Merge pull request #3642 from Infisical/misc/add-proper-error-for-bypass-failure

misc: add proper error message for bypass failure
2025-08-05 07:30:33 +00:00 · 2025-05-21 13:06:21 -07:00
parent 2e8003ca95 d185dbb7ff
commit e0322c8a7f
1 changed files with 19 additions and 4 deletions
--- a/frontend/src/pages/auth/SelectOrgPage/SelectOrgSection.tsx
+++ b/frontend/src/pages/auth/SelectOrgPage/SelectOrgSection.tsx
@@ -70,10 +70,25 @@ export const SelectOrganizationSection = () => {

  const handleSelectOrganization = useCallback(
    async (organization: Organization) => {
-      const canBypassOrgAuth =
-        organization.bypassOrgAuthEnabled &&
-        organization.userRole === OrgMembershipRole.Admin &&
-        isAdminLogin;
+      const isUserOrgAdmin = organization.userRole === OrgMembershipRole.Admin;
+      const canBypassOrgAuth = organization.bypassOrgAuthEnabled && isUserOrgAdmin && isAdminLogin;
+
+      if (isAdminLogin) {
+        if (!organization.bypassOrgAuthEnabled) {
+          createNotification({
+            text: "This organization does not have bypass org auth enabled",
+            type: "error"
+          });
+          return;
+        }
+        if (!isUserOrgAdmin) {
+          createNotification({
+            text: "Only organization admins can bypass org auth",
+            type: "error"
+          });
+          return;
+        }
+      }

      if (organization.authEnforced && !canBypassOrgAuth) {
        // org has an org-level auth method enabled (e.g. SAML)