fix endless loop on 2fa with no flow id

josxha · Jan 9, 2024 · 2e4acda · 2e4acda
1 parent 2e78275
commit 2e4acda
Showing 1 changed file with 9 additions and 0 deletions.
diff --git a/KratosSelfService/Controllers/LoginController.cs b/KratosSelfService/Controllers/LoginController.cs
@@ -28,6 +28,15 @@ public async Task<IActionResult> Login(
         if (flowId == null)
         {
             logger.LogDebug("No flow ID found in URL query initializing login flow");
+            // workaround: if the user is in the 2fa flow, the user would get redirected infinitely,
+            // therefore log the user out first
+            foreach (var cookie in Request.Headers.Cookie)
+            {
+
+                Console.WriteLine(cookie);
+            }
+            if (Request.Headers.Cookie.Any(s => s.Contains("ory_kratos_session=")))
+                return Redirect("logout");
             // initiate flow
             return Redirect(GetInitFlowUrl(aal, refresh, returnTo, organization, loginChallenge));
         }