TheArchive/zitadel
1
0
Fork 0
mirror of https://github.com/zitadel/zitadel.git synced 2025-05-03 22:50:49 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix: clear potentially existing user information on auth request for domain discovery (#4528)

Browse Source
This commit is contained in:
Livio Spring 2022-10-11 11:12:07 +02:00 committed by GitHub
parent c0f65088a1
commit 6daf44a34a
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
internal/auth/repository/eventsourcing/eventstore/auth_request.go
View File

@ -712,9 +712,11 @@ func (repo *AuthRequestRepo) checkDomainDiscovery(ctx context.Context, request *
return false return false
} }
// discovery was allowed, so set the org as requested org // discovery was allowed, so set the org as requested org
// and clear all potentially existing user information and only set the loginname as hint (for registration)
request.SetOrgInformation(org.ID, org.Name, org.Domain, false) request.SetOrgInformation(org.ID, org.Name, org.Domain, false)
request.SetUserInfo("", "", "", "", "", org.ID)
request.LoginHint = loginName request.LoginHint = loginName
request.Prompt = append(request.Prompt, domain.PromptCreate) request.Prompt = append(request.Prompt, domain.PromptCreate) // to trigger registration
return true return true
} }