agtic/keycloak_theme
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Do not inject password field when password isn't required

Browse Source
This commit is contained in:
Joseph Garrone 2024-05-06 17:41:08 +02:00
parent bcb70a1851
commit c2b990ac53
1 changed files with 5 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
src/login/lib/useUserProfileForm.tsx
View File

@ -70,7 +70,7 @@ export type KcContextLike = {
attributes: Attribute[]; attributes: Attribute[];
html5DataAnnotations: Record<string, string>; html5DataAnnotations: Record<string, string>;
}; };
passwordRequired?: boolean; passwordRequired: boolean;
realm: { registrationEmailAsUsername: boolean }; realm: { registrationEmailAsUsername: boolean };
passwordPolicies?: PasswordPolicies; passwordPolicies?: PasswordPolicies;
url: { url: {
@ -102,10 +102,6 @@ namespace internal {
}; };
} }
/**
* NOTE: The attributesWithPassword returned is actually augmented with
* artificial password related attributes only if kcContext.passwordRequired === true
*/
export function useUserProfileForm(params: ParamsOfUseUserProfileForm): ReturnTypeOfUseUserProfileForm { export function useUserProfileForm(params: ParamsOfUseUserProfileForm): ReturnTypeOfUseUserProfileForm {
const { kcContext, i18n, doMakeUserConfirmPassword } = params; const { kcContext, i18n, doMakeUserConfirmPassword } = params;
@ -134,6 +130,10 @@ export function useUserProfileForm(params: ParamsOfUseUserProfileForm): ReturnTy
attributesWithPassword.push(attribute); attributesWithPassword.push(attribute);
add_password_and_password_confirm: { add_password_and_password_confirm: {
if (!kcContext.passwordRequired) {
break add_password_and_password_confirm;
}
if (attribute.name !== (kcContext.realm.registrationEmailAsUsername ? "email" : "username")) { if (attribute.name !== (kcContext.realm.registrationEmailAsUsername ? "email" : "username")) {
// NOTE: We want to add password and password-confirm after the field that identifies the user. // NOTE: We want to add password and password-confirm after the field that identifies the user.
// It's either email or username. // It's either email or username.