UniqAI/open-webui
1
0
Fork 0
mirror of https://github.com/open-webui/open-webui synced 2024-11-24 21:13:59 +00:00
Code Issues Actions 5 Packages Projects Releases Wiki Activity

fix: set auth cookie during oauth login

Browse Source
This commit is contained in:
Jun Siang Cheah 2024-06-21 14:35:11 +01:00
parent 416e8d1ef9
commit e011e7b695
1 changed files with 8 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
backend/main.py
View File

@ -1870,7 +1870,7 @@ async def oauth_login(provider: str, request: Request):
@app.get("/oauth/{provider}/callback") @app.get("/oauth/{provider}/callback")
async def oauth_callback(provider: str, request: Request): async def oauth_callback(provider: str, request: Request, response: Response):
if provider not in OAUTH_PROVIDERS: if provider not in OAUTH_PROVIDERS:
raise HTTPException(404) raise HTTPException(404)
client = oauth.create_client(provider) client = oauth.create_client(provider)
@ -1953,6 +1953,13 @@ async def oauth_callback(provider: str, request: Request):
expires_delta=parse_duration(webui_app.state.config.JWT_EXPIRES_IN), expires_delta=parse_duration(webui_app.state.config.JWT_EXPIRES_IN),
) )
# Set the cookie token
response.set_cookie(
key="token",
value=token,
httponly=True, # Ensures the cookie is not accessible via JavaScript
)
# Redirect back to the frontend with the JWT token # Redirect back to the frontend with the JWT token
redirect_url = f"{request.base_url}auth#token={jwt_token}" redirect_url = f"{request.base_url}auth#token={jwt_token}"
return RedirectResponse(url=redirect_url) return RedirectResponse(url=redirect_url)