[PR #14152] [MERGED] fix(auth): correctly use password hash when duplicate email records exist #10197

Closed
opened 2025-11-11 18:58:45 -06:00 by GiteaMirror · 0 comments
Owner

📋 Pull Request Information

Original PR: https://github.com/open-webui/open-webui/pull/14152
Author: @U8F69
Created: 5/22/2025
Status: Merged
Merged: 5/22/2025
Merged by: @tjbck

Base: devHead: fix_user_auth


📝 Commits (1)

  • dd6124a fix(auth): fix invalid password use in auth

📊 Changes

3 files changed (+12 additions, -4 deletions)

View changed files

📝 backend/open_webui/models/auths.py (+6 -2)
📝 backend/open_webui/retrieval/web/searchapi.py (+3 -1)
📝 backend/open_webui/retrieval/web/serpapi.py (+3 -1)

📄 Description

Changelog Entry

Description

The Auth table may contain multiple records with the same email address, particularly if a user was deleted and then signed up again. This PR will use the user ID to select the specific Auth record, ensuring that we use the correct password hash.

Fixed

  • Fixed an invalid password hash use in auth

Contributor License Agreement

By submitting this pull request, I confirm that I have read and fully agree to the Contributor License Agreement (CLA), and I am providing my contributions under its terms.


🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.

## 📋 Pull Request Information **Original PR:** https://github.com/open-webui/open-webui/pull/14152 **Author:** [@U8F69](https://github.com/U8F69) **Created:** 5/22/2025 **Status:** ✅ Merged **Merged:** 5/22/2025 **Merged by:** [@tjbck](https://github.com/tjbck) **Base:** `dev` ← **Head:** `fix_user_auth` --- ### 📝 Commits (1) - [`dd6124a`](https://github.com/open-webui/open-webui/commit/dd6124a84f48b6b0c376576ccfcd2c6989fd5a85) fix(auth): fix invalid password use in auth ### 📊 Changes **3 files changed** (+12 additions, -4 deletions) <details> <summary>View changed files</summary> 📝 `backend/open_webui/models/auths.py` (+6 -2) 📝 `backend/open_webui/retrieval/web/searchapi.py` (+3 -1) 📝 `backend/open_webui/retrieval/web/serpapi.py` (+3 -1) </details> ### 📄 Description # Changelog Entry ### Description The Auth table may contain multiple records with the same email address, particularly if a user was deleted and then signed up again. This PR will use the user ID to select the specific Auth record, ensuring that we use the correct password hash. ### Fixed - Fixed an invalid password hash use in auth ### Contributor License Agreement By submitting this pull request, I confirm that I have read and fully agree to the [Contributor License Agreement (CLA)](/CONTRIBUTOR_LICENSE_AGREEMENT), and I am providing my contributions under its terms. --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>
GiteaMirror added the pull-request label 2025-11-11 18:58:45 -06:00
Sign in to join this conversation.
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: github-starred/open-webui#10197