fix(auth): replace mongoose model references with new function imports

- Updated AuthController, checkBan middleware, localStrategy, and openidStrategy to use new function imports for user operations. - Removed unused mongoose imports to streamline the codebase. - Enhanced consistency across user-related operations by utilizing the centralized methods for user management.
2026-01-04 09:38:50 +01:00 · 2025-05-30 13:46:31 -04:00 · 2025-05-30 13:46:31 -04:00 · 6e278f6932
commit 6e278f6932
parent 90ac2b51cd
5 changed files with 12 additions and 241 deletions
--- a/api/server/controllers/AuthController.js
+++ b/api/server/controllers/AuthController.js
@ -1,6 +1,5 @@
 const cookies = require('cookie');
 const jwt = require('jsonwebtoken');
-const mongoose = require('mongoose');
 const openIdClient = require('openid-client');
 const { logger } = require('@librechat/data-schemas');
 const {
@ -10,11 +9,11 @@ const {
  requestPasswordReset,
  setOpenIDAuthTokens,
 } = require('~/server/services/AuthService');
+const { findUser, getUserById } = require('~/models');
 const { getOpenIdConfig } = require('~/strategies');
 const { isEnabled } = require('~/server/utils');

 const Session = require('~/db/models').Session;
-const User = require('~/db/models').User;

 const registrationController = async (req, res) => {
  try {
@ -73,7 +72,7 @@ const refreshController = async (req, res) => {
      const openIdConfig = getOpenIdConfig();
      const tokenset = await openIdClient.refreshTokenGrant(openIdConfig, refreshToken);
      const claims = tokenset.claims();
-      const user = await User.findUser({ email: claims.email });
+      const user = await findUser({ email: claims.email });
      if (!user) {
        return res.status(401).redirect('/login');
      }
@ -86,7 +85,7 @@ const refreshController = async (req, res) => {
  }
  try {
    const payload = jwt.verify(refreshToken, process.env.JWT_REFRESH_SECRET);
-    const user = await User.getUserById(payload.id, '-password -__v -totpSecret');
+    const user = await getUserById(payload.id, '-password -__v -totpSecret');
    if (!user) {
      return res.status(401).redirect('/login');
    }
--- a/api/server/middleware/checkBan.js
+++ b/api/server/middleware/checkBan.js
@ -1,14 +1,12 @@
 const { Keyv } = require('keyv');
 const uap = require('ua-parser-js');
-const mongoose = require('mongoose');
 const { logger } = require('@librechat/data-schemas');
 const { ViolationTypes } = require('librechat-data-provider');
 const { isEnabled, removePorts } = require('~/server/utils');
 const keyvMongo = require('~/cache/keyvMongo');
 const denyRequest = require('./denyRequest');
 const { getLogStores } = require('~/cache');
-
-const User = require('~/db/models').User;
+const { findUser } = require('~/models');

 const banCache = new Keyv({ store: keyvMongo, namespace: ViolationTypes.BAN, ttl: 0 });
 const message = 'Your account has been temporarily banned due to violations of our service.';
@ -59,7 +57,7 @@ const checkBan = async (req, res, next = () => {}) => {
    let userId = req.user?.id ?? req.user?._id ?? null;

    if (!userId && req?.body?.email) {
-      const user = await User.findUser({ email: req.body.email }, '_id');
+      const user = await findUser({ email: req.body.email }, '_id');
      userId = user?._id ? user._id.toString() : userId;
    }

--- a/api/strategies/localStrategy.js
+++ b/api/strategies/localStrategy.js
@ -1,9 +1,8 @@
-const mongoose = require('mongoose');
 const { logger } = require('@librechat/data-schemas');
 const { errorsToString } = require('librechat-data-provider');
 const { Strategy: PassportLocalStrategy } = require('passport-local');
 const { isEnabled, checkEmailConfig } = require('~/server/utils');
-const { comparePassword } = require('~/models');
+const { findUser, comparePassword } = require('~/models');
 const { loginSchema } = require('./validators');

 const User = require('~/db/models').User;
@ -25,7 +24,7 @@ async function passportLogin(req, email, password, done) {
      return done(null, false, { message: validationError });
    }

-    const user = await User.findUser({ email: email.trim() });
+    const user = await findUser({ email: email.trim() });
    if (!user) {
      logError('Passport Local Strategy - User Not Found', { email });
      logger.error(`[Login] [Login failed] [Username: ${email}] [Request-IP: ${req.ip}]`);
--- a/api/strategies/openidStrategy.js
+++ b/api/strategies/openidStrategy.js
@ -1,5 +1,4 @@
 const fetch = require('node-fetch');
-const mongoose = require('mongoose');
 const passport = require('passport');
 const client = require('openid-client');
 const jwtDecode = require('jsonwebtoken/decode');
@ -8,11 +7,10 @@ const { CacheKeys } = require('librechat-data-provider');
 const { HttpsProxyAgent } = require('https-proxy-agent');
 const { Strategy: OpenIDStrategy } = require('openid-client/passport');
 const { getStrategyFunctions } = require('~/server/services/Files/strategies');
+const { findUser, createUser, updateUser } = require('~/models');
 const getLogStores = require('~/cache/getLogStores');
 const { isEnabled } = require('~/server/utils');

-const User = require('~/db/models').User;
-
 /**
 * @typedef {import('openid-client').ClientMetadata} ClientMetadata
 * @typedef {import('openid-client').Configuration} Configuration
@ -248,13 +246,13 @@ async function setupOpenId() {
      async (tokenset, done) => {
        try {
          const claims = tokenset.claims();
-          let user = await User.findUser({ openidId: claims.sub });
+          let user = await findUser({ openidId: claims.sub });
          logger.info(
            `[openidStrategy] user ${user ? 'found' : 'not found'} with openidId: ${claims.sub}`,
          );

          if (!user) {
-            user = await User.findUser({ email: claims.email });
+            user = await findUser({ email: claims.email });
            logger.info(
              `[openidStrategy] user ${user ? 'found' : 'not found'} with email: ${
                claims.email
@ -318,7 +316,7 @@ async function setupOpenId() {

            const balanceConfig = await getBalanceConfig();

-            user = await User.createUser(user, balanceConfig, true, true);
+            user = await createUser(user, balanceConfig, true, true);
          } else {
            user.provider = 'openid';
            user.openidId = userinfo.sub;
@ -354,7 +352,7 @@ async function setupOpenId() {
            }
          }

-          user = await User.updateUser(user._id, user);
+          user = await updateUser(user._id, user);

          logger.info(
            `[openidStrategy] login success openidId: ${user.openidId} | email: ${user.email} | username: ${user.username} `,