Ryan/documenso
1
0
Fork 1
mirror of https://github.com/documenso/documenso.git synced 2025-11-15 09:12:02 +10:00
Code Issues Packages Projects Releases Wiki Activity

fix: add oidc env variables

Browse Source
This commit is contained in:
David Nguyen
2025-02-14 18:11:54 +11:00
parent 180656978b
commit df8ea09021
5 changed files with 4 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
packages/auth/server/config.ts
View File

@ -8,6 +8,7 @@ export type OAuthClientOptions = {
clientSecret: string;
wellKnownUrl: string;
redirectUrl: string;
bypassEmailVerification?: boolean;
};
export const GoogleAuthOptions: OAuthClientOptions = {
@ -17,6 +18,7 @@ export const GoogleAuthOptions: OAuthClientOptions = {
clientSecret: env('NEXT_PRIVATE_GOOGLE_CLIENT_SECRET') ?? '',
redirectUrl: `${NEXT_PUBLIC_WEBAPP_URL()}/api/auth/callback/google`,
wellKnownUrl: 'https://accounts.google.com/.well-known/openid-configuration',
bypassEmailVerification: false,
};
export const OidcAuthOptions: OAuthClientOptions = {
@ -26,4 +28,5 @@ export const OidcAuthOptions: OAuthClientOptions = {
clientSecret: env('NEXT_PRIVATE_OIDC_CLIENT_SECRET') ?? '',
redirectUrl: `${NEXT_PUBLIC_WEBAPP_URL()}/api/auth/callback/oidc`,
wellKnownUrl: env('NEXT_PRIVATE_OIDC_WELL_KNOWN') ?? '',
bypassEmailVerification: env('NEXT_PRIVATE_OIDC_SKIP_VERIFY') === 'true',
};

2
packages/auth/server/lib/utils/handle-oauth-callback-url.ts
View File

@ -79,7 +79,7 @@ export const handleOAuthCallbackUrl = async (options: HandleOAuthCallbackUrlOpti
});
}
if (claims.email_verified !== true) {
if (claims.email_verified !== true && !clientOptions.bypassEmailVerification) {
throw new AppError(AuthenticationErrorCode.UnverifiedEmail, {
message: 'Account email is not verified',
});