feat: Disable Registration with social login (#813)

* Google, Github and Discord * update .env.example with ALLOW_SOCIAL_REGISTRATION * fix some conflict * refactor strategy * Update user_auth_system.md * Update user_auth_system.md
2025-12-17 17:00:15 +01:00 · 2023-08-18 16:11:00 +02:00 · 2023-08-18 16:11:00 +02:00 · c40b95f424
commit c40b95f424
parent 46ed5aaccd
8 changed files with 252 additions and 224 deletions
--- a/api/server/index.js
+++ b/api/server/index.js
@ -49,34 +49,37 @@ config.validate(); // Validate the config
  app.use(passport.initialize());
  passport.use(await jwtLogin());
  passport.use(await passportLogin());
-  if (process.env.GOOGLE_CLIENT_ID && process.env.GOOGLE_CLIENT_SECRET) {
-    passport.use(await googleLogin());
-  }
-  if (process.env.FACEBOOK_CLIENT_ID && process.env.FACEBOOK_CLIENT_SECRET) {
-    passport.use(await facebookLogin());
-  }
-  if (process.env.GITHUB_CLIENT_ID && process.env.GITHUB_CLIENT_SECRET) {
-    passport.use(await githubLogin());
-  }
-  if (process.env.DISCORD_CLIENT_ID && process.env.DISCORD_CLIENT_SECRET) {
-    passport.use(await discordLogin());
-  }
-  if (
-    process.env.OPENID_CLIENT_ID &&
-    process.env.OPENID_CLIENT_SECRET &&
-    process.env.OPENID_ISSUER &&
-    process.env.OPENID_SCOPE &&
-    process.env.OPENID_SESSION_SECRET
-  ) {
-    app.use(
-      session({
-        secret: process.env.OPENID_SESSION_SECRET,
-        resave: false,
-        saveUninitialized: false,
-      }),
-    );
-    app.use(passport.session());
-    await setupOpenId();
+
+  if (process.env.ALLOW_SOCIAL_LOGIN === 'true') {
+    if (process.env.GOOGLE_CLIENT_ID && process.env.GOOGLE_CLIENT_SECRET) {
+      passport.use(await googleLogin());
+    }
+    if (process.env.FACEBOOK_CLIENT_ID && process.env.FACEBOOK_CLIENT_SECRET) {
+      passport.use(await facebookLogin());
+    }
+    if (process.env.GITHUB_CLIENT_ID && process.env.GITHUB_CLIENT_SECRET) {
+      passport.use(await githubLogin());
+    }
+    if (process.env.DISCORD_CLIENT_ID && process.env.DISCORD_CLIENT_SECRET) {
+      passport.use(await discordLogin());
+    }
+    if (
+      process.env.OPENID_CLIENT_ID &&
+      process.env.OPENID_CLIENT_SECRET &&
+      process.env.OPENID_ISSUER &&
+      process.env.OPENID_SCOPE &&
+      process.env.OPENID_SESSION_SECRET
+    ) {
+      app.use(
+        session({
+          secret: process.env.OPENID_SESSION_SECRET,
+          resave: false,
+          saveUninitialized: false,
+        }),
+      );
+      app.use(passport.session());
+      await setupOpenId();
+    }
  }
  app.use('/oauth', routes.oauth);
  // api endpoint