fix: disable loginmethod read, create, and update endpoints in cloud

0xi4o · 0xi4o · commit 7ec6a8320032 · 2026-01-27T15:30:50.000+05:30
diff --git a/packages/server/src/enterprise/controllers/login-method.controller.ts b/packages/server/src/enterprise/controllers/login-method.controller.ts
@@ -66,6 +66,9 @@ export class LoginMethodController {
         try {
             queryRunner = getRunningExpressApp().AppDataSource.createQueryRunner()
             await queryRunner.connect()
+            if (getRunningExpressApp().identityManager.getPlatformType() === Platform.CLOUD) {
+                throw new InternalFlowiseError(StatusCodes.BAD_REQUEST, GeneralErrorMessage.FORBIDDEN)
+            }
             const query = req.query as Partial<LoginMethod>
             const loginMethodService = new LoginMethodService()
 
@@ -103,6 +106,9 @@ export class LoginMethodController {
     public async update(req: Request, res: Response, next: NextFunction) {
         try {
             const loginMethodService = new LoginMethodService()
+            if (getRunningExpressApp().identityManager.getPlatformType() === Platform.CLOUD) {
+                throw new InternalFlowiseError(StatusCodes.BAD_REQUEST, GeneralErrorMessage.FORBIDDEN)
+            }
             const loginMethod = await loginMethodService.createOrUpdateConfig(req.body)
             if (loginMethod?.status === 'OK' && loginMethod?.organizationId) {
                 const appServer = getRunningExpressApp()
diff --git a/packages/server/src/enterprise/services/login-method.service.ts b/packages/server/src/enterprise/services/login-method.service.ts
@@ -8,6 +8,8 @@ import { decrypt, encrypt } from '../utils/encryption.util'
 import { UserErrorMessage, UserService } from './user.service'
 import { OrganizationErrorMessage, OrganizationService } from './organization.service'
 import { IsNull } from 'typeorm'
+import { Platform } from '../../Interface'
+import { GeneralErrorMessage } from '../../utils/constants'
 
 export const enum LoginMethodErrorMessage {
     INVALID_LOGIN_METHOD_ID = 'Invalid Login Method Id',
@@ -77,6 +79,9 @@ export class LoginMethodService {
         try {
             queryRunner = this.dataSource.createQueryRunner()
             await queryRunner.connect()
+            if (getRunningExpressApp().identityManager.getPlatformType() === Platform.CLOUD) {
+                throw new InternalFlowiseError(StatusCodes.BAD_REQUEST, GeneralErrorMessage.FORBIDDEN)
+            }
             const createdBy = await this.userService.readUserById(data.createdBy, queryRunner)
             if (!createdBy) throw new InternalFlowiseError(StatusCodes.NOT_FOUND, UserErrorMessage.USER_NOT_FOUND)
             const organization = await this.organizationService.readOrganizationById(data.organizationId, queryRunner)
diff --git a/packages/server/src/utils/constants.ts b/packages/server/src/utils/constants.ts
@@ -57,6 +57,7 @@ export const WHITELIST_URLS = [
 export const API_KEY_BLACKLIST_URLS = ['/api/v1/nvidia-nim']
 
 export const enum GeneralErrorMessage {
+    FORBIDDEN = 'Forbidden',
     UNAUTHORIZED = 'Unauthorized',
     UNHANDLED_EDGE_CASE = 'Unhandled Edge Case',
     INVALID_PASSWORD = 'Invalid Password',
