Merged in feat/LOY-230-Microsoft-Entra-ID-Auth (pull request #2113)

Feat(LOY-230): DTMC Routes with Entra ID Auth & Error Page Handling * feat(LOY-230): Link Scandic Friends and Azure accounts * fix(LOY-230): remove employee id param setting * fix(LOY-230): return token in jwt callback for auth.dtmc.ts Approved-by: Michael Zetterberg Approved-by: Christian Andolf
2025-06-18 10:22:04 +00:00
parent 9df19fda7c
commit 2101b79db1
23 changed files with 568 additions and 165 deletions
--- a/apps/scandic-web/middlewares/authRequired.ts
+++ b/apps/scandic-web/middlewares/authRequired.ts
@@ -51,7 +51,7 @@ export const middleware = auth(async (request) => {
   * @returns boolean
   */
  function isMFAInvalid() {
-    const isMFATokenValid = request.auth
+    const isMFATokenValid = request.auth?.token.mfa_expires_at
      ? request.auth.token.mfa_expires_at > Date.now()
      : false
    return !(request.auth?.token.mfa_scope && isMFATokenValid)