 committed by GitHub
parent fe4f760b4a
commit b4277c7d2e
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 15 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

28
backend/open_webui/routers/auths.py
View File

@ -194,8 +194,8 @@ async def ldap_auth(request: Request, response: Response, form_data: LdapForm):
ciphers=LDAP_CIPHERS, ciphers=LDAP_CIPHERS,
) )
except Exception as e: except Exception as e:
log.error(f"An error occurred on TLS: {str(e)}") log.error(f"TLS configuration error: {str(e)}")
raise HTTPException(400, detail=str(e)) raise HTTPException(400, detail="Failed to configure TLS for LDAP connection.")
try: try:
server = Server( server = Server(
@ -232,7 +232,7 @@ async def ldap_auth(request: Request, response: Response, form_data: LdapForm):
username = str(entry[f"{LDAP_ATTRIBUTE_FOR_USERNAME}"]).lower() username = str(entry[f"{LDAP_ATTRIBUTE_FOR_USERNAME}"]).lower()
email = str(entry[f"{LDAP_ATTRIBUTE_FOR_MAIL}"]) email = str(entry[f"{LDAP_ATTRIBUTE_FOR_MAIL}"])
if not email or email == "" or email == "[]": if not email or email == "" or email == "[]":
raise HTTPException(400, f"User {form_data.user} does not have email.") raise HTTPException(400, "User does not have a valid email address.")
else: else:
email = email.lower() email = email.lower()
@ -248,7 +248,7 @@ async def ldap_auth(request: Request, response: Response, form_data: LdapForm):
authentication="SIMPLE", authentication="SIMPLE",
) )
if not connection_user.bind(): if not connection_user.bind():
raise HTTPException(400, f"Authentication failed for {form_data.user}") raise HTTPException(400, "Authentication failed.")
user = Users.get_user_by_email(email) user = Users.get_user_by_email(email)
if not user: if not user:
@ -276,7 +276,8 @@ async def ldap_auth(request: Request, response: Response, form_data: LdapForm):
except HTTPException: except HTTPException:
raise raise
except Exception as err: except Exception as err:
raise HTTPException(500, detail=ERROR_MESSAGES.DEFAULT(err)) log.error(f"LDAP user creation error: {str(err)}")
raise HTTPException(500, detail="Internal error occurred during LDAP user creation.")
user = Auths.authenticate_user_by_trusted_header(email) user = Auths.authenticate_user_by_trusted_header(email)
@ -312,12 +313,10 @@ async def ldap_auth(request: Request, response: Response, form_data: LdapForm):
else: else:
raise HTTPException(400, detail=ERROR_MESSAGES.INVALID_CRED) raise HTTPException(400, detail=ERROR_MESSAGES.INVALID_CRED)
else: else:
raise HTTPException( raise HTTPException(400, "User record mismatch.")
400,
f"User {form_data.user} does not match the record. Search result: {str(entry[f'{LDAP_ATTRIBUTE_FOR_USERNAME}'])}",
)
except Exception as e: except Exception as e:
raise HTTPException(400, detail=str(e)) log.error(f"LDAP authentication error: {str(e)}")
raise HTTPException(400, detail="LDAP authentication failed.")
############################ ############################
@ -519,7 +518,8 @@ async def signup(request: Request, response: Response, form_data: SignupForm):
else: else:
raise HTTPException(500, detail=ERROR_MESSAGES.CREATE_USER_ERROR) raise HTTPException(500, detail=ERROR_MESSAGES.CREATE_USER_ERROR)
except Exception as err: except Exception as err:
raise HTTPException(500, detail=ERROR_MESSAGES.DEFAULT(err)) log.error(f"Signup error: {str(err)}")
raise HTTPException(500, detail="An internal error occurred during signup.")
@router.get("/signout") @router.get("/signout")
@ -547,7 +547,8 @@ async def signout(request: Request, response: Response):
detail="Failed to fetch OpenID configuration", detail="Failed to fetch OpenID configuration",
) )
except Exception as e: except Exception as e:
raise HTTPException(status_code=500, detail=str(e)) log.error(f"OpenID signout error: {str(e)}")
raise HTTPException(status_code=500, detail="Failed to sign out from the OpenID provider.")
return {"status": True} return {"status": True}
@ -591,7 +592,8 @@ async def add_user(form_data: AddUserForm, user=Depends(get_admin_user)):
else: else:
raise HTTPException(500, detail=ERROR_MESSAGES.CREATE_USER_ERROR) raise HTTPException(500, detail=ERROR_MESSAGES.CREATE_USER_ERROR)
except Exception as err: except Exception as err:
raise HTTPException(500, detail=ERROR_MESSAGES.DEFAULT(err)) log.error(f"Add user error: {str(err)}")
raise HTTPException(500, detail="An internal error occurred while adding the user.")
############################ ############################