feat: auto signup/login with WEBUI_AUTH_TRUSTED_EMAIL_HEADER

50f6addd · Jun Siang Cheah · 29f13f34 · 50f6addd · 50f6addd
Commit 50f6addd authored Mar 28, 2024 by Jun Siang Cheah
Show whitespace changes
Inline Side-by-side

Showing with 28 additions and 29 deletions

backend/apps/web/routers/auths.py backend/apps/web/routers/auths.py +3 -13

src/routes/auth/+page.svelte src/routes/auth/+page.svelte +25 -16

No files found.
--- a/backend/apps/web/routers/auths.py
+++ b/backend/apps/web/routers/auths.py
@@ -105,8 +105,9 @@ async def signin(request: Request, form_data: SigninForm):
        if WEBUI_AUTH_TRUSTED_EMAIL_HEADER not in request.headers:
            raise HTTPException(400,
                                detail=ERROR_MESSAGES.INVALID_TRUSTED_HEADER)
-        trusted_email = request.headers[WEBUI_AUTH_TRUSTED_EMAIL_HEADER].lower(
-        )
+        trusted_email = request.headers[WEBUI_AUTH_TRUSTED_EMAIL_HEADER].lower()
+        if not Users.get_user_by_email(trusted_email.lower()):
+            await signup(request, SignupForm(email=trusted_email, password=str(uuid.uuid4()), name=trusted_email))
        user = Auths.authenticate_user_by_trusted_header(trusted_email)
    else:
        user = Auths.authenticate_user(form_data.email.lower(),
@@ -150,17 +151,6 @@ async def signup(request: Request, form_data: SignupForm):
    if Users.get_user_by_email(form_data.email.lower()):
        raise HTTPException(400, detail=ERROR_MESSAGES.EMAIL_TAKEN)

-    if WEBUI_AUTH_TRUSTED_EMAIL_HEADER:
-        if WEBUI_AUTH_TRUSTED_EMAIL_HEADER not in request.headers:
-            raise HTTPException(400,
-                                detail=ERROR_MESSAGES.INVALID_TRUSTED_HEADER)
-        trusted_email = request.headers[WEBUI_AUTH_TRUSTED_EMAIL_HEADER].lower(
-        )
-        if trusted_email != form_data.email:
-            raise HTTPException(400, detail=ERROR_MESSAGES.EMAIL_MISMATCH)
-        # TODO: Yolo hack to assign a password
-        form_data.password = str(uuid.uuid4())
-
    try:
        role = (
            "admin"

--- a/src/routes/auth/+page.svelte
+++ b/src/routes/auth/+page.svelte
@@ -15,8 +15,6 @@
 	let email = '';
 	let password = '';

-	let showPasswordField = !($config?.trusted_header_auth ?? false);
-
 	const setSessionUser = async (sessionUser) => {
 		if (sessionUser) {
 			console.log(sessionUser);
@@ -58,6 +56,9 @@
 			await goto('/');
 		}
 		loaded = true;
+		if ($config?.trusted_header_auth ?? false) {
+			await signInHandler();
+		}
 	});
 </script>

@@ -92,6 +93,15 @@
 		</div> -->

 		<div class="w-full sm:max-w-lg px-4 min-h-screen flex flex-col">
+			{#if ($config?.trusted_header_auth ?? false)}
+				<div class=" my-auto pb-10 w-full">
+					<div class=" text-xl sm:text-2xl font-bold">
+						{$i18n.t('Signing in')}
+						{$i18n.t('to')}
+						{$WEBUI_NAME}
+					</div>
+				</div>
+			{:else}
 				<div class=" my-auto pb-10 w-full">
 				<form
 					class=" flex flex-col justify-center bg-white py-6 sm:py-16 px-6 sm:px-16 rounded-2xl"
@@ -143,7 +153,6 @@
 							/>
 						</div>

-						{#if showPasswordField}
 						<div>
 							<div class=" text-sm font-semibold text-left mb-1">{$i18n.t('Password')}</div>
 							<input
@@ -155,7 +164,6 @@
 								required
 							/>
 						</div>
-						{/if}
 					</div>

 					<div class="mt-5">
@@ -188,6 +196,7 @@
 					</div>
 				</form>
 			</div>
+			{/if}
 		</div>
 	</div>
 {/if}