move idp mode check to a middleware

2026-05-26 18:52:41 +00:00 · 2026-04-16 21:00:48 -07:00
parent 93400ace27
commit 707cc4b275
8 changed files with 40 additions and 65 deletions
--- a/server/private/routers/orgIdp/importOrgIdp.ts
+++ b/server/private/routers/orgIdp/importOrgIdp.ts
@@ -24,7 +24,6 @@ import { idp, idpOrg, orgs, roles, userOrgs } from "@server/db";
 import { and, eq, inArray } from "drizzle-orm";
 import { CreateOrgIdpResponse } from "@server/routers/orgIdp/types";
 import { generateOidcRedirectUrl } from "@server/lib/idp/generateRedirectUrl";
-import privateConfig from "#private/lib/config";
 import { checkOrgAccessPolicy } from "#dynamic/lib/checkOrgAccessPolicy";
 import { getUserOrgRoleIds } from "@server/lib/userOrgRoles";

@@ -105,18 +104,6 @@ export async function importOrgIdp(

        const { sourceOrgId } = parsedBody.data;

-        if (
-            privateConfig.getRawPrivateConfig().app.identity_provider_mode !==
-            "org"
-        ) {
-            return next(
-                createHttpError(
-                    HttpCode.BAD_REQUEST,
-                    "Organization-specific IdP creation is not allowed in the current identity provider mode. Set app.identity_provider_mode to 'org' in the private configuration to enable this feature."
-                )
-            );
-        }
-
        if (sourceOrgId === targetOrgId) {
            return next(
                createHttpError(