hotosm · Anuj-Gupta4 · Oct 24, 2024
diff --git a/src/backend/app/auth/osm.py b/src/backend/app/auth/osm.py
@@ -22,7 +22,7 @@
 import time
 
 import jwt
-from fastapi import Header, HTTPException, Request
+from fastapi import Depends, Header, HTTPException, Request
 from fastapi.responses import JSONResponse
 from loguru import logger as log
 from osm_login_python.core import Auth
@@ -76,6 +76,18 @@ async def login_required(
     return AuthUser(**token_data)
 
 
+async def osm_login_required(
+    request: Request, auth_user: AuthUser = Depends(login_required)
+) -> AuthUser:
+    cookie_name = settings.FMTM_DOMAIN.replace(".", "_")
+    osm_cookie_name = f"{cookie_name}_osm"
+
+    if osm_cookie_name not in request.cookies:
+        raise HTTPException(status_code=401, detail="OSM login required")
+
+    return auth_user
+
+
 def extract_token_from_cookie(request: Request) -> str:
     """Extract access token from cookies."""
     cookie_name = settings.FMTM_DOMAIN.replace(".", "_")

diff --git a/src/backend/app/projects/project_routes.py b/src/backend/app/projects/project_routes.py
@@ -45,7 +45,7 @@
 from sqlalchemy.sql import text
 
 from app.auth.auth_schemas import AuthUser, OrgUserDict, ProjectUserDict
-from app.auth.osm import login_required
+from app.auth.osm import login_required, osm_login_required
 from app.auth.roles import mapper, org_admin, project_manager
 from app.central import central_crud, central_deps, central_schemas
 from app.db import database, db_models
@@ -450,6 +450,7 @@ async def create_project(
     project_info: project_schemas.ProjectUpload,
     org_user_dict: OrgUserDict = Depends(org_admin),
     db: Session = Depends(database.get_db),
+    user_data: AuthUser = Depends(osm_login_required),
 ):
     """Create a project in ODK Central and the local database.