Andreas/LibreChat
1
0
Fork 0
mirror of https://github.com/danny-avila/LibreChat.git synced 2026-01-02 16:48:50 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

Added Cooldown logic for OIDC auto redirect for failed login attempts

Browse source
This commit is contained in:
Danilo Pejakovic 2025-02-27 10:58:52 +01:00
parent caaadf2fdb
commit bfc7179f16
3 changed files with 104 additions and 9 deletions
Download patch file Download diff file Expand all files Collapse all files

11
api/server/routes/oauth.js
View file

@ -22,6 +22,13 @@ const oauthHandler = async (req, res) => {
return;
}
await setAuthTokens(req.user._id, res);
// On successful login, let's clear any openid redirect flags
res.cookie('successful_login', 'true', {
maxAge: 1000, // very short-lived, just for client-side detection
httpOnly: false // client needs to read this
});
res.redirect(domains.client);
} catch (err) {
logger.error('Error in setting authentication tokens:', err);
@ -31,7 +38,9 @@ const oauthHandler = async (req, res) => {
router.get('/error', (req, res) => {
// A single error message is pushed by passport when authentication fails.
logger.error('Error in OAuth authentication:', { message: req.session.messages.pop() });
res.redirect(`${domains.client}/login`);
// Redirect to login page with auth_failed parameter to prevent infinite redirect loops
res.redirect(`${domains.client}/login?auth_failed=true`);
});
/**