Skip to content

Catch the error before the response is processed by goth. #20000

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 16 commits into from
Jun 20, 2022
Merged

Catch the error before the response is processed by goth. #20000

Changes from all commits
Commits
Show all changes
16 commits
Select commit Hold shift + click to select a range
a3381d2
Catch the error before the response is processed by goth in web/auth/…
SteveTheEngineer Jun 17, 2022
bf7009c
Merge branch 'main' into main
6543 Jun 17, 2022
746a6ca
Merge branch 'main' into main
lunny Jun 18, 2022
b30bdd3
Merge branch 'main' into main
lunny Jun 18, 2022
f99839c
Merge branch 'main' into main
techknowlogick Jun 18, 2022
c48a458
Merge branch 'main' into main
zeripath Jun 18, 2022
cac63a9
Delete the session in case of an error response.
SteveTheEngineer Jun 18, 2022
ca01568
Fix imports order.
SteveTheEngineer Jun 18, 2022
a4e82e1
Merge branch 'main' into main
SteveTheEngineer Jun 18, 2022
936f870
Merge branch 'main' into main
wxiaoguang Jun 18, 2022
1cf26af
Merge branch 'main' into main
wxiaoguang Jun 18, 2022
3208794
Merge branch 'main' into main
SteveTheEngineer Jun 18, 2022
920cf64
Merge branch 'main' into main
lafriks Jun 19, 2022
1e0bb3c
Merge branch 'main' into main
lunny Jun 20, 2022
ab4076e
Merge branch 'main' into main
6543 Jun 20, 2022
99c5b61
Merge branch 'main' into main
SteveTheEngineer Jun 20, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
32 changes: 20 additions & 12 deletions routers/web/auth/oauth.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -37,6 +37,7 @@ import (
"gitea.com/go-chi/binding"
"github.com/golang-jwt/jwt/v4"
"github.com/markbates/goth"
"github.com/markbates/goth/gothic"
)

const (
Expand Down Expand Up @@ -1098,24 +1099,31 @@ func handleOAuth2SignIn(ctx *context.Context, source *auth.Source, u *user_model
func oAuth2UserLoginCallback(authSource *auth.Source, request *http.Request, response http.ResponseWriter) (*user_model.User, goth.User, error) {
oauth2Source := authSource.Cfg.(*oauth2.Source)

// Make sure that the response is not an error response.
errorName := request.FormValue("error")

if len(errorName) > 0 {
errorDescription := request.FormValue("error_description")

// Delete the goth session
err := gothic.Logout(response, request)
if err != nil {
return nil, goth.User{}, err
}

return nil, goth.User{}, errCallback{
Code: errorName,
Description: errorDescription,
}
}

// Proceed to authenticate through goth.
gothUser, err := oauth2Source.Callback(request, response)
if err != nil {
if err.Error() == "securecookie: the value is too long" || strings.Contains(err.Error(), "Data too long") {
log.Error("OAuth2 Provider %s returned too long a token. Current max: %d. Either increase the [OAuth2] MAX_TOKEN_LENGTH or reduce the information returned from the OAuth2 provider", authSource.Name, setting.OAuth2.MaxTokenLength)
err = fmt.Errorf("OAuth2 Provider %s returned too long a token. Current max: %d. Either increase the [OAuth2] MAX_TOKEN_LENGTH or reduce the information returned from the OAuth2 provider", authSource.Name, setting.OAuth2.MaxTokenLength)
}
// goth does not provide the original error message
// https://github.com/markbates/goth/issues/348
if strings.Contains(err.Error(), "server response missing access_token") || strings.Contains(err.Error(), "could not find a matching session for this request") {
errorCode := request.FormValue("error")
errorDescription := request.FormValue("error_description")
if errorCode != "" || errorDescription != "" {
return nil, goth.User{}, errCallback{
Code: errorCode,
Description: errorDescription,
}
}
}
return nil, goth.User{}, err
}

Expand Down