aboutsummaryrefslogtreecommitdiff
path: root/service/auth.go
diff options
context:
space:
mode:
Diffstat (limited to 'service/auth.go')
-rw-r--r--service/auth.go16
1 files changed, 14 insertions, 2 deletions
diff --git a/service/auth.go b/service/auth.go
index d16fab9..ef701c1 100644
--- a/service/auth.go
+++ b/service/auth.go
@@ -10,6 +10,7 @@ import (
var (
errInvalidSession = errors.New("invalid session")
+ errInvalidAccessToken = errors.New("invalid access token")
errInvalidCSRFToken = errors.New("invalid csrf token")
)
@@ -23,7 +24,7 @@ func NewAuthService(sessionRepo model.SessionRepo, appRepo model.AppRepo, s Serv
return &as{sessionRepo, appRepo, s}
}
-func (s *as) authenticateClient(c *model.Client) (err error) {
+func (s *as) initClient(c *model.Client) (err error) {
if len(c.Ctx.SessionID) < 1 {
return errInvalidSession
}
@@ -46,6 +47,17 @@ func (s *as) authenticateClient(c *model.Client) (err error) {
return nil
}
+func (s *as) authenticateClient(c *model.Client) (err error) {
+ err = s.initClient(c)
+ if err != nil {
+ return
+ }
+ if len(c.Session.AccessToken) < 1 {
+ return errInvalidAccessToken
+ }
+ return nil
+}
+
func checkCSRF(c *model.Client) (err error) {
if c.Ctx.CSRFToken != c.Session.CSRFToken {
return errInvalidCSRFToken
@@ -179,7 +191,7 @@ func (s *as) NewSession(instance string) (redirectUrl string,
func (s *as) Signin(c *model.Client, sessionID string,
code string) (token string, userID string, err error) {
err = s.authenticateClient(c)
- if err != nil {
+ if err != nil && err != errInvalidAccessToken {
return
}
generated by cgit v1.2.3 (git 2.25.1) at 2024-04-18 21:43:22 +0000