[SKY-6] Backend: Enable 2FA code detection without TOTP credentials (#4786)

2026-02-18 17:21:58 -05:00
parent b48bf707c3
commit e3b6d22fb6
28 changed files with 1989 additions and 41 deletions
--- a/skyvern/forge/sdk/routes/credentials.py
+++ b/skyvern/forge/sdk/routes/credentials.py
@@ -131,10 +131,15 @@ async def send_totp_code(
        task = await app.DATABASE.get_task(data.task_id, curr_org.organization_id)
        if not task:
            raise HTTPException(status_code=400, detail=f"Invalid task id: {data.task_id}")
+    workflow_id_for_storage: str | None = None
    if data.workflow_id:
-        workflow = await app.DATABASE.get_workflow(data.workflow_id, curr_org.organization_id)
+        if data.workflow_id.startswith("wpid_"):
+            workflow = await app.DATABASE.get_workflow_by_permanent_id(data.workflow_id, curr_org.organization_id)
+        else:
+            workflow = await app.DATABASE.get_workflow(data.workflow_id, curr_org.organization_id)
        if not workflow:
            raise HTTPException(status_code=400, detail=f"Invalid workflow id: {data.workflow_id}")
+        workflow_id_for_storage = workflow.workflow_id
    if data.workflow_run_id:
        workflow_run = await app.DATABASE.get_workflow_run(data.workflow_run_id, curr_org.organization_id)
        if not workflow_run:
@@ -162,7 +167,7 @@ async def send_totp_code(
        content=data.content,
        code=otp_value.value,
        task_id=data.task_id,
-        workflow_id=data.workflow_id,
+        workflow_id=workflow_id_for_storage,
        workflow_run_id=data.workflow_run_id,
        source=data.source,
        expired_at=data.expired_at,