From d373c1f978b4e4aae0b17ae696e73d46ffd40aee Mon Sep 17 00:00:00 2001
From: Andrew Dolgov <fox@fakecake.org>
Date: Fri, 14 Mar 2025 11:32:46 +0300
Subject: add Config::DISABLE_LOGIN_FORM to allow limiting logins to SSO
 providers

---
 plugins/auth_internal/init.php | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'plugins')

diff --git a/plugins/auth_internal/init.php b/plugins/auth_internal/init.php
index 4f2988262..9ff3ea24f 100644
--- a/plugins/auth_internal/init.php
+++ b/plugins/auth_internal/init.php
@@ -15,6 +15,9 @@ class Auth_Internal extends Auth_Base implements IAuthModule2 {
 	/** @param string $service */
 	function authenticate($login, $password, $service = '') {
 
+		if (Config::get(Config::DISABLE_LOGIN_FORM))
+			return false;
+
 		$otp = (int) ($_REQUEST["otp"] ?? 0);
 
 		// don't bother with null/null logins for auth_external etc
-- 
cgit v1.2.3-54-g00ecf