fix: check return of consent request and don't send context (apparently)

This commit is contained in:
Neil Hanlon 2024-03-17 16:20:15 -04:00
parent 6a625b0957
commit 139989fc01
Signed by: neil
GPG Key ID: 705BC21EC3C70F34

View File

@ -32,6 +32,7 @@ package obsidianimplv1
import (
"context"
"github.com/gogo/status"
client "github.com/ory/hydra-client-go/v2"
"peridot.resf.org/utils"
@ -41,8 +42,9 @@ import (
)
const (
authError = "auth_error"
noUser = "no_user"
authError = "auth_error"
noUser = "no_user"
badConsent = "bad_consent"
)
func (s *Server) ProcessLoginRequest(challenge string) (*obsidianpb.SessionStatusResponse, error) {
@ -104,7 +106,6 @@ func (s *Server) AcceptConsentRequest(ctx context.Context, challenge string, con
consent, _, err := s.hydra.OAuth2API.AcceptOAuth2ConsentRequest(ctx).
ConsentChallenge(challenge).
AcceptOAuth2ConsentRequest(client.AcceptOAuth2ConsentRequest{
Context: ctx,
Remember: utils.Pointer[bool](true),
GrantScope: consentReq.RequestedScope,
GrantAccessTokenAudience: consentReq.RequestedAccessTokenAudience,
@ -121,6 +122,11 @@ func (s *Server) AcceptConsentRequest(ctx context.Context, challenge string, con
},
}).Execute()
if err != nil {
s.log.Error(err)
return nil, status.Error(codes.Internal, badConsent)
}
return &obsidianpb.SessionStatusResponse{
Valid: true,
RedirectUrl: consent.RedirectTo,