NotificationsYou must be signed in to change notification settings
Fork928
Star10.1k

Commitde037d3

committed

Extract state from authURL

1 parent24e643c commitde037d3Copy full SHA for de037d3

File tree

3 files changed

-6

lines changed

coderd/coderdtest/oidctest
- helper.go
- idp.go
enterprise/coderd
- oauth2_test.go

3 files changed

-6

lines changed

`‎coderd/coderdtest/oidctest/helper.go`

Lines changed: 8 additions & 4 deletions

Original file line number	Diff line number	Diff line change
`@@ -122,10 +122,13 @@ func (h LoginHelper) ForceRefresh(t testing.T, db database.Store, user *coders`
`122`	`122`	`// unit tests, it's easier to skip this step sometimes. It does make an actual`
`123`	`123`	`// request to the IDP, so it should be equivalent to doing this "manually" with`
`124`	`124`	`// actual requests.`
`125`		`-//`
`126`		`-// TODO: Is state param optional? Can we grab it from the authURL?`
`127`		`-funcOAuth2GetCode(authURLstring,statestring,doRequestfunc(reqhttp.Request) (http.Response,error)) (string,error) {`
`128`		`-r,err:=http.NewRequestWithContext(context.Background(),http.MethodGet,authURL,nil)`
	`125`	`+funcOAuth2GetCode(rawAuthURLstring,doRequestfunc(reqhttp.Request) (http.Response,error)) (string,error) {`
	`126`	`+authURL,err:=url.Parse(rawAuthURL)`
	`127`	`+iferr!=nil {`
	`128`	`+return"",xerrors.Errorf("failed to parse auth URL: %w",err)`
	`129`	`+}`
	`130`	`+`
	`131`	`+r,err:=http.NewRequestWithContext(context.Background(),http.MethodGet,rawAuthURL,nil)`
`129`	`132`	`iferr!=nil {`
`130`	`133`	`return"",xerrors.Errorf("failed to create auth request: %w",err)`
`131`	`134`	`}`
`@@ -156,6 +159,7 @@ func OAuth2GetCode(authURL string, state string, doRequest func(req *http.Reques`
`156`	`159`	`return"",xerrors.Errorf("expected code in redirect location")`
`157`	`160`	`}`
`158`	`161`
	`162`	`+state:=authURL.Query().Get("state")`
`159`	`163`	`newState:=toURL.Query().Get("state")`
`160`	`164`	`ifnewState!=state {`
`161`	`165`	`return"",xerrors.Errorf("expected state %q, got %q",state,newState)`

`‎coderd/coderdtest/oidctest/idp.go`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -539,7 +539,7 @@ func (f *FakeIDP) CreateAuthCode(t testing.TB, state string) string {`
`539`	`539`	`// it expects some claims to be present.`
`540`	`540`	`f.stateToIDTokenClaims.Store(state, jwt.MapClaims{})`
`541`	`541`
`542`		`-code,err:=OAuth2GetCode(f.cfg.AuthCodeURL(state),state,func(reqhttp.Request) (http.Response,error) {`
	`542`	`+code,err:=OAuth2GetCode(f.cfg.AuthCodeURL(state),func(reqhttp.Request) (http.Response,error) {`
`543`	`543`	`rw:=httptest.NewRecorder()`
`544`	`544`	`f.handler.ServeHTTP(rw,req)`
`545`	`545`	`resp:=rw.Result()`

`‎enterprise/coderd/oauth2_test.go`

Lines changed: 0 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -945,7 +945,6 @@ func authorizationFlow(ctx context.Context, client codersdk.Client, cfg oauth2`
`945`	`945`	`state:=uuid.NewString()`
`946`	`946`	`returnoidctest.OAuth2GetCode(`
`947`	`947`	`cfg.AuthCodeURL(state),`
`948`		`-state,`
`949`	`948`	`func(reqhttp.Request) (http.Response,error) {`
`950`	`949`	`// TODO: Would be better if client had a .Do() method.`
`951`	`950`	`// TODO: Is this the best way to handle redirects?`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commitde037d3

File tree

3 files changed

3 files changed

`‎coderd/coderdtest/oidctest/helper.go`

`‎coderd/coderdtest/oidctest/idp.go`

`‎enterprise/coderd/oauth2_test.go`

0 commit comments