admin/twenty
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

Check password in signinup only when email/password signInUp (#5042)

Browse Source 
- disable password check when signInUp from google (sso)
- check password when signInUp with email password
This commit is contained in:
martmull
2024-04-18 17:52:01 +02:00
committed by GitHub
parent e0efa358de
commit 36d4c38c3d
4 changed files with 11 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
packages/twenty-server/src/engine/core-modules/auth/auth.resolver.ts
View File

@ -97,7 +97,10 @@ export class AuthResolver {
@Mutation(() => LoginToken) @Mutation(() => LoginToken)
async signUp(@Args() signUpInput: SignUpInput): Promise<LoginToken> { async signUp(@Args() signUpInput: SignUpInput): Promise<LoginToken> {
const user = await this.authService.signInUp(signUpInput); const user = await this.authService.signInUp({
...signUpInput,
fromSSO: false,
});
const loginToken = await this.tokenService.generateLoginToken(user.email); const loginToken = await this.tokenService.generateLoginToken(user.email);

1
packages/twenty-server/src/engine/core-modules/auth/controllers/google-auth.controller.ts
View File

@ -34,6 +34,7 @@ export class GoogleAuthController {
lastName, lastName,
picture, picture,
workspaceInviteHash, workspaceInviteHash,
fromSSO: true,
}); });
const loginToken = await this.tokenService.generateLoginToken(user.email); const loginToken = await this.tokenService.generateLoginToken(user.email);

3
packages/twenty-server/src/engine/core-modules/auth/services/auth.service.ts
View File

@ -87,6 +87,7 @@ export class AuthService {
firstName, firstName,
lastName, lastName,
picture, picture,
fromSSO,
}: { }: {
email: string; email: string;
password?: string; password?: string;
@ -94,6 +95,7 @@ export class AuthService {
lastName?: string | null; lastName?: string | null;
workspaceInviteHash?: string | null; workspaceInviteHash?: string | null;
picture?: string | null; picture?: string | null;
fromSSO: boolean;
}) { }) {
return await this.signInUpService.signInUp({ return await this.signInUpService.signInUp({
email, email,
@ -102,6 +104,7 @@ export class AuthService {
lastName, lastName,
workspaceInviteHash, workspaceInviteHash,
picture, picture,
fromSSO,
}); });
} }

4
packages/twenty-server/src/engine/core-modules/auth/services/sign-in-up.service.ts
View File

@ -32,6 +32,7 @@ export type SignInUpServiceInput = {
lastName?: string | null; lastName?: string | null;
workspaceInviteHash?: string | null; workspaceInviteHash?: string | null;
picture?: string | null; picture?: string | null;
fromSSO: boolean;
}; };
@Injectable() @Injectable()
@ -54,6 +55,7 @@ export class SignInUpService {
firstName, firstName,
lastName, lastName,
picture, picture,
fromSSO,
}: SignInUpServiceInput) { }: SignInUpServiceInput) {
if (!firstName) firstName = ''; if (!firstName) firstName = '';
if (!lastName) lastName = ''; if (!lastName) lastName = '';
@ -80,7 +82,7 @@ export class SignInUpService {
relations: ['defaultWorkspace'], relations: ['defaultWorkspace'],
}); });
if (existingUser && existingUser.passwordHash) { if (existingUser && !fromSSO) {
const isValid = await compareHash( const isValid = await compareHash(
password || '', password || '',
existingUser.passwordHash, existingUser.passwordHash,