fix: get userinfo from endpoint, not only from token

as was suggested by @alvarolopez in #6262
2024-11-22 08:07:55 +00:00 · 2024-10-22 21:55:12 +02:00 · 2024-10-22 21:55:12 +02:00 · 1b5ac834ef
commit 1b5ac834ef
parent c57ef980fb
1 changed files with 5 additions and 0 deletions
--- a/backend/open_webui/utils/oauth.py
+++ b/backend/open_webui/utils/oauth.py
@ -139,6 +139,11 @@ class OAuthManager:
            log.warning(f"OAuth callback error: {e}")
            raise HTTPException(400, detail=ERROR_MESSAGES.INVALID_CRED)
        user_data: UserInfo = token["userinfo"]
+        if not user_data:
+            user_data: UserInfo = await client.userinfo(token=token)
+        if not user_data:
+            log.warning(f"OAuth callback failed, user data is missing: {token}")
+            raise HTTPException(400, detail=ERROR_MESSAGES.INVALID_CRED)

        sub = user_data.get("sub")
        if not sub: