mirror of
https://github.com/open-webui/open-webui
synced 2025-06-26 18:26:48 +00:00
When using trusted email header authentication, properly sign out the user when the logged-in user's email doesn't match the trusted email header value. This ensures proper session cleanup when the OAuth server changes the authenticated user. - Add response parameter to get_current_user function - Delete JWT token cookie on email mismatch - Delete OAuth token cookie if present - Force re-authentication with 401 error |
||
---|---|---|
.. | ||
data | ||
open_webui | ||
.dockerignore | ||
.gitignore | ||
dev.sh | ||
requirements.txt | ||
start_windows.bat | ||
start.sh |