mirror of
https://github.com/danny-avila/LibreChat.git
synced 2025-12-20 18:30:15 +01:00
23 lines
962 B
JavaScript
23 lines
962 B
JavaScript
const cookies = require('cookie');
|
|
const passport = require('passport');
|
|
const { isEnabled } = require('@librechat/api');
|
|
|
|
/**
|
|
* Custom Middleware to handle JWT authentication, with support for OpenID token reuse
|
|
* Switches between JWT and OpenID authentication based on cookies and environment settings
|
|
*/
|
|
const requireJwtAuth = (req, res, next) => {
|
|
// Check if token provider is specified in cookies
|
|
const cookieHeader = req.headers.cookie;
|
|
const tokenProvider = cookieHeader ? cookies.parse(cookieHeader).token_provider : null;
|
|
|
|
// Use OpenID authentication if token provider is OpenID and OPENID_REUSE_TOKENS is enabled
|
|
if (tokenProvider === 'openid' && isEnabled(process.env.OPENID_REUSE_TOKENS)) {
|
|
return passport.authenticate('openidJwt', { session: false })(req, res, next);
|
|
}
|
|
|
|
// Default to standard JWT authentication
|
|
return passport.authenticate('jwt', { session: false })(req, res, next);
|
|
};
|
|
|
|
module.exports = requireJwtAuth;
|