🔑 feat: Add support for users to be admins when logging in using OpenID

[jpsfs]

Pull Request Template

Summary

This Pull Request implements #9167 .
The goal is to allow a user that logins OIDC to be an admin in LibreChat depending on a claim that can exist in either the access_token, id_token or it's user profile.

A PR for the documentation was also open, detailing 3 new env vars, similar to the ones already used to check required roles.

OPENID_ADMIN_ROLE=
OPENID_ADMIN_ROLE_PARAMETER_PATH=
OPENID_ADMIN_ROLE_TOKEN_KIND=

Change Type

Please delete any irrelevant options.

• New feature (non-breaking change which adds functionality)
• This change requires a documentation update

Testing

Depending on your OIDC provider configurations might be different.
If you have a claim in the id_token called roles that's an array, and an admin user must have a role called admin, the configuration would be the following:

OPENID_ADMIN_ROLE=admin
OPENID_ADMIN_ROLE_PARAMETER_PATH=roles
OPENID_ADMIN_ROLE_TOKEN_KIND=id

Test Configuration:

Checklist

Please delete any irrelevant options.

• My code adheres to this project's style guidelines
• I have performed a self-review of my own code
• I have commented in any complex areas of my code
• I have made pertinent documentation changes
• My changes do not introduce new warnings
• Local unit tests pass with my changes
• A pull request for updating the documentation has been submitted. 📚 docs: Add support for users to be admins when logging in using OpenID LibreChat-AI/librechat.ai#398

[danny-avila]

Thanks, please address ESLint issues

[jpsfs]

@danny-avila Run lint:fix and pushed it again. Couldn't understand most of initial errors.

[jpsfs]

@danny-avila know I think it's all :)

[jpaodev]

Very cool, I think this makes a lot of sense as alternative and would be a neat upgrade from the current version (first user receives update)

[jpsfs]

Hi @danny-avila !
Are you open to merging this one? Just need this one to close my fork for now :)