diff options
Diffstat (limited to 'internal/oauth2/oidc.go')
| -rw-r--r-- | internal/oauth2/oidc.go | 15 |
1 files changed, 13 insertions, 2 deletions
diff --git a/internal/oauth2/oidc.go b/internal/oauth2/oidc.go index c65f11ae..8fcb5527 100644 --- a/internal/oauth2/oidc.go +++ b/internal/oauth2/oidc.go @@ -5,6 +5,8 @@ package oauth2 // import "miniflux.app/v2/internal/oauth2" import ( "context" + "errors" + "fmt" "miniflux.app/v2/internal/model" @@ -12,6 +14,10 @@ import ( "golang.org/x/oauth2" ) +var ( + ErrEmptyUsername = errors.New("oidc: username is empty") +) + type oidcProvider struct { clientID string clientSecret string @@ -46,15 +52,20 @@ func (o *oidcProvider) GetProfile(ctx context.Context, code, codeVerifier string conf := o.GetConfig() token, err := conf.Exchange(ctx, code, oauth2.SetAuthURLParam("code_verifier", codeVerifier)) if err != nil { - return nil, err + return nil, fmt.Errorf(`oidc: failed to exchange token: %w`, err) } userInfo, err := o.provider.UserInfo(ctx, oauth2.StaticTokenSource(token)) if err != nil { - return nil, err + return nil, fmt.Errorf(`oidc: failed to get user info: %w`, err) } profile := &Profile{Key: o.GetUserExtraKey(), ID: userInfo.Subject, Username: userInfo.Email} + + if profile.Username == "" { + return nil, ErrEmptyUsername + } + return profile, nil } |