Cadoles/goweb-oidc
10
0
Fork 0
Code Issues Pull Requests Releases 3 Wiki Activity

Ajout du nonce au login

Browse Source
This commit is contained in:
Matthieu Lamalle 2023-03-02 15:07:02 +01:00
parent 50041cbc39
commit f9c919a2ac
2 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
client.go
View File

@ -37,15 +37,17 @@ func (c *Client) Login(w http.ResponseWriter, r *http.Request) {
} }
state := uniuri.New() state := uniuri.New()
nonce := uniuri.New()
sess.Set(SessionOIDCStateKey, state) sess.Set(SessionOIDCStateKey, state)
sess.Set(SessionOIDCNonceKey, nonce)
if err := sess.Save(w, r); err != nil { if err := sess.Save(w, r); err != nil {
panic(errors.Wrap(err, "could not save session")) panic(errors.Wrap(err, "could not save session"))
} }
authCodeOptions := []oauth2.AuthCodeOption{} authCodeOptions := []oauth2.AuthCodeOption{}
authCodeOptions = append(authCodeOptions, oidc.Nonce(nonce))
authCodeURL := c.oauth2.AuthCodeURL( authCodeURL := c.oauth2.AuthCodeURL(
state, state,
authCodeOptions..., authCodeOptions...,

1
middleware.go
View File

@ -14,6 +14,7 @@ import (
const ( const (
SessionIDTokenKey = "oidc-id-token" SessionIDTokenKey = "oidc-id-token"
SessionOIDCStateKey = "oidc-state" SessionOIDCStateKey = "oidc-state"
SessionOIDCNonceKey = "oidc-nonce"
) )
func init() { func init() {