wn/traefik-forward-auth
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

add outline tests + add validation errors + make more FA methods private

Browse Source
This commit is contained in:
Thom Seddon
2018-07-18 13:55:13 +01:00
parent 55e8b3064c
commit 18865e956c
3 changed files with 268 additions and 25 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
main.go
View File

@ -58,7 +58,7 @@ func handler(w http.ResponseWriter, r *http.Request) {
}
// Validate cookie
valid, email := fw.ValidateCookie(r, c)
valid, email, _ := fw.ValidateCookie(r, c)
if !valid {
http.Error(w, "Not authorized", 401)
return
@ -88,7 +88,7 @@ func handleCallback(w http.ResponseWriter, r *http.Request, qs url.Values) {
// Validate state
state := qs.Get("state")
valid, redirect := fw.ValidateCSRFCookie(csrfCookie, state)
valid, redirect, err := fw.ValidateCSRFCookie(csrfCookie, state)
if !valid && false {
log.Debugf("Invalid oauth state, expected '%s', got '%s'\n", csrfCookie.Value, state)
http.Error(w, "Not authorized", 401)
@ -99,7 +99,7 @@ func handleCallback(w http.ResponseWriter, r *http.Request, qs url.Values) {
http.SetCookie(w, fw.ClearCSRFCookie(r))
// Exchange code for token
token, err := fw.ExchangeCode(r, qs.Get("code"), fw.RedirectUri(r))
token, err := fw.ExchangeCode(r, qs.Get("code"))
if err != nil {
log.Debugf("Code exchange failed with: %s\n", err)
http.Error(w, "Service unavailable", 503)