feat: restrict redirectUrls for CAS login (#2118 )

* feat: support cas restricted login * feat: add cas login i18n * feat: add CheckCasService for all cas api * feat: gofumpt * feat: replace 404 * feat: reuse i18n * feat: delete CheckCasService * Update token_cas.go * Update LoginPage.js * Update token_cas.go --------- Co-authored-by: hsluoyz <hsluoyz@qq.com>
chore: hide field of IntranetEndpoint in Tencent COS storage provider (#2117 )
2025-07-20 09:03:50 +08:00 · 2023-07-24 11:47:31 +08:00 · 2023-07-23 19:02:42 +08:00 · 2023-07-23 15:28:13 +08:00 · 2023-07-23 14:46:38 +08:00 · 2023-07-23 14:40:30 +08:00
60 changed files with 303 additions and 274 deletions
--- a/controllers/application.go
+++ b/controllers/application.go
@ -48,14 +48,11 @@ func (c *ApiController) GetApplications() {
 		} else {
 			applications, err = object.GetOrganizationApplications(owner, organization)
 		}
-
 		if err != nil {
 			c.ResponseError(err.Error())
 			return
 		}
-
-		c.Data["json"] = object.GetMaskedApplications(applications, userId)
-		c.ServeJSON()
+		c.ResponseOk(object.GetMaskedApplications(applications, userId))
 	} else {
 		limit := util.ParseInt(limit)
 		count, err := object.GetApplicationCount(owner, field, value)
@ -86,14 +83,14 @@ func (c *ApiController) GetApplications() {
 func (c *ApiController) GetApplication() {
 	userId := c.GetSessionUsername()
 	id := c.Input().Get("id")
+
 	app, err := object.GetApplication(id)
 	if err != nil {
 		c.ResponseError(err.Error())
 		return
 	}

-	c.Data["json"] = object.GetMaskedApplication(app, userId)
-	c.ServeJSON()
+	c.ResponseOk(object.GetMaskedApplication(app, userId))
 }

 // GetUserApplication
@ -106,25 +103,24 @@ func (c *ApiController) GetApplication() {
 func (c *ApiController) GetUserApplication() {
 	userId := c.GetSessionUsername()
 	id := c.Input().Get("id")
+
 	user, err := object.GetUser(id)
 	if err != nil {
 		c.ResponseError(err.Error())
 		return
 	}
-
 	if user == nil {
 		c.ResponseError(fmt.Sprintf(c.T("general:The user: %s doesn't exist"), id))
 		return
 	}

-	app, err := object.GetApplicationByUser(user)
+	application, err := object.GetApplicationByUser(user)
 	if err != nil {
 		c.ResponseError(err.Error())
 		return
 	}

-	c.Data["json"] = object.GetMaskedApplication(app, userId)
-	c.ServeJSON()
+	c.ResponseOk(object.GetMaskedApplication(application, userId))
 }

 // GetOrganizationApplications
@ -157,8 +153,7 @@ func (c *ApiController) GetOrganizationApplications() {
 			return
 		}

-		c.Data["json"] = object.GetMaskedApplications(applications, userId)
-		c.ServeJSON()
+		c.ResponseOk(object.GetMaskedApplications(applications, userId))
 	} else {
 		limit := util.ParseInt(limit)

--- a/controllers/cert.go
+++ b/controllers/cert.go
@ -45,8 +45,7 @@ func (c *ApiController) GetCerts() {
 			return
 		}

-		c.Data["json"] = maskedCerts
-		c.ServeJSON()
+		c.ResponseOk(maskedCerts)
 	} else {
 		limit := util.ParseInt(limit)
 		count, err := object.GetCertCount(owner, field, value)
@ -87,8 +86,7 @@ func (c *ApiController) GetGlobleCerts() {
 			return
 		}

-		c.Data["json"] = maskedCerts
-		c.ServeJSON()
+		c.ResponseOk(maskedCerts)
 	} else {
 		limit := util.ParseInt(limit)
 		count, err := object.GetGlobalCertsCount(field, value)
@ -123,8 +121,7 @@ func (c *ApiController) GetCert() {
 		return
 	}

-	c.Data["json"] = object.GetMaskedCert(cert)
-	c.ServeJSON()
+	c.ResponseOk(object.GetMaskedCert(cert))
 }

 // UpdateCert
--- a/controllers/chat.go
+++ b/controllers/chat.go
@ -45,8 +45,7 @@ func (c *ApiController) GetChats() {
 			return
 		}

-		c.Data["json"] = maskedChats
-		c.ServeJSON()
+		c.ResponseOk(maskedChats)
 	} else {
 		limit := util.ParseInt(limit)
 		count, err := object.GetChatCount(owner, field, value)
@ -82,8 +81,7 @@ func (c *ApiController) GetChat() {
 		return
 	}

-	c.Data["json"] = maskedChat
-	c.ServeJSON()
+	c.ResponseOk(maskedChat)
 }

 // UpdateChat
--- a/controllers/group.go
+++ b/controllers/group.go
@ -82,9 +82,9 @@ func (c *ApiController) GetGroup() {
 	group, err := object.GetGroup(id)
 	if err != nil {
 		c.ResponseError(err.Error())
-	} else {
-		c.ResponseOk(group)
+		return
 	}
+	c.ResponseOk(group)
 }

 // UpdateGroup
--- a/controllers/ldap.go
+++ b/controllers/ldap.go
@ -125,7 +125,12 @@ func (c *ApiController) GetLdap() {
 	}

 	_, name := util.GetOwnerAndNameFromId(id)
-	c.ResponseOk(object.GetMaskedLdap(object.GetLdap(name)))
+	ldap, err := object.GetLdap(name)
+	if err != nil {
+		c.ResponseError(err.Error())
+		return
+	}
+	c.ResponseOk(object.GetMaskedLdap(ldap))
 }

 // AddLdap
--- a/controllers/message.go
+++ b/controllers/message.go
@ -57,8 +57,7 @@ func (c *ApiController) GetMessages() {
 			return
 		}

-		c.Data["json"] = object.GetMaskedMessages(messages)
-		c.ServeJSON()
+		c.ResponseOk(object.GetMaskedMessages(messages))
 	} else {
 		limit := util.ParseInt(limit)
 		count, err := object.GetMessageCount(owner, organization, field, value)
@ -94,8 +93,7 @@ func (c *ApiController) GetMessage() {
 		return
 	}

-	c.Data["json"] = object.GetMaskedMessage(message)
-	c.ServeJSON()
+	c.ResponseOk(message)
 }

 func (c *ApiController) ResponseErrorStream(errorText string) {
--- a/controllers/model.go
+++ b/controllers/model.go
@ -45,8 +45,7 @@ func (c *ApiController) GetModels() {
 			return
 		}

-		c.Data["json"] = models
-		c.ServeJSON()
+		c.ResponseOk(models)
 	} else {
 		limit := util.ParseInt(limit)
 		count, err := object.GetModelCount(owner, field, value)
@ -82,8 +81,7 @@ func (c *ApiController) GetModel() {
 		return
 	}

-	c.Data["json"] = model
-	c.ServeJSON()
+	c.ResponseOk(model)
 }

 // UpdateModel
--- a/controllers/organization.go
+++ b/controllers/organization.go
@ -55,8 +55,7 @@ func (c *ApiController) GetOrganizations() {
 			return
 		}

-		c.Data["json"] = maskedOrganizations
-		c.ServeJSON()
+		c.ResponseOk(maskedOrganizations)
 	} else {
 		if !isGlobalAdmin {
 			maskedOrganizations, err := object.GetMaskedOrganizations(object.GetOrganizations(owner, c.getCurrentUser().Owner))
@ -184,6 +183,8 @@ func (c *ApiController) DeleteOrganization() {
 func (c *ApiController) GetDefaultApplication() {
 	userId := c.GetSessionUsername()
 	id := c.Input().Get("id")
+	redirectUri := c.Input().Get("redirectUri")
+	typ := c.Input().Get("type")

 	application, err := object.GetDefaultApplication(id)
 	if err != nil {
@ -191,6 +192,14 @@ func (c *ApiController) GetDefaultApplication() {
 		return
 	}

+	if typ == "cas" {
+		err = object.CheckCasRestrict(application, c.GetAcceptLanguage(), redirectUri)
+		if err != nil {
+			c.ResponseError(err.Error())
+			return
+		}
+	}
+
 	maskedApplication := object.GetMaskedApplication(application, userId)
 	c.ResponseOk(maskedApplication)
 }
--- a/controllers/payment.go
+++ b/controllers/payment.go
@ -46,8 +46,7 @@ func (c *ApiController) GetPayments() {
 			return
 		}

-		c.Data["json"] = payments
-		c.ServeJSON()
+		c.ResponseOk(payments)
 	} else {
 		limit := util.ParseInt(limit)
 		count, err := object.GetPaymentCount(owner, organization, field, value)
@ -106,8 +105,7 @@ func (c *ApiController) GetPayment() {
 		return
 	}

-	c.Data["json"] = payment
-	c.ServeJSON()
+	c.ResponseOk(payment)
 }

 // UpdatePayment
--- a/controllers/permission.go
+++ b/controllers/permission.go
@ -45,8 +45,7 @@ func (c *ApiController) GetPermissions() {
 			return
 		}

-		c.Data["json"] = permissions
-		c.ServeJSON()
+		c.ResponseOk(permissions)
 	} else {
 		limit := util.ParseInt(limit)
 		count, err := object.GetPermissionCount(owner, field, value)
@ -85,7 +84,6 @@ func (c *ApiController) GetPermissionsBySubmitter() {
 	}

 	c.ResponseOk(permissions, len(permissions))
-	return
 }

 // GetPermissionsByRole
@ -104,7 +102,6 @@ func (c *ApiController) GetPermissionsByRole() {
 	}

 	c.ResponseOk(permissions, len(permissions))
-	return
 }

 // GetPermission
@ -123,8 +120,7 @@ func (c *ApiController) GetPermission() {
 		return
 	}

-	c.Data["json"] = permission
-	c.ServeJSON()
+	c.ResponseOk(permission)
 }

 // UpdatePermission
--- a/controllers/plan.go
+++ b/controllers/plan.go
@ -45,8 +45,7 @@ func (c *ApiController) GetPlans() {
 			return
 		}

-		c.Data["json"] = plans
-		c.ServeJSON()
+		c.ResponseOk(plans)
 	} else {
 		limit := util.ParseInt(limit)
 		count, err := object.GetPlanCount(owner, field, value)
--- a/controllers/pricing.go
+++ b/controllers/pricing.go
@ -45,8 +45,7 @@ func (c *ApiController) GetPricings() {
 			return
 		}

-		c.Data["json"] = pricings
-		c.ServeJSON()
+		c.ResponseOk(pricings)
 	} else {
 		limit := util.ParseInt(limit)
 		count, err := object.GetPricingCount(owner, field, value)
@ -82,8 +81,7 @@ func (c *ApiController) GetPricing() {
 		return
 	}

-	c.Data["json"] = pricing
-	c.ServeJSON()
+	c.ResponseOk(pricing)
 }

 // UpdatePricing
--- a/controllers/product.go
+++ b/controllers/product.go
@ -46,8 +46,7 @@ func (c *ApiController) GetProducts() {
 			return
 		}

-		c.Data["json"] = products
-		c.ServeJSON()
+		c.ResponseOk(products)
 	} else {
 		limit := util.ParseInt(limit)
 		count, err := object.GetProductCount(owner, field, value)
--- a/controllers/record.go
+++ b/controllers/record.go
@ -51,8 +51,7 @@ func (c *ApiController) GetRecords() {
 			return
 		}

-		c.Data["json"] = records
-		c.ServeJSON()
+		c.ResponseOk(records)
 	} else {
 		limit := util.ParseInt(limit)
 		if c.IsGlobalAdmin() && organizationName != "" {
@ -99,8 +98,7 @@ func (c *ApiController) GetRecordsByFilter() {
 		return
 	}

-	c.Data["json"] = records
-	c.ServeJSON()
+	c.ResponseOk(records)
 }

 // AddRecord
--- a/controllers/resource.go
+++ b/controllers/resource.go
@ -67,8 +67,7 @@ func (c *ApiController) GetResources() {
 			return
 		}

-		c.Data["json"] = resources
-		c.ServeJSON()
+		c.ResponseOk(resources)
 	} else {
 		limit := util.ParseInt(limit)
 		count, err := object.GetResourceCount(owner, user, field, value)
@ -104,8 +103,7 @@ func (c *ApiController) GetResource() {
 		return
 	}

-	c.Data["json"] = resource
-	c.ServeJSON()
+	c.ResponseOk(resource)
 }

 // UpdateResource
--- a/controllers/role.go
+++ b/controllers/role.go
@ -45,8 +45,7 @@ func (c *ApiController) GetRoles() {
 			return
 		}

-		c.Data["json"] = roles
-		c.ServeJSON()
+		c.ResponseOk(roles)
 	} else {
 		limit := util.ParseInt(limit)
 		count, err := object.GetRoleCount(owner, field, value)
@ -82,8 +81,7 @@ func (c *ApiController) GetRole() {
 		return
 	}

-	c.Data["json"] = role
-	c.ServeJSON()
+	c.ResponseOk(role)
 }

 // UpdateRole
--- a/controllers/session.go
+++ b/controllers/session.go
@ -45,8 +45,7 @@ func (c *ApiController) GetSessions() {
 			return
 		}

-		c.Data["json"] = sessions
-		c.ServeJSON()
+		c.ResponseOk(sessions)
 	} else {
 		limit := util.ParseInt(limit)
 		count, err := object.GetSessionCount(owner, field, value)
@ -81,8 +80,7 @@ func (c *ApiController) GetSingleSession() {
 		return
 	}

-	c.Data["json"] = session
-	c.ServeJSON()
+	c.ResponseOk(session)
 }

 // UpdateSession
@ -161,7 +159,5 @@ func (c *ApiController) IsSessionDuplicated() {
 		return
 	}

-	c.Data["json"] = &Response{Status: "ok", Msg: "", Data: isUserSessionDuplicated}
-
-	c.ServeJSON()
+	c.ResponseOk(isUserSessionDuplicated)
 }
--- a/controllers/subscription.go
+++ b/controllers/subscription.go
@ -45,8 +45,7 @@ func (c *ApiController) GetSubscriptions() {
 			return
 		}

-		c.Data["json"] = subscriptions
-		c.ServeJSON()
+		c.ResponseOk(subscriptions)
 	} else {
 		limit := util.ParseInt(limit)
 		count, err := object.GetSubscriptionCount(owner, field, value)
@ -82,8 +81,7 @@ func (c *ApiController) GetSubscription() {
 		return
 	}

-	c.Data["json"] = subscription
-	c.ServeJSON()
+	c.ResponseOk(subscription)
 }

 // UpdateSubscription
--- a/controllers/syncer.go
+++ b/controllers/syncer.go
@ -46,8 +46,7 @@ func (c *ApiController) GetSyncers() {
 			return
 		}

-		c.Data["json"] = organizationSyncers
-		c.ServeJSON()
+		c.ResponseOk(organizationSyncers)
 	} else {
 		limit := util.ParseInt(limit)
 		count, err := object.GetSyncerCount(owner, organization, field, value)
@ -83,8 +82,7 @@ func (c *ApiController) GetSyncer() {
 		return
 	}

-	c.Data["json"] = syncer
-	c.ServeJSON()
+	c.ResponseOk(syncer)
 }

 // UpdateSyncer
--- a/controllers/token.go
+++ b/controllers/token.go
@ -47,8 +47,7 @@ func (c *ApiController) GetTokens() {
 			return
 		}

-		c.Data["json"] = token
-		c.ServeJSON()
+		c.ResponseOk(token)
 	} else {
 		limit := util.ParseInt(limit)
 		count, err := object.GetTokenCount(owner, organization, field, value)
@ -83,8 +82,7 @@ func (c *ApiController) GetToken() {
 		return
 	}

-	c.Data["json"] = token
-	c.ServeJSON()
+	c.ResponseOk(token)
 }

 // UpdateToken
--- a/controllers/user.go
+++ b/controllers/user.go
@ -45,8 +45,7 @@ func (c *ApiController) GetGlobalUsers() {
 			return
 		}

-		c.Data["json"] = maskedUsers
-		c.ServeJSON()
+		c.ResponseOk(maskedUsers)
 	} else {
 		limit := util.ParseInt(limit)
 		count, err := object.GetGlobalUserCount(field, value)
@ -106,8 +105,7 @@ func (c *ApiController) GetUsers() {
 			return
 		}

-		c.Data["json"] = maskedUsers
-		c.ServeJSON()
+		c.ResponseOk(maskedUsers)
 	} else {
 		limit := util.ParseInt(limit)
 		count, err := object.GetUserCount(owner, field, value, groupName)
@ -215,8 +213,7 @@ func (c *ApiController) GetUser() {
 		return
 	}

-	c.Data["json"] = maskedUser
-	c.ServeJSON()
+	c.ResponseOk(maskedUser)
 }

 // UpdateUser
@ -513,8 +510,7 @@ func (c *ApiController) GetSortedUsers() {
 		return
 	}

-	c.Data["json"] = maskedUsers
-	c.ServeJSON()
+	c.ResponseOk(maskedUsers)
 }

 // GetUserCount
@ -541,8 +537,7 @@ func (c *ApiController) GetUserCount() {
 		return
 	}

-	c.Data["json"] = count
-	c.ServeJSON()
+	c.ResponseOk(count)
 }

 // AddUserkeys
--- a/controllers/webhook.go
+++ b/controllers/webhook.go
@ -46,8 +46,7 @@ func (c *ApiController) GetWebhooks() {
 			return
 		}

-		c.Data["json"] = webhooks
-		c.ServeJSON()
+		c.ResponseOk(webhooks)
 	} else {
 		limit := util.ParseInt(limit)
 		count, err := object.GetWebhookCount(owner, organization, field, value)
@ -84,8 +83,7 @@ func (c *ApiController) GetWebhook() {
 		return
 	}

-	c.Data["json"] = webhook
-	c.ServeJSON()
+	c.ResponseOk(webhook)
 }

 // UpdateWebhook
--- a/object/adapter.go
+++ b/object/adapter.go
@ -15,8 +15,10 @@
 package object

 import (
+	"database/sql"
 	"fmt"
 	"runtime"
+	"strings"

 	"github.com/beego/beego"
 	"github.com/casdoor/casdoor/conf"
@ -46,6 +48,11 @@ func InitConfig() {
 }

 func InitAdapter() {
+	err := createDatabaseForPostgres(conf.GetConfigString("driverName"), conf.GetConfigDataSourceName(), conf.GetConfigString("dbName"))
+	if err != nil {
+		panic(err)
+	}
+
 	adapter = NewAdapter(conf.GetConfigString("driverName"), conf.GetConfigDataSourceName(), conf.GetConfigString("dbName"))

 	tableNamePrefix := conf.GetConfigString("tableNamePrefix")
@ -96,7 +103,32 @@ func NewAdapter(driverName string, dataSourceName string, dbName string) *Adapte
 	return a
 }

+func createDatabaseForPostgres(driverName string, dataSourceName string, dbName string) error {
+	if driverName == "postgres" {
+		db, err := sql.Open(driverName, dataSourceName)
+		if err != nil {
+			return err
+		}
+		defer db.Close()
+
+		_, err = db.Exec(fmt.Sprintf("CREATE DATABASE %s;", dbName))
+		if err != nil {
+			if !strings.Contains(err.Error(), "already exists") {
+				return err
+			}
+		}
+
+		return nil
+	} else {
+		return nil
+	}
+}
+
 func (a *Adapter) CreateDatabase() error {
+	if a.driverName == "postgres" {
+		return nil
+	}
+
 	engine, err := xorm.NewEngine(a.driverName, a.dataSourceName)
 	if err != nil {
 		return err
--- a/object/resource.go
+++ b/object/resource.go
@ -16,6 +16,7 @@ package object

 import (
 	"fmt"
+	"strings"

 	"github.com/casdoor/casdoor/util"
 	"github.com/xorm-io/core"
@ -76,6 +77,10 @@ func GetPaginationResources(owner, user string, offset, limit int, field, value,
 }

 func getResource(owner string, name string) (*Resource, error) {
+	if !strings.HasPrefix(name, "/") {
+		name = "/" + name
+	}
+
 	resource := Resource{Owner: owner, Name: name}
 	existed, err := adapter.Engine.Get(&resource)
 	if err != nil {
--- a/object/token_cas.go
+++ b/object/token_cas.go
@ -26,6 +26,7 @@ import (
 	"time"

 	"github.com/beevik/etree"
+	"github.com/casdoor/casdoor/i18n"
 	"github.com/casdoor/casdoor/util"
 	dsig "github.com/russellhaering/goxmldsig"
 )
@ -122,6 +123,13 @@ var stToServiceResponse sync.Map
 // pgt is short for proxy granting ticket
 var pgtToServiceResponse sync.Map

+func CheckCasRestrict(application *Application, lang string, service string) error {
+	if len(application.RedirectUris) > 0 && !application.IsRedirectUriValid(service) {
+		return fmt.Errorf(i18n.Translate(lang, "token:Redirect URI: %s doesn't exist in the allowed Redirect URI list"), service)
+	}
+	return nil
+}
+
 func StoreCasTokenForPgt(token *CasAuthenticationSuccess, service, userId string) string {
 	pgt := fmt.Sprintf("PGT-%s", util.GenerateId())
 	pgtToServiceResponse.Store(pgt, &CasAuthenticationSuccessWrapper{
--- a/routers/authz_filter.go
+++ b/routers/authz_filter.go
@ -156,7 +156,7 @@ func AuthzFilter(ctx *context.Context) {
 	urlPath := getUrlPath(ctx.Request.URL.Path)

 	objOwner, objName := "", ""
-	if urlPath != "/api/get-app-login" {
+	if urlPath != "/api/get-app-login" && urlPath != "/api/get-resource" {
 		objOwner, objName = getObject(ctx)
 	}

--- a/storage/storage.go
+++ b/storage/storage.go
@ -23,7 +23,7 @@ func GetStorageProvider(providerType string, clientId string, clientSecret strin
 	case "AWS S3":
 		return NewAwsS3StorageProvider(clientId, clientSecret, region, bucket, endpoint)
 	case "MinIO":
-		return NewMinIOS3StorageProvider(clientId, clientSecret, region, bucket, endpoint)
+		return NewMinIOS3StorageProvider(clientId, clientSecret, "_", bucket, endpoint)
 	case "Aliyun OSS":
 		return NewAliyunOssStorageProvider(clientId, clientSecret, region, bucket, endpoint)
 	case "Tencent Cloud COS":
--- a/web/src/AdapterEditPage.js
+++ b/web/src/AdapterEditPage.js
@ -68,7 +68,7 @@ class AdapterEditPage extends React.Component {
    OrganizationBackend.getOrganizations("admin")
      .then((res) => {
        this.setState({
-          organizations: (res.msg === undefined) ? res : [],
+          organizations: res.data || [],
        });
      });
  }
@ -80,8 +80,9 @@ class AdapterEditPage extends React.Component {
          Setting.showMessage("error", res.msg);
          return;
        }
+
        this.setState({
-          models: res,
+          models: res.data,
        });
      });
  }
--- a/web/src/ApplicationEditPage.js
+++ b/web/src/ApplicationEditPage.js
@ -119,7 +119,7 @@ class ApplicationEditPage extends React.Component {
  getApplication() {
    ApplicationBackend.getApplication("admin", this.state.applicationName)
      .then((res) => {
-        if (res === null) {
+        if (res.data === null) {
          this.props.history.push("/404");
          return;
        }
@ -138,7 +138,7 @@ class ApplicationEditPage extends React.Component {
        }

        this.setState({
-          application: res,
+          application: res.data,
        });

        this.getCerts(res.organization);
@ -184,9 +184,9 @@ class ApplicationEditPage extends React.Component {

  getSamlMetadata() {
    ApplicationBackend.getSamlMetadata("admin", this.state.applicationName)
-      .then((res) => {
+      .then((data) => {
        this.setState({
-          samlMetadata: res,
+          samlMetadata: data,
        });
      });
  }
--- a/web/src/CertEditPage.js
+++ b/web/src/CertEditPage.js
@ -45,7 +45,7 @@ class CertEditPage extends React.Component {
  getCert() {
    CertBackend.getCert(this.state.owner, this.state.certName)
      .then((res) => {
-        if (res === null) {
+        if (res.data === null) {
          this.props.history.push("/404");
          return;
        }
@ -56,7 +56,7 @@ class CertEditPage extends React.Component {
        }

        this.setState({
-          cert: res,
+          cert: res.data,
        });
      });
  }
@ -65,7 +65,7 @@ class CertEditPage extends React.Component {
    OrganizationBackend.getOrganizations("admin")
      .then((res) => {
        this.setState({
-          organizations: (res.msg === undefined) ? res : [],
+          organizations: res.data || [],
        });
      });
  }
--- a/web/src/ChatEditPage.js
+++ b/web/src/ChatEditPage.js
@ -41,7 +41,7 @@ class ChatEditPage extends React.Component {
  getChat() {
    ChatBackend.getChat("admin", this.state.chatName)
      .then((res) => {
-        if (res === null) {
+        if (res.data === null) {
          this.props.history.push("/404");
          return;
        }
@ -51,7 +51,7 @@ class ChatEditPage extends React.Component {
          return;
        }
        this.setState({
-          chat: res,
+          chat: res.data,
        });

        this.getUsers(res.organization);
@ -62,7 +62,7 @@ class ChatEditPage extends React.Component {
    OrganizationBackend.getOrganizations("admin")
      .then((res) => {
        this.setState({
-          organizations: (res.msg === undefined) ? res : [],
+          organizations: res.data || [],
        });
      });
  }
@ -76,7 +76,7 @@ class ChatEditPage extends React.Component {
        }

        this.setState({
-          users: res,
+          users: res.data,
        });
      });
  }
--- a/web/src/ChatPage.js
+++ b/web/src/ChatPage.js
@ -79,7 +79,8 @@ class ChatPage extends BaseListPage {

  getMessages(chatName) {
    MessageBackend.getChatMessages(chatName)
-      .then((messages) => {
+      .then((res) => {
+        const messages = res.data;
        this.setState({
          messages: messages,
        });
@ -229,7 +230,7 @@ class ChatPage extends BaseListPage {
              </div>
            )
          }
-          <ChatBox messages={this.state.messages} sendMessage={(text) => {this.sendMessage(text);}} account={this.props.account} />
+          <ChatBox messages={this.state.messages || []} sendMessage={(text) => {this.sendMessage(text);}} account={this.props.account} />
        </div>
      </div>
    );
--- a/web/src/EntryPage.js
+++ b/web/src/EntryPage.js
@ -79,7 +79,9 @@ class EntryPage extends React.Component {
            Setting.showMessage("error", res.msg);
            return;
          }
-          const themeData = res !== null ? Setting.getThemeData(res.organizationObj, res) : Conf.ThemeDefault;
+
+          const application = res.data;
+          const themeData = application !== null ? Setting.getThemeData(application.organizationObj, application) : Conf.ThemeDefault;
          this.props.updataThemeData(themeData);
        });
    };
--- a/web/src/GroupEdit.js
+++ b/web/src/GroupEdit.js
@ -67,7 +67,7 @@ class GroupEditPage extends React.Component {
      .then((res) => {
        if (res.status === "ok") {
          this.setState({
-            organizations: res.data,
+            organizations: res.data || [],
          });
        }
      });
--- a/web/src/LdapEditPage.js
+++ b/web/src/LdapEditPage.js
@ -55,7 +55,7 @@ class LdapEditPage extends React.Component {
    OrganizationBackend.getOrganizations("admin")
      .then((res) => {
        this.setState({
-          organizations: (res.msg === undefined) ? res : [],
+          organizations: res.data || [],
        });
      });
  }
--- a/web/src/MessageEditPage.js
+++ b/web/src/MessageEditPage.js
@ -46,7 +46,7 @@ class MessageEditPage extends React.Component {
  getMessage() {
    MessageBackend.getMessage("admin", this.state.messageName)
      .then((res) => {
-        if (res === null) {
+        if (res.data === null) {
          this.props.history.push("/404");
          return;
        }
@ -54,10 +54,10 @@ class MessageEditPage extends React.Component {
          Setting.showMessage("error", res.msg);
          return;
        }
-        this.setState({
-          message: res,
-        });

+        this.setState({
+          message: res.data,
+        });
        this.getUsers(res.organization);
      });
  }
@ -66,7 +66,7 @@ class MessageEditPage extends React.Component {
    OrganizationBackend.getOrganizations("admin")
      .then((res) => {
        this.setState({
-          organizations: (res.msg === undefined) ? res : [],
+          organizations: res.data || [],
        });
      });
  }
@ -87,8 +87,9 @@ class MessageEditPage extends React.Component {
          Setting.showMessage("error", res.msg);
          return;
        }
+
        this.setState({
-          users: res,
+          users: res.data,
        });
      });
  }
--- a/web/src/ModelEditPage.js
+++ b/web/src/ModelEditPage.js
@ -48,7 +48,7 @@ class ModelEditPage extends React.Component {
  getModel() {
    ModelBackend.getModel(this.state.organizationName, this.state.modelName)
      .then((res) => {
-        if (res === null) {
+        if (res.data === null) {
          this.props.history.push("/404");
          return;
        }
@ -59,7 +59,7 @@ class ModelEditPage extends React.Component {
        }

        this.setState({
-          model: res,
+          model: res.data,
        });
      });
  }
@ -68,7 +68,7 @@ class ModelEditPage extends React.Component {
    OrganizationBackend.getOrganizations("admin")
      .then((res) => {
        this.setState({
-          organizations: (res.msg === undefined) ? res : [],
+          organizations: res.data || [],
        });
      });
  }
--- a/web/src/OrganizationEditPage.js
+++ b/web/src/OrganizationEditPage.js
@ -75,7 +75,7 @@ class OrganizationEditPage extends React.Component {
        }

        this.setState({
-          applications: res,
+          applications: res.data || [],
        });
      });
  }
--- a/web/src/PaymentEditPage.js
+++ b/web/src/PaymentEditPage.js
@ -41,14 +41,14 @@ class PaymentEditPage extends React.Component {

  getPayment() {
    PaymentBackend.getPayment("admin", this.state.paymentName)
-      .then((payment) => {
-        if (payment === null) {
+      .then((res) => {
+        if (res.data === null) {
          this.props.history.push("/404");
          return;
        }

        this.setState({
-          payment: payment,
+          payment: res.data,
        });

        Setting.scrollToDiv("invoice-area");
--- a/web/src/PermissionEditPage.js
+++ b/web/src/PermissionEditPage.js
@ -50,7 +50,9 @@ class PermissionEditPage extends React.Component {
  getPermission() {
    PermissionBackend.getPermission(this.state.organizationName, this.state.permissionName)
      .then((res) => {
-        if (res === null) {
+        const permission = res.data;
+
+        if (permission === null) {
          this.props.history.push("/404");
          return;
        }
@ -61,14 +63,14 @@ class PermissionEditPage extends React.Component {
        }

        this.setState({
-          permission: res,
+          permission: permission,
        });

-        this.getUsers(res.owner);
-        this.getRoles(res.owner);
-        this.getModels(res.owner);
-        this.getResources(res.owner);
-        this.getModel(res.owner, res.model);
+        this.getUsers(permission.owner);
+        this.getRoles(permission.owner);
+        this.getModels(permission.owner);
+        this.getResources(permission.owner);
+        this.getModel(permission.owner, permission.model);
      });
  }

@ -76,7 +78,7 @@ class PermissionEditPage extends React.Component {
    OrganizationBackend.getOrganizations("admin")
      .then((res) => {
        this.setState({
-          organizations: (res.msg === undefined) ? res : [],
+          organizations: res.data || [],
        });
      });
  }
@ -88,8 +90,9 @@ class PermissionEditPage extends React.Component {
          Setting.showMessage("error", res.msg);
          return;
        }
+
        this.setState({
-          users: res,
+          users: res.data,
        });
      });
  }
@ -101,8 +104,9 @@ class PermissionEditPage extends React.Component {
          Setting.showMessage("error", res.msg);
          return;
        }
+
        this.setState({
-          roles: res,
+          roles: res.data,
        });
      });
  }
@ -114,21 +118,21 @@ class PermissionEditPage extends React.Component {
          Setting.showMessage("error", res.msg);
          return;
        }
+
        this.setState({
-          models: res,
+          models: res.data,
        });
      });
  }

  getModel(organizationName, modelName) {
+    if (modelName === "") {
+      return;
+    }
    ModelBackend.getModel(organizationName, modelName)
      .then((res) => {
-        if (res.status === "error") {
-          Setting.showMessage("error", res.msg);
-          return;
-        }
        this.setState({
-          model: res,
+          model: res.data,
        });
      });
  }
@ -137,7 +141,7 @@ class PermissionEditPage extends React.Component {
    ApplicationBackend.getApplicationsByOrganization("admin", organizationName)
      .then((res) => {
        this.setState({
-          resources: (res.msg === undefined) ? res : [],
+          resources: res.data || [],
        });
      });
  }
--- a/web/src/PlanEditPage.js
+++ b/web/src/PlanEditPage.js
@ -68,8 +68,9 @@ class PlanEditPage extends React.Component {
          Setting.showMessage("error", res.msg);
          return;
        }
+
        this.setState({
-          roles: res,
+          roles: res.data,
        });
      });
  }
@ -81,8 +82,9 @@ class PlanEditPage extends React.Component {
          Setting.showMessage("error", res.msg);
          return;
        }
+
        this.setState({
-          users: res,
+          users: res.data,
        });
      });
  }
@ -91,7 +93,7 @@ class PlanEditPage extends React.Component {
    OrganizationBackend.getOrganizations("admin")
      .then((res) => {
        this.setState({
-          organizations: (res.msg === undefined) ? res : [],
+          organizations: res.data || [],
        });
      });
  }
--- a/web/src/PricingEditPage.js
+++ b/web/src/PricingEditPage.js
@ -44,13 +44,12 @@ class PricingEditPage extends React.Component {
    this.getPricing();
    this.getOrganizations();
    this.getApplicationsByOrganization(this.state.organizationName);
-    this.getUserApplication();
  }

  getPricing() {
    PricingBackend.getPricing(this.state.organizationName, this.state.pricingName)
      .then((res) => {
-        if (res === null) {
+        if (res.data === null) {
          this.props.history.push("/404");
          return;
        }
@ -61,7 +60,7 @@ class PricingEditPage extends React.Component {
        }

        this.setState({
-          pricing: res,
+          pricing: res.data,
        });
        this.getPlans(res.owner);
      });
@ -74,8 +73,9 @@ class PricingEditPage extends React.Component {
          Setting.showMessage("error", res.msg);
          return;
        }
+
        this.setState({
-          plans: res,
+          plans: res.data,
        });
      });
  }
@ -84,7 +84,16 @@ class PricingEditPage extends React.Component {
    OrganizationBackend.getOrganizations("admin")
      .then((res) => {
        this.setState({
-          organizations: (res.msg === undefined) ? res : [],
+          organizations: res.data || [],
+        });
+      });
+  }
+
+  getApplicationsByOrganization(organizationName) {
+    ApplicationBackend.getApplicationsByOrganization("admin", organizationName)
+      .then((res) => {
+        this.setState({
+          applications: res.data || [],
        });
      });
  }
@ -107,28 +116,6 @@ class PricingEditPage extends React.Component {
    });
  }

-  getApplicationsByOrganization(organizationName) {
-    ApplicationBackend.getApplicationsByOrganization("admin", organizationName)
-      .then((res) => {
-        this.setState({
-          applications: (res.msg === undefined) ? res : [],
-        });
-      });
-  }
-
-  getUserApplication() {
-    ApplicationBackend.getUserApplication(this.state.organizationName, this.state.userName)
-      .then((res) => {
-        if (res.status === "error") {
-          Setting.showMessage("error", res.msg);
-          return;
-        }
-        this.setState({
-          application: res,
-        });
-      });
-  }
-
  renderPricing() {
    return (
      <Card size="small" title={
--- a/web/src/ProductBuyPage.js
+++ b/web/src/ProductBuyPage.js
@ -48,7 +48,7 @@ class ProductBuyPage extends React.Component {
        }

        this.setState({
-          product: res,
+          product: res.data,
        });
      });
  }
--- a/web/src/ProductEditPage.js
+++ b/web/src/ProductEditPage.js
@ -62,7 +62,7 @@ class ProductEditPage extends React.Component {
    OrganizationBackend.getOrganizations("admin")
      .then((res) => {
        this.setState({
-          organizations: (res.msg === undefined) ? res : [],
+          organizations: res.data || [],
        });
      });
  }
--- a/web/src/ProviderEditPage.js
+++ b/web/src/ProviderEditPage.js
@ -50,7 +50,7 @@ class ProviderEditPage extends React.Component {
  getProvider() {
    ProviderBackend.getProvider(this.state.owner, this.state.providerName)
      .then((res) => {
-        if (res === null) {
+        if (res.data === null) {
          this.props.history.push("/404");
          return;
        }
@ -72,7 +72,7 @@ class ProviderEditPage extends React.Component {
      OrganizationBackend.getOrganizations("admin")
        .then((res) => {
          this.setState({
-            organizations: res.msg === undefined ? res : [],
+            organizations: res.data || [],
          });
        });
    }
@ -527,7 +527,7 @@ class ProviderEditPage extends React.Component {
          )
        }
        {
-          (this.state.provider.category === "Captcha" && this.state.provider.type === "Default") || this.state.provider.category === "Web3" ? null : (
+          (this.state.provider.category === "Captcha" && this.state.provider.type === "Default") || (this.state.provider.category === "Web3") || (this.state.provider.category === "Storage" && this.state.provider.type === "Local File System") ? null : (
            <React.Fragment>
              {
                this.state.provider.category === "AI" ? null : (
@ -616,36 +616,42 @@ class ProviderEditPage extends React.Component {
        }
        {this.state.provider.category === "Storage" ? (
          <div>
-            <Row style={{marginTop: "20px"}} >
-              <Col style={{marginTop: "5px"}} span={2}>
-                {Setting.getLabel(i18next.t("provider:Endpoint"), i18next.t("provider:Region endpoint for Internet"))} :
-              </Col>
-              <Col span={22} >
-                <Input value={this.state.provider.endpoint} onChange={e => {
-                  this.updateProviderField("endpoint", e.target.value);
-                }} />
-              </Col>
-            </Row>
-            <Row style={{marginTop: "20px"}} >
-              <Col style={{marginTop: "5px"}} span={2}>
-                {Setting.getLabel(i18next.t("provider:Endpoint (Intranet)"), i18next.t("provider:Region endpoint for Intranet"))} :
-              </Col>
-              <Col span={22} >
-                <Input value={this.state.provider.intranetEndpoint} onChange={e => {
-                  this.updateProviderField("intranetEndpoint", e.target.value);
-                }} />
-              </Col>
-            </Row>
-            <Row style={{marginTop: "20px"}} >
-              <Col style={{marginTop: "5px"}} span={2}>
-                {Setting.getLabel(i18next.t("provider:Bucket"), i18next.t("provider:Bucket - Tooltip"))} :
-              </Col>
-              <Col span={22} >
-                <Input value={this.state.provider.bucket} onChange={e => {
-                  this.updateProviderField("bucket", e.target.value);
-                }} />
-              </Col>
-            </Row>
+            {["Local File System"].includes(this.state.provider.type) ? null : (
+              <Row style={{marginTop: "20px"}} >
+                <Col style={{marginTop: "5px"}} span={2}>
+                  {Setting.getLabel(i18next.t("provider:Endpoint"), i18next.t("provider:Region endpoint for Internet"))} :
+                </Col>
+                <Col span={22} >
+                  <Input value={this.state.provider.endpoint} onChange={e => {
+                    this.updateProviderField("endpoint", e.target.value);
+                  }} />
+                </Col>
+              </Row>
+            )}
+            {["Local File System", "MinIO", "Tencent Cloud COS"].includes(this.state.provider.type) ? null : (
+              <Row style={{marginTop: "20px"}} >
+                <Col style={{marginTop: "5px"}} span={2}>
+                  {Setting.getLabel(i18next.t("provider:Endpoint (Intranet)"), i18next.t("provider:Region endpoint for Intranet"))} :
+                </Col>
+                <Col span={22} >
+                  <Input value={this.state.provider.intranetEndpoint} onChange={e => {
+                    this.updateProviderField("intranetEndpoint", e.target.value);
+                  }} />
+                </Col>
+              </Row>
+            )}
+            {["Local File System"].includes(this.state.provider.type) ? null : (
+              <Row style={{marginTop: "20px"}} >
+                <Col style={{marginTop: "5px"}} span={2}>
+                  {Setting.getLabel(i18next.t("provider:Bucket"), i18next.t("provider:Bucket - Tooltip"))} :
+                </Col>
+                <Col span={22} >
+                  <Input value={this.state.provider.bucket} onChange={e => {
+                    this.updateProviderField("bucket", e.target.value);
+                  }} />
+                </Col>
+              </Row>
+            )}
            <Row style={{marginTop: "20px"}} >
              <Col style={{marginTop: "5px"}} span={2}>
                {Setting.getLabel(i18next.t("provider:Path prefix"), i18next.t("provider:Path prefix - Tooltip"))} :
@ -656,17 +662,19 @@ class ProviderEditPage extends React.Component {
                }} />
              </Col>
            </Row>
-            <Row style={{marginTop: "20px"}} >
-              <Col style={{marginTop: "5px"}} span={2}>
-                {Setting.getLabel(i18next.t("provider:Domain"), i18next.t("provider:Domain - Tooltip"))} :
-              </Col>
-              <Col span={22} >
-                <Input value={this.state.provider.domain} onChange={e => {
-                  this.updateProviderField("domain", e.target.value);
-                }} />
-              </Col>
-            </Row>
-            {["AWS S3", "MinIO", "Tencent Cloud COS"].includes(this.state.provider.type) ? (
+            {["MinIO"].includes(this.state.provider.type) ? null : (
+              <Row style={{marginTop: "20px"}} >
+                <Col style={{marginTop: "5px"}} span={2}>
+                  {Setting.getLabel(i18next.t("provider:Domain"), i18next.t("provider:Domain - Tooltip"))} :
+                </Col>
+                <Col span={22} >
+                  <Input value={this.state.provider.domain} disabled={this.state.provider.type === "Local File System"} onChange={e => {
+                    this.updateProviderField("domain", e.target.value);
+                  }} />
+                </Col>
+              </Row>
+            )}
+            {["AWS S3", "Tencent Cloud COS"].includes(this.state.provider.type) ? (
              <Row style={{marginTop: "20px"}} >
                <Col style={{marginTop: "5px"}} span={2}>
                  {Setting.getLabel(i18next.t("provider:Region ID"), i18next.t("provider:Region ID - Tooltip"))} :
--- a/web/src/RoleEditPage.js
+++ b/web/src/RoleEditPage.js
@ -43,7 +43,7 @@ class RoleEditPage extends React.Component {
  getRole() {
    RoleBackend.getRole(this.state.organizationName, this.state.roleName)
      .then((res) => {
-        if (res === null) {
+        if (res.data === null) {
          this.props.history.push("/404");
          return;
        }
@ -53,7 +53,7 @@ class RoleEditPage extends React.Component {
        }

        this.setState({
-          role: res,
+          role: res.data,
        });

        this.getUsers(res.owner);
@ -65,7 +65,7 @@ class RoleEditPage extends React.Component {
    OrganizationBackend.getOrganizations("admin")
      .then((res) => {
        this.setState({
-          organizations: (res.msg === undefined) ? res : [],
+          organizations: res.data || [],
        });
      });
  }
@ -77,8 +77,9 @@ class RoleEditPage extends React.Component {
          Setting.showMessage("error", res.msg);
          return;
        }
+
        this.setState({
-          users: res,
+          users: res.data,
        });
      });
  }
@ -90,8 +91,9 @@ class RoleEditPage extends React.Component {
          Setting.showMessage("error", res.msg);
          return;
        }
+
        this.setState({
-          roles: res,
+          roles: res.data,
        });
      });
  }
--- a/web/src/SubscriptionEditPage.js
+++ b/web/src/SubscriptionEditPage.js
@ -47,7 +47,7 @@ class SubscriptionEditPage extends React.Component {
  getSubscription() {
    SubscriptionBackend.getSubscription(this.state.organizationName, this.state.subscriptionName)
      .then((res) => {
-        if (res === null) {
+        if (res.data === null) {
          this.props.history.push("/404");
          return;
        }
@ -58,7 +58,7 @@ class SubscriptionEditPage extends React.Component {
        }

        this.setState({
-          subscription: res,
+          subscription: res.data,
        });

        this.getUsers(res.owner);
@ -70,7 +70,7 @@ class SubscriptionEditPage extends React.Component {
    PlanBackend.getPlans(organizationName)
      .then((res) => {
        this.setState({
-          planes: res,
+          planes: res.data,
        });
      });
  }
@ -82,8 +82,9 @@ class SubscriptionEditPage extends React.Component {
          Setting.showMessage("error", res.msg);
          return;
        }
+
        this.setState({
-          users: res,
+          users: res.data,
        });
      });
  }
@ -92,7 +93,7 @@ class SubscriptionEditPage extends React.Component {
    OrganizationBackend.getOrganizations("admin")
      .then((res) => {
        this.setState({
-          organizations: (res.msg === undefined) ? res : [],
+          organizations: res.data || [],
        });
      });
  }
--- a/web/src/SyncerEditPage.js
+++ b/web/src/SyncerEditPage.js
@ -48,7 +48,7 @@ class SyncerEditPage extends React.Component {
  getSyncer() {
    SyncerBackend.getSyncer("admin", this.state.syncerName)
      .then((res) => {
-        if (res === null) {
+        if (res.data === null) {
          this.props.history.push("/404");
          return;
        }
@ -59,7 +59,7 @@ class SyncerEditPage extends React.Component {
        }

        this.setState({
-          syncer: res,
+          syncer: res.data,
        });
      });
  }
@ -68,7 +68,7 @@ class SyncerEditPage extends React.Component {
    OrganizationBackend.getOrganizations("admin")
      .then((res) => {
        this.setState({
-          organizations: (res.msg === undefined) ? res : [],
+          organizations: res.data || [],
        });
      });
  }
--- a/web/src/TokenEditPage.js
+++ b/web/src/TokenEditPage.js
@ -36,7 +36,7 @@ class TokenEditPage extends React.Component {
  getToken() {
    TokenBackend.getToken("admin", this.state.tokenName)
      .then((res) => {
-        if (res === null) {
+        if (res.data === null) {
          this.props.history.push("/404");
          return;
        }
@ -47,7 +47,7 @@ class TokenEditPage extends React.Component {
        }

        this.setState({
-          token: res,
+          token: res.data,
        });
      });
  }
--- a/web/src/UserEditPage.js
+++ b/web/src/UserEditPage.js
@ -75,19 +75,20 @@ class UserEditPage extends React.Component {

  getUser() {
    UserBackend.getUser(this.state.organizationName, this.state.userName)
-      .then((data) => {
-        if (data === null) {
+      .then((res) => {
+        if (res.data === null) {
          this.props.history.push("/404");
          return;
        }

-        if (data.status === null || data.status !== "error") {
-          this.setState({
-            user: data,
-            multiFactorAuths: data?.multiFactorAuths ?? [],
-          });
+        if (res.status === "error") {
+          Setting.showMessage("error", res.msg);
+          return;
        }
+
        this.setState({
+          user: res.data,
+          multiFactorAuths: res.data?.multiFactorAuths ?? [],
          loading: false,
        });
      });
@ -108,7 +109,7 @@ class UserEditPage extends React.Component {
    OrganizationBackend.getOrganizations("admin")
      .then((res) => {
        this.setState({
-          organizations: (res.msg === undefined) ? res : [],
+          organizations: res.data || [],
        });
      });
  }
@ -117,7 +118,7 @@ class UserEditPage extends React.Component {
    ApplicationBackend.getApplicationsByOrganization("admin", organizationName)
      .then((res) => {
        this.setState({
-          applications: (res.msg === undefined) ? res : [],
+          applications: res.data || [],
        });
      });
  }
@ -129,12 +130,10 @@ class UserEditPage extends React.Component {
          Setting.showMessage("error", res.msg);
          return;
        }
-        this.setState({
-          application: res,
-        });

        this.setState({
-          isGroupsVisible: res.organizationObj.accountItems?.some((item) => item.name === "Groups" && item.visible),
+          application: res.data,
+          isGroupsVisible: res.data?.organizationObj.accountItems?.some((item) => item.name === "Groups" && item.visible),
        });
      });
  }
--- a/web/src/WebhookEditPage.js
+++ b/web/src/WebhookEditPage.js
@ -122,14 +122,14 @@ class WebhookEditPage extends React.Component {

  getWebhook() {
    WebhookBackend.getWebhook("admin", this.state.webhookName)
-      .then((webhook) => {
-        if (webhook === null) {
+      .then((res) => {
+        if (res.data === null) {
          this.props.history.push("/404");
          return;
        }

        this.setState({
-          webhook: webhook,
+          webhook: res.data,
        });
      });
  }
@ -138,7 +138,7 @@ class WebhookEditPage extends React.Component {
    OrganizationBackend.getOrganizations("admin")
      .then((res) => {
        this.setState({
-          organizations: (res.msg === undefined) ? res : [],
+          organizations: res.data || [],
        });
      });
  }
--- a/web/src/auth/ForgetPage.js
+++ b/web/src/auth/ForgetPage.js
@ -68,7 +68,7 @@ class ForgetPage extends React.Component {
          Setting.showMessage("error", res.msg);
          return;
        }
-        this.onUpdateApplication(res);
+        this.onUpdateApplication(res.data);
      });
  }
  getApplicationObj() {
--- a/web/src/auth/LoginPage.js
+++ b/web/src/auth/LoginPage.js
@ -170,10 +170,15 @@ class LoginPage extends React.Component {
            Setting.showMessage("error", res.msg);
            return;
          }
-          this.onUpdateApplication(res);
+          this.onUpdateApplication(res.data);
        });
    } else {
-      OrganizationBackend.getDefaultApplication("admin", this.state.owner)
+      let redirectUri = "";
+      if (this.state.type === "cas") {
+        const casParams = Util.getCasParameters();
+        redirectUri = casParams.service;
+      }
+      OrganizationBackend.getDefaultApplication("admin", this.state.owner, this.state.type, redirectUri)
        .then((res) => {
          if (res.status === "ok") {
            const application = res.data;
@ -183,9 +188,9 @@ class LoginPage extends React.Component {
            });
          } else {
            this.onUpdateApplication(null);
-            Setting.showMessage("error", res.msg);
-
-            this.props.history.push("/404");
+            this.setState({
+              msg: res.msg,
+            });
          }
        });
    }
--- a/web/src/auth/MfaSetupPage.js
+++ b/web/src/auth/MfaSetupPage.js
@ -69,7 +69,7 @@ class MfaSetupPage extends React.Component {
            return;
          }
          this.setState({
-            application: res,
+            application: res.data,
          });
        } else {
          Setting.showMessage("error", i18next.t("mfa:Failed to get application"));
--- a/web/src/auth/PromptPage.js
+++ b/web/src/auth/PromptPage.js
@ -63,7 +63,7 @@ class PromptPage extends React.Component {
        }

        this.setState({
-          user: res,
+          user: res.data,
        });
      });
  }
@ -80,9 +80,9 @@ class PromptPage extends React.Component {
          return;
        }

-        this.onUpdateApplication(res);
+        this.onUpdateApplication(res.data);
        this.setState({
-          application: res,
+          application: res.data,
        });
      });
  }
--- a/web/src/auth/ResultPage.js
+++ b/web/src/auth/ResultPage.js
@ -48,9 +48,10 @@ class ResultPage extends React.Component {
          Setting.showMessage("error", res.msg);
          return;
        }
-        this.onUpdateApplication(res);
+
+        this.onUpdateApplication(res.data);
        this.setState({
-          application: res,
+          application: res.data,
        });
      });
  }
--- a/web/src/auth/SignupPage.js
+++ b/web/src/auth/SignupPage.js
@ -114,7 +114,7 @@ class SignupPage extends React.Component {
          return;
        }

-        this.onUpdateApplication(res);
+        this.onUpdateApplication(res.data);
      });
  }

--- a/web/src/backend/OrganizationBackend.js
+++ b/web/src/backend/OrganizationBackend.js
@ -70,8 +70,8 @@ export function deleteOrganization(organization) {
  }).then(res => res.json());
 }

-export function getDefaultApplication(owner, name) {
-  return fetch(`${Setting.ServerUrl}/api/get-default-application?id=${owner}/${encodeURIComponent(name)}`, {
+export function getDefaultApplication(owner, name, type = "", redirectUri = "") {
+  return fetch(`${Setting.ServerUrl}/api/get-default-application?id=${owner}/${encodeURIComponent(name)}&type=${type}&redirectUri=${redirectUri}`, {
    method: "GET",
    credentials: "include",
    headers: {
--- a/web/src/basic/HomePage.js
+++ b/web/src/basic/HomePage.js
@ -36,7 +36,7 @@ class HomePage extends React.Component {
    ApplicationBackend.getApplicationsByOrganization("admin", organizationName)
      .then((res) => {
        this.setState({
-          applications: (res.msg === undefined) ? res : [],
+          applications: res.data || [],
        });
      });
  }
--- a/web/src/common/modal/AgreementModal.js
+++ b/web/src/common/modal/AgreementModal.js
@ -15,6 +15,7 @@
 import {Checkbox, Form, Modal} from "antd";
 import i18next from "i18next";
 import React, {useEffect, useState} from "react";
+import * as Setting from "../../Setting";

 export const AgreementModal = (props) => {
  const {open, onOk, onCancel, application} = props;
@ -31,14 +32,16 @@ export const AgreementModal = (props) => {
    <Modal
      title={i18next.t("signup:Terms of Use")}
      open={open}
-      width={"55vw"}
+      width={Setting.isMobile() ? "100vw" : "55vw"}
      closable={false}
      okText={i18next.t("signup:Accept")}
      cancelText={i18next.t("signup:Decline")}
      onOk={onOk}
      onCancel={onCancel}
+      style={{top: Setting.isMobile() ? "5px" : ""}}
+      maskStyle={{backgroundColor: Setting.isMobile() ? "white" : ""}}
    >
-      <iframe title={"terms"} style={{border: 0, width: "100%", height: "60vh"}} srcDoc={doc} />
+      <iframe title={"terms"} style={{border: 0, width: "100%", height: Setting.isMobile() ? "80vh" : "60vh"}} srcDoc={doc} />
    </Modal>
  );
 };
Author	SHA1	Message	Date
haiwu	b7a37126ad	feat: restrict redirectUrls for CAS login (#2118 ) * feat: support cas restricted login * feat: add cas login i18n * feat: add CheckCasService for all cas api * feat: gofumpt * feat: replace 404 * feat: reuse i18n * feat: delete CheckCasService * Update token_cas.go * Update LoginPage.js * Update token_cas.go --------- Co-authored-by: hsluoyz <hsluoyz@qq.com>	2023-07-24 11:47:31 +08:00
UsherFall	8669d5bb0d	chore: hide field of IntranetEndpoint in Tencent COS storage provider (#2117 )	2023-07-23 19:02:42 +08:00
Baihhh	aee3ea4981	feat: improve TermsOfUse UI in mobile (#2106 ) * style: Mobile interface adaptation Signed-off-by: baihhh <2542274498@qq.com> * Update index.css --------- Signed-off-by: baihhh <2542274498@qq.com> Co-authored-by: hsluoyz <hsluoyz@qq.com>	2023-07-23 15:28:13 +08:00
Yang Luo	516f4b7569	Fix response of `/api/get-sorted-users` and `/api/get-user-count`	2023-07-23 14:46:38 +08:00
UsherFall	7d7ca10481	fix: hide fields of minio storage provider (#2115 ) * feat: hide field of minio storage provider * feat: hide field of domain in minio storage provider	2023-07-23 14:40:30 +08:00
UsherFall	a9d4978a0f	chore: hide fields of local file system storage provider (#2109 ) * style: adjust local file system storage * style: disable domain when use local file system	2023-07-23 11:48:15 +08:00
Yang Luo	09f40bb5ce	Fix id of "/api/get-resource" API	2023-07-23 11:33:48 +08:00
Yaodong Yu	a6f803aff1	feat: refactor code to use responseOK everywhere (#2111 ) * refactor: use responseOK return frontend format json data * revert handle error * revert handle error	2023-07-23 09:49:16 +08:00
Yang Luo	fc9528be43	Add createDatabaseForPostgres()	2023-07-22 16:19:13 +08:00