Dont log into local site when only signing into external site

2025-09-09 19:24:53 -07:00
parent d8a159aa52
commit 51056c2ea5
2 changed files with 13 additions and 9 deletions
@@ -51,16 +51,19 @@ namespace Auth.Controllers {
                        if (BCrypt.Net.BCrypt.Verify(request.Password, test.PasswordHash)) {
                            test.CurrentPasswordAttempts = 0;
                            await _databaseService.SetAccount(test);
                            if (request.SameSite) {
                                SignIn(Response, AuthJWT.GenereateJWTToken(test, request.StayLoggedIn));
                            } else {
                                string Ticket = Guid.NewGuid().ToString().Replace("-", "");
                                string JWT = AuthJWT.GenereateJWTToken(test, request.StayLoggedIn);
                                AuthJWT.LoginSessions[Ticket] = new JWTMemCache {
                                    JWT = JWT,
                                    ExpiresAt = DateTime.UtcNow.AddSeconds(30)
                                };
-                            string Ticket = Guid.NewGuid().ToString().Replace("-", "");
+                                return Ok(Ticket);
-                            string JWT = AuthJWT.GenereateJWTToken(test, request.StayLoggedIn);
+                            }
                            AuthJWT.LoginSessions[Ticket] = new JWTMemCache {
                                JWT = JWT,
                                ExpiresAt = DateTime.UtcNow.AddSeconds(30)
                            };
                            SignIn(Response, JWT);
                            return Ok(Ticket);
                        } else {
                            test.CurrentPasswordAttempts += 1;
                            await _databaseService.SetAccount(test);
@@ -4,6 +4,7 @@ namespace Auth.DTO {
        public string UserName { get; set; } = "";
        public string Password { get; set; } = "";
        public bool StayLoggedIn { get; set; }
        public bool SameSite { get; set; }
    }
    public class JWTRenewRequest {