fix: review comments

2026-04-14 17:57:56 +00:00 · 2026-04-14 12:18:55 +03:00
parent 8622736718
commit 5b836ee8c4
4 changed files with 6 additions and 4 deletions
--- a/internal/assets/migrations/000008_oidc_code_reuse.down.sql
+++ b/internal/assets/migrations/000008_oidc_code_reuse.down.sql
--- a/internal/assets/migrations/000008_oidc_code_reuse.up.sql
+++ b/internal/assets/migrations/000008_oidc_code_reuse.up.sql
@@ -0,0 +1 @@
 ALTER TABLE "oidc_tokens" ADD COLUMN "code_hash" TEXT NOT NULL DEFAULT "";
--- a/internal/assets/migrations/000008_oidc_coder_user.up.sql
+++ b/internal/assets/migrations/000008_oidc_coder_user.up.sql
@@ -1 +0,0 @@
 ALTER TABLE "oidc_tokens" ADD COLUMN "code_hash" TEXT DEFAULT "";
--- a/internal/controller/oidc_controller.go
+++ b/internal/controller/oidc_controller.go
@@ -1,6 +1,7 @@
 package controller
 import (
 	"database/sql"
 	"errors"
 	"fmt"
 	"net/http"
@@ -275,9 +276,10 @@ func (controller *OIDCController) Token(c *gin.Context) {
 	case "authorization_code":
 		entry, err := controller.oidc.GetCodeEntry(c, controller.oidc.Hash(req.Code), client.ClientID)
 		if err != nil {
-			// Delete the access token just in case
+			err := controller.oidc.DeleteTokenByCodeHash(c, controller.oidc.Hash(req.Code))
-			controller.oidc.DeleteTokenByCodeHash(c, controller.oidc.Hash(req.Code))
+			if err != nil && !errors.Is(err, sql.ErrNoRows) {
-
+				tlog.App.Error().Err(err).Msg("Failed to delete access token by code hash")
 			}
 			if errors.Is(err, service.ErrCodeNotFound) {
 				tlog.App.Warn().Msg("Code not found")
 				c.JSON(400, gin.H{
		`@@ -0,0 +1 @@`
							`ALTER TABLE "oidc_tokens" ADD COLUMN "code_hash" TEXT NOT NULL DEFAULT "";`
		`@@ -1 +0,0 @@`
			`ALTER TABLE "oidc_tokens" ADD COLUMN "code_hash" TEXT DEFAULT "";`