fix(auth): don't crash when initial auth fails (#17308)

2026-04-27 13:34:15 -07:00 · 2026-01-22 11:44:55 -05:00
parent d956c5b221
commit 87a0db20d2
2 changed files with 8 additions and 2 deletions
@@ -373,6 +373,7 @@ export async function main() {
  // Refresh auth to fetch remote admin settings from CCPA and before entering
  // the sandbox because the sandbox will interfere with the Oauth2 web
  // redirect.
+  let initialAuthFailed = false;
  if (!settings.merged.security.auth.useExternal) {
    try {
      if (
@@ -400,8 +401,7 @@ export async function main() {
      }
    } catch (err) {
      debugLogger.error('Error authenticating:', err);
-      await runExitCleanup();
-      process.exit(ExitCodes.FATAL_AUTHENTICATION_ERROR);
+      initialAuthFailed = true;
    }
  }

@@ -427,6 +427,10 @@ export async function main() {
    // another way to decouple refreshAuth from requiring a config.

    if (sandboxConfig) {
+      if (initialAuthFailed) {
+        await runExitCleanup();
+        process.exit(ExitCodes.FATAL_AUTHENTICATION_ERROR);
+      }
      let stdinData = '';
      if (!process.stdin.isTTY) {
        stdinData = await readStdin();