Feat/webapp verified sso main (#20494)

2025-06-09 17:19:53 +09:00
parent ab62a9662c
commit 0720bc7408
13 changed files with 504 additions and 75 deletions
--- a/api/extensions/ext_login.py
+++ b/api/extensions/ext_login.py
@@ -57,6 +57,9 @@ def load_user_from_request(request_from_flask_login):
            raise Unauthorized("Invalid Authorization token.")
        decoded = PassportService().verify(auth_token)
        user_id = decoded.get("user_id")
+        source = decoded.get("token_source")
+        if source:
+            raise Unauthorized("Invalid Authorization token.")
        if not user_id:
            raise Unauthorized("Invalid Authorization token.")