github-starred/open-webui
2
0
Fork 0
mirror of https://github.com/open-webui/open-webui.git synced 2026-05-07 03:18:23 -05:00
Code Issues 1.3k Packages Projects Releases 126 Wiki Activity
Files
fb5ef978bfb451c3f2221931e08e54250cec58ca
open-webui/backend
History
Classic298 fb5ef978bf fix: enforce OAUTH_ALLOWED_DOMAINS on token exchange endpoint (#23639) 
The OAuth token exchange endpoint skipped the domain allowlist check that the normal OAuth callback enforces. An attacker with a valid OAuth token from a non-allowed domain (e.g. gmail.com) could bypass the admin's domain restriction policy entirely.

Adds the same domain validation check used in the OAuth callback, denying access when the email domain is not in the allowed list.
2026-04-12 16:19:58 -05:00
..
data
open_webui
fix: enforce OAUTH_ALLOWED_DOMAINS on token exchange endpoint (#23639)
2026-04-12 16:19:58 -05:00
.dockerignore
.gitignore
dev.sh
refac
2026-03-24 19:43:30 -05:00
requirements-min.txt
refac: async db
2026-04-12 14:22:11 -05:00
requirements.txt
refac: async db
2026-04-12 14:22:11 -05:00
start_windows.bat
refac
2026-03-24 19:43:30 -05:00
start.sh
refac
2026-03-24 19:43:30 -05:00