fix: saml acs (#524)

lunary-ai · Aug 30, 2024 · 1944414 · 1944414
1 parent e6c1d2a
commit 1944414
Showing 1 changed file with 0 additions and 6 deletions.
diff --git a/packages/backend/src/api/v1/auth/saml.ts b/packages/backend/src/api/v1/auth/saml.ts
@@ -166,12 +166,6 @@ route.post("/download-idp-xml", aggressiveRatelimit, async (ctx: Context) => {
 // Assertion Consumer Service
 route.post("/acs", async (ctx: Context) => {
   const { orgId } = ctx.params as { orgId: string }
-  const { userId } = ctx.state
-
-  const [user] = await sql`select * from account where id = ${userId}`
-  if (user?.orgId !== orgId) {
-    ctx.throw(403, "Forbidden: Insufficient permissions")
-  }
 
   const idp = await getOrgIdp(orgId)
   const sp = await getOrgSp(orgId)