From d080e71601e240dd780dd6d5af7fec1e81fb6d2a Mon Sep 17 00:00:00 2001
From: Arthur Lu <root@tronnet.net>
Date: Wed, 29 Jan 2025 20:31:57 +0000
Subject: [PATCH] fix crash with access ticket using invalid username

---
 src/routes/access.js | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/src/routes/access.js b/src/routes/access.js
index 29f0693..843df2d 100644
--- a/src/routes/access.js
+++ b/src/routes/access.js
@@ -61,10 +61,15 @@ router.post("/ticket", async (req, res) => {
 		username: req.body.username,
 		password: req.body.password
 	};
+
 	const domain = global.config.application.domain;
 	// const userRealm = params.username.split("@").at(-1);
 	const userObj = global.utils.getUserObjFromUsername(params.username);
 	let backends = global.userManager.getBackendsByUser(userObj);
+	if (backends == null) {
+		res.status(401).send({ auth: false, error: `${params.username} not found in any ProxmoxAAS backends` });
+		return;
+	}
 	backends = backends.concat(["pve"]);
 	const cm = new CookieFetcher();
 	const error = await cm.fetchBackends(backends, userObj, params.password);