Skip to content

Fork dev #2318

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
mrigangha wants to merge 2 commits into
base: master
Choose a base branch
from
Open

Fork dev #2318

mrigangha wants to merge 2 commits into from

Conversation

@mrigangha
Copy link

@mrigangha mrigangha commented Jan 7, 2026

What kind of change does this PR introduce?

Create a supabase.auth.admin.getUserByEmail function #880

What is the current behavior?

Added a FindUserByEmail to user.go

@mrigangha mrigangha requested a review from a team as a code owner January 7, 2026 07:40
depthfirst-app[bot]
depthfirst-app bot reviewed Jan 7, 2026
View reviewed changes
internal/models/user.go
func FindUserByEmailAndAudience(tx *storage.Connection, email, aud string) (*User, error) {
return findUser(tx, "instance_id = ? and LOWER(email) = ? and aud = ? and is_sso_user = false", uuid.Nil, strings.ToLower(email), aud)
}
func FindUserByEmail(tx *storage.Connection, email string) (*User, error) {
Copy link
Contributor

@depthfirst-app depthfirst-app bot Jan 7, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🟡 Severity: MEDIUM

Missing Audience (aud) Check: This function searches users without validating the aud (audience) field, unlike the existing FindUserByEmailAndAudience. In multi-tenant systems, the aud field isolates users between different tenants/applications. Omitting this check allows one tenant to potentially access users from another tenant's database. The function also omits the is_sso_user = false filter, which could return SSO users that should be handled differently.
Helpful? Add 👍 / 👎

💡 Fix Suggestion

Suggestion: Add the 'aud' (audience) parameter and include the 'is_sso_user = false' filter to prevent cross-tenant data access and exclude SSO users. The function signature should be: func FindUserByEmail(tx *storage.Connection, email, aud string) (*User, error) and the query should include: aud = ? and is_sso_user = false. This ensures tenant isolation in multi-tenant environments. If this function is strictly intended for admin-only cross-tenant operations, document this clearly and ensure it's only called from properly authorized admin endpoints.

⚠️ Experimental Feature: This code suggestion is automatically generated. Please review carefully.

Suggested change
func FindUserByEmail(tx *storage.Connection, email string) (*User, error) {
func FindUserByEmail(tx *storage.Connection, email, aud string) (*User, error) {
return findUser(tx, "instance_id = ? and LOWER(email) = ? and aud = ? and is_sso_user = false", uuid.Nil, strings.ToLower(email), aud)
}

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@depthfirst-app depthfirst-app[bot] depthfirst-app[bot] left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@mrigangha