mmintel/at-mintel
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix(gatekeeper): trim auth inputs and prioritize access code to prevent autofill traps
Some checks failed
Monorepo Pipeline / ⚡ Prioritize Release (push) Successful in 2s
Details
Monorepo Pipeline / 🧹 Lint (push) Has been cancelled
Details
Monorepo Pipeline / 🧪 Test (push) Has been cancelled
Details
Monorepo Pipeline / 🏗️ Build (push) Has been cancelled
Details
Monorepo Pipeline / 🚀 Release (push) Has been cancelled
Details
Monorepo Pipeline / 🐳 Build Directus (Base) (push) Has been cancelled
Details
Monorepo Pipeline / 🐳 Build Gatekeeper (Product) (push) Has been cancelled
Details
Monorepo Pipeline / 🐳 Build Build-Base (push) Has been cancelled
Details
Monorepo Pipeline / 🐳 Build Production Runtime (push) Has been cancelled
Details

Browse Source
This commit is contained in:
Marc Mintel
2026-02-11 22:32:17 +01:00
parent b96d44bf6d
commit 47c70a16f1
1 changed files with 10 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
packages/gatekeeper/src/app/login/page.tsx
View File

@@ -17,8 +17,8 @@ export default async function LoginPage({ searchParams }: LoginPageProps) {
async function login(formData: FormData) { async function login(formData: FormData) {
"use server"; "use server";
const email = formData.get("email") as string; const email = (formData.get("email") as string || "").trim();
const password = formData.get("password") as string; const password = (formData.get("password") as string || "").trim();
const expectedCode = process.env.GATEKEEPER_PASSWORD || "mintel"; const expectedCode = process.env.GATEKEEPER_PASSWORD || "mintel";
const adminEmail = process.env.DIRECTUS_ADMIN_EMAIL; const adminEmail = process.env.DIRECTUS_ADMIN_EMAIL;
@@ -31,19 +31,19 @@ export default async function LoginPage({ searchParams }: LoginPageProps) {
let userIdentity = ""; let userIdentity = "";
let userCompany: any = null; let userCompany: any = null;
// 1. Check Global Admin (from ENV) // 1. Check Generic Code (Guest) - High Priority to prevent autofill traps
if ( if (password === expectedCode) {
userIdentity = "Guest";
}
// 2. Check Global Admin (from ENV)
else if (
adminEmail && adminEmail &&
adminPassword && adminPassword &&
email === adminEmail && email === adminEmail.trim() &&
password === adminPassword password === adminPassword.trim()
) { ) {
userIdentity = "Admin"; userIdentity = "Admin";
} }
// 2. Check Generic Code (Guest)
else if (!email && password === expectedCode) {
userIdentity = "Guest";
}
// 3. Check Lightweight Client Users (dedicated collection) // 3. Check Lightweight Client Users (dedicated collection)
if (email && password && process.env.INFRA_DIRECTUS_URL) { if (email && password && process.env.INFRA_DIRECTUS_URL) {
try { try {