sasidhar 6860dec08f fix: properly sign out user on trusted email mismatch ...

When using trusted email header authentication, properly sign out the user
when the logged-in user's email doesn't match the trusted email header value.
This ensures proper session cleanup when the OAuth server changes the
authenticated user.

- Add response parameter to get_current_user function
- Delete JWT token cookie on email mismatch
- Delete OAuth token cookie if present
- Force re-authentication with 401 error

2025-06-08 14:26:55 +05:30

9.2 KiB

Raw Blame History

View Raw