barbercollie/tinyauth
1
0
Fork 1
mirror of https://github.com/steveiliop56/tinyauth.git synced 2026-03-01 04:11:58 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix: ensure oidc service is configured before performing any actions

Browse Source
This commit is contained in:
Stavros
2026-02-02 15:55:59 +02:00
parent fb671139cd
commit fd16f91011
2 changed files with 30 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

21
internal/controller/oidc_controller.go
View File

@@ -97,6 +97,11 @@ func (controller *OIDCController) GetClientInfo(c *gin.Context) {
} }
func (controller *OIDCController) Authorize(c *gin.Context) { func (controller *OIDCController) Authorize(c *gin.Context) {
if !controller.oidc.IsConfigured() {
controller.authorizeError(c, errors.New("err_oidc_not_configured"), "OIDC not configured", "This instance is not configured for OIDC", "", "", "")
return
}
userContext, err := utils.GetContext(c) userContext, err := utils.GetContext(c)
if err != nil { if err != nil {
@@ -177,6 +182,14 @@ func (controller *OIDCController) Authorize(c *gin.Context) {
} }
func (controller *OIDCController) Token(c *gin.Context) { func (controller *OIDCController) Token(c *gin.Context) {
if !controller.oidc.IsConfigured() {
tlog.App.Warn().Msg("OIDC not configured")
c.JSON(404, gin.H{
"error": "not_found",
})
return
}
var req TokenRequest var req TokenRequest
err := c.Bind(&req) err := c.Bind(&req)
@@ -306,6 +319,14 @@ func (controller *OIDCController) Token(c *gin.Context) {
} }
func (controller *OIDCController) Userinfo(c *gin.Context) { func (controller *OIDCController) Userinfo(c *gin.Context) {
if !controller.oidc.IsConfigured() {
tlog.App.Warn().Msg("OIDC not configured")
c.JSON(404, gin.H{
"error": "not_found",
})
return
}
authorization := c.GetHeader("Authorization") authorization := c.GetHeader("Authorization")
tokenType, token, ok := strings.Cut(authorization, " ") tokenType, token, ok := strings.Cut(authorization, " ")

10
internal/service/oidc_service.go
View File

@@ -98,9 +98,16 @@ func NewOIDCService(config OIDCServiceConfig, queries *repository.Queries) *OIDC
} }
} }
// TODO: A cleanup routine is needed to clean up expired tokens/code/userinfo func (service *OIDCService) IsConfigured() bool {
return len(service.config.Clients) > 0
}
func (service *OIDCService) Init() error { func (service *OIDCService) Init() error {
// If not configured, skip init
if !service.IsConfigured() {
return nil
}
// Ensure issuer is https // Ensure issuer is https
uissuer, err := url.Parse(service.config.Issuer) uissuer, err := url.Parse(service.config.Issuer)
@@ -207,6 +214,7 @@ func (service *OIDCService) Init() error {
} }
client.ClientSecretFile = "" client.ClientSecretFile = ""
service.clients[id] = client service.clients[id] = client
tlog.App.Info().Str("id", client.ID).Msg("Registered OIDC client")
} }
return nil return nil