TheArchive/zitadel
1
0
Fork 0
mirror of https://github.com/zitadel/zitadel.git synced 2025-01-12 07:43:40 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix: clear potentially existing user information on auth request for domain discovery (#4528)

Browse Source
This commit is contained in:
Livio Spring 2022-10-11 11:12:07 +02:00 committed by GitHub
parent c0f65088a1
commit 6daf44a34a
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
internal/auth/repository/eventsourcing/eventstore/auth_request.go
View File

@ -712,9 +712,11 @@ func (repo *AuthRequestRepo) checkDomainDiscovery(ctx context.Context, request *
return false
}
// discovery was allowed, so set the org as requested org
// and clear all potentially existing user information and only set the loginname as hint (for registration)
request.SetOrgInformation(org.ID, org.Name, org.Domain, false)
request.SetUserInfo("", "", "", "", "", org.ID)
request.LoginHint = loginName
request.Prompt = append(request.Prompt, domain.PromptCreate)
request.Prompt = append(request.Prompt, domain.PromptCreate) // to trigger registration
return true
}