fix: review comments

2026-04-14 17:57:56 +00:00 · 2026-04-14 12:18:55 +03:00
parent 8622736718
commit 5b836ee8c4
4 changed files with 6 additions and 4 deletions
--- a/internal/assets/migrations/000008_oidc_code_reuse.down.sql
+++ b/internal/assets/migrations/000008_oidc_code_reuse.down.sql
--- a/internal/assets/migrations/000008_oidc_code_reuse.up.sql
+++ b/internal/assets/migrations/000008_oidc_code_reuse.up.sql
@@ -0,0 +1 @@
+ALTER TABLE "oidc_tokens" ADD COLUMN "code_hash" TEXT NOT NULL DEFAULT "";
--- a/internal/assets/migrations/000008_oidc_coder_user.up.sql
+++ b/internal/assets/migrations/000008_oidc_coder_user.up.sql
@@ -1 +0,0 @@
-ALTER TABLE "oidc_tokens" ADD COLUMN "code_hash" TEXT DEFAULT "";
--- a/internal/controller/oidc_controller.go
+++ b/internal/controller/oidc_controller.go
@@ -1,6 +1,7 @@
 package controller

 import (
+	"database/sql"
 	"errors"
 	"fmt"
 	"net/http"
@@ -275,9 +276,10 @@ func (controller *OIDCController) Token(c *gin.Context) {
 	case "authorization_code":
 		entry, err := controller.oidc.GetCodeEntry(c, controller.oidc.Hash(req.Code), client.ClientID)
 		if err != nil {
-			// Delete the access token just in case
-			controller.oidc.DeleteTokenByCodeHash(c, controller.oidc.Hash(req.Code))
-
+			err := controller.oidc.DeleteTokenByCodeHash(c, controller.oidc.Hash(req.Code))
+			if err != nil && !errors.Is(err, sql.ErrNoRows) {
+				tlog.App.Error().Err(err).Msg("Failed to delete access token by code hash")
+			}
 			if errors.Is(err, service.ErrCodeNotFound) {
 				tlog.App.Warn().Msg("Code not found")
 				c.JSON(400, gin.H{
				`@@ -0,0 +1 @@`
				`ALTER TABLE "oidc_tokens" ADD COLUMN "code_hash" TEXT NOT NULL DEFAULT "";`
				`@@ -1 +0,0 @@`
				`ALTER TABLE "oidc_tokens" ADD COLUMN "code_hash" TEXT DEFAULT "";`