ti.sil/open-webui
1
0
Fork 0
mirror of https://github.com/open-webui/open-webui.git synced 2025-12-13 04:45:19 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

add handling nested claims...

Browse source
This commit is contained in:
Willnow, Patrick 2024-10-03 23:25:00 +02:00
parent 5b2e1ca7cd
commit 8e4776ada1
1 changed files with 10 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
backend/open_webui/main.py
View file

@ -2251,7 +2251,16 @@ async def oauth_callback(provider: str, request: Request, response: Response):
if Users.get_num_users() == 1:
role = "admin"
elif webui_app.state.config.ENABLE_OAUTH_ROLE_MAPPING:
oauth_roles = user_data.get(webui_app.state.config.OAUTH_ROLES_CLAIM)
oauth_claim = webui_app.state.config.OAUTH_ROLES_CLAIM
oauth_roles = user_data.get(oauth_claim) # Works for simple claims with no nesting
if "." in oauth_claim:
# Implementation to handle nested claims of arbitrary depth
nested_claims = oauth_claim.split(".")
claim_data = user_data.get(nested_claims[0])
for nested_claim in nested_claims[1:]:
claim_data = claim_data.get(nested_claim)
oauth_roles = claim_data
log.info(f"User {user.name} has OAuth roles: {oauth_roles}")
if oauth_roles:
for allowed_role in ["pending", "user", "admin"]: