fix: update loginmethod endpoints (#5681)

0xi4o · web-flow · commit 06b812653843 · 2026-02-03T18:30:53.000+08:00
* fix: disable loginmethod read, create, and update endpoints in cloud

* fix: refactor

* fix: status code

* fix: duplicated code and unused imports
diff --git a/packages/server/src/enterprise/controllers/login-method.controller.ts b/packages/server/src/enterprise/controllers/login-method.controller.ts
@@ -14,8 +14,16 @@ import GoogleSSO from '../sso/GoogleSSO'
 import { decrypt } from '../utils/encryption.util'
 
 export class LoginMethodController {
+    private assertEnterprisePlatform(): void {
+        const platformType = getRunningExpressApp().identityManager.getPlatformType()
+        if (platformType === Platform.CLOUD || platformType === Platform.OPEN_SOURCE) {
+            throw new InternalFlowiseError(StatusCodes.FORBIDDEN, GeneralErrorMessage.FORBIDDEN)
+        }
+    }
+
     public async create(req: Request, res: Response, next: NextFunction) {
         try {
+            this.assertEnterprisePlatform()
             const loginMethodService = new LoginMethodService()
             const loginMethod = await loginMethodService.createLoginMethod(req.body)
             return res.status(StatusCodes.CREATED).json(loginMethod)
@@ -64,6 +72,7 @@ export class LoginMethodController {
     public async read(req: Request, res: Response, next: NextFunction) {
         let queryRunner
         try {
+            this.assertEnterprisePlatform()
             queryRunner = getRunningExpressApp().AppDataSource.createQueryRunner()
             await queryRunner.connect()
             const query = req.query as Partial<LoginMethod>
@@ -102,6 +111,7 @@ export class LoginMethodController {
     }
     public async update(req: Request, res: Response, next: NextFunction) {
         try {
+            this.assertEnterprisePlatform()
             const loginMethodService = new LoginMethodService()
             const loginMethod = await loginMethodService.createOrUpdateConfig(req.body)
             if (loginMethod?.status === 'OK' && loginMethod?.organizationId) {
diff --git a/packages/server/src/utils/constants.ts b/packages/server/src/utils/constants.ts
@@ -57,6 +57,7 @@ export const WHITELIST_URLS = [
 export const API_KEY_BLACKLIST_URLS = ['/api/v1/nvidia-nim']
 
 export const enum GeneralErrorMessage {
+    FORBIDDEN = 'Forbidden',
     UNAUTHORIZED = 'Unauthorized',
     UNHANDLED_EDGE_CASE = 'Unhandled Edge Case',
     INVALID_PASSWORD = 'Invalid Password',
