tdpeuter/open-webui
tdpeuter/open-webui
1
Fork 0
forked from open-webui/open-webui
Code Issues Pull requests 1 Releases 2 Packages Activity Actions

feat: auto signup/login with WEBUI_AUTH_TRUSTED_EMAIL_HEADER

Browse source
This commit is contained in:
Jun Siang Cheah 2024-03-28 10:34:57 +00:00
parent 29f13f34d3
commit 50f6addd6f
2 changed files with 28 additions and 29 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

16
backend/apps/web/routers/auths.py
View file

@ -105,8 +105,9 @@ async def signin(request: Request, form_data: SigninForm):
if WEBUI_AUTH_TRUSTED_EMAIL_HEADER not in request.headers: if WEBUI_AUTH_TRUSTED_EMAIL_HEADER not in request.headers:
raise HTTPException(400, raise HTTPException(400,
detail=ERROR_MESSAGES.INVALID_TRUSTED_HEADER) detail=ERROR_MESSAGES.INVALID_TRUSTED_HEADER)
trusted_email = request.headers[WEBUI_AUTH_TRUSTED_EMAIL_HEADER].lower( trusted_email = request.headers[WEBUI_AUTH_TRUSTED_EMAIL_HEADER].lower()
) if not Users.get_user_by_email(trusted_email.lower()):
await signup(request, SignupForm(email=trusted_email, password=str(uuid.uuid4()), name=trusted_email))
user = Auths.authenticate_user_by_trusted_header(trusted_email) user = Auths.authenticate_user_by_trusted_header(trusted_email)
else: else:
user = Auths.authenticate_user(form_data.email.lower(), user = Auths.authenticate_user(form_data.email.lower(),
@ -150,17 +151,6 @@ async def signup(request: Request, form_data: SignupForm):
if Users.get_user_by_email(form_data.email.lower()): if Users.get_user_by_email(form_data.email.lower()):
raise HTTPException(400, detail=ERROR_MESSAGES.EMAIL_TAKEN) raise HTTPException(400, detail=ERROR_MESSAGES.EMAIL_TAKEN)
if WEBUI_AUTH_TRUSTED_EMAIL_HEADER:
if WEBUI_AUTH_TRUSTED_EMAIL_HEADER not in request.headers:
raise HTTPException(400,
detail=ERROR_MESSAGES.INVALID_TRUSTED_HEADER)
trusted_email = request.headers[WEBUI_AUTH_TRUSTED_EMAIL_HEADER].lower(
)
if trusted_email != form_data.email:
raise HTTPException(400, detail=ERROR_MESSAGES.EMAIL_MISMATCH)
# TODO: Yolo hack to assign a password
form_data.password = str(uuid.uuid4())
try: try:
role = ( role = (
"admin" "admin"

41
src/routes/auth/+page.svelte
View file

@ -15,8 +15,6 @@
let email = ''; let email = '';
let password = ''; let password = '';
let showPasswordField = !($config?.trusted_header_auth ?? false);
const setSessionUser = async (sessionUser) => { const setSessionUser = async (sessionUser) => {
if (sessionUser) { if (sessionUser) {
console.log(sessionUser); console.log(sessionUser);
@ -58,6 +56,9 @@
await goto('/'); await goto('/');
} }
loaded = true; loaded = true;
if ($config?.trusted_header_auth ?? false) {
await signInHandler();
}
}); });
</script> </script>
@ -92,7 +93,16 @@
</div> --> </div> -->
<div class="w-full sm:max-w-lg px-4 min-h-screen flex flex-col"> <div class="w-full sm:max-w-lg px-4 min-h-screen flex flex-col">
<div class=" my-auto pb-10 w-full"> {#if ($config?.trusted_header_auth ?? false)}
<div class=" my-auto pb-10 w-full">
<div class=" text-xl sm:text-2xl font-bold">
{$i18n.t('Signing in')}
{$i18n.t('to')}
{$WEBUI_NAME}
</div>
</div>
{:else}
<div class=" my-auto pb-10 w-full">
<form <form
class=" flex flex-col justify-center bg-white py-6 sm:py-16 px-6 sm:px-16 rounded-2xl" class=" flex flex-col justify-center bg-white py-6 sm:py-16 px-6 sm:px-16 rounded-2xl"
on:submit|preventDefault={() => { on:submit|preventDefault={() => {
@ -143,19 +153,17 @@
/> />
</div> </div>
{#if showPasswordField} <div>
<div> <div class=" text-sm font-semibold text-left mb-1">{$i18n.t('Password')}</div>
<div class=" text-sm font-semibold text-left mb-1">{$i18n.t('Password')}</div> <input
<input bind:value={password}
bind:value={password} type="password"
type="password" class=" border px-4 py-2.5 rounded-2xl w-full text-sm"
class=" border px-4 py-2.5 rounded-2xl w-full text-sm" placeholder={$i18n.t('Enter Your Password')}
placeholder={$i18n.t('Enter Your Password')} autocomplete="current-password"
autocomplete="current-password" required
required />
/> </div>
</div>
{/if}
</div> </div>
<div class="mt-5"> <div class="mt-5">
@ -188,6 +196,7 @@
</div> </div>
</form> </form>
</div> </div>
{/if}
</div> </div>
</div> </div>
{/if} {/if}