Hide Hydra login request errors to the end user
This commit is contained in:
parent
754922b250
commit
31019c5138
|
|
@ -43,8 +43,6 @@ func handleVerification(w http.ResponseWriter, r *http.Request) {
|
|||
}
|
||||
|
||||
return
|
||||
|
||||
http.Error(w, http.StatusText(http.StatusBadRequest), http.StatusBadRequest)
|
||||
}
|
||||
|
||||
verifyUserData, ok := result.Data().(*query.VerifyUserData)
|
||||
|
|
@ -65,7 +63,19 @@ func handleVerification(w http.ResponseWriter, r *http.Request) {
|
|||
|
||||
res, err := hydr.AcceptLoginRequest(verifyUserData.Challenge, accept)
|
||||
if err != nil {
|
||||
panic(errors.Wrap(err, "could not retrieve hydra accept response"))
|
||||
logger.Error(ctx, "could not retrieve hydra accept response", logger.E(err))
|
||||
|
||||
err := renderErrorPage(
|
||||
w, r,
|
||||
http.StatusBadRequest,
|
||||
"Lien invalide",
|
||||
"Le lien de connexion utilisé est invalide ou a expiré.",
|
||||
)
|
||||
if err != nil {
|
||||
panic(errors.Wrapf(err, "could not render '%s' page", r.URL.Path))
|
||||
}
|
||||
|
||||
return
|
||||
}
|
||||
|
||||
http.Redirect(w, r, res.RedirectTo, http.StatusSeeOther)
|
||||
|
|
|
|||
Loading…
Reference in New Issue