From 8f547e63409ed50b9d035c6bc7a7893cb56a19fc Mon Sep 17 00:00:00 2001
From: Yeuoly <45712896+Yeuoly@users.noreply.github.com>
Date: Thu, 17 Apr 2025 16:58:29 +0800
Subject: [PATCH] fix(typing): validate OAuth code before processing access
 token (#18288)

---
 api/controllers/console/auth/data_source_oauth.py | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/api/controllers/console/auth/data_source_oauth.py b/api/controllers/console/auth/data_source_oauth.py
index e911c9a5e..b4bd80fe2 100644
--- a/api/controllers/console/auth/data_source_oauth.py
+++ b/api/controllers/console/auth/data_source_oauth.py
@@ -74,7 +74,9 @@ class OAuthDataSourceBinding(Resource):
         if not oauth_provider:
             return {"error": "Invalid provider"}, 400
         if "code" in request.args:
-            code = request.args.get("code")
+            code = request.args.get("code", "")
+            if not code:
+                return {"error": "Invalid code"}, 400
             try:
                 oauth_provider.get_access_token(code)
             except requests.exceptions.HTTPError as e: