首页 发现 帮助
登录
golang
/
netmaker
镜像自地址 https://github.com/gravitl/netmaker
2
0
派生 0
文件 工单管理 0 Wiki
浏览代码

fix(NET-1155): sso login changes (#2905)

* fix(NET-1155): prompt for user account on each sso login

* fix(NET-1152): correct pending user response from rac
Aceix 1 年之前
父节点
7de252f996
当前提交
4a8ce7b6fa
共有 5 个文件被更改,包括 5 次插入5 次删除
分列视图 显示文件统计
  1. 1 1
      auth/azure-ad.go
  2. 1 1
      auth/github.go
  3. 1 1
      auth/google.go
  4. 1 1
      auth/headless_callback.go
  5. 1 1
      auth/oidc.go

+ 1 - 1
auth/azure-ad.go
查看文件 

@@ -121,7 +121,7 @@ func getAzureUserInfo(state string, code string) (*OAuthUser, error) {
 
 	if (!isValid || state != oauth_state_string) && !isStateCached(state) {
 
 		return nil, fmt.Errorf("invalid oauth state")
 
 	}
 
-	var token, err = auth_provider.Exchange(context.Background(), code)
 
+	var token, err = auth_provider.Exchange(context.Background(), code, oauth2.SetAuthURLParam("prompt", "login"))
 
 	if err != nil {
 
 		return nil, fmt.Errorf("code exchange failed: %s", err.Error())
 
 	}

+ 1 - 1
auth/github.go
查看文件 

@@ -121,7 +121,7 @@ func getGithubUserInfo(state string, code string) (*OAuthUser, error) {
 
 	if (!isValid || state != oauth_state_string) && !isStateCached(state) {
 
 		return nil, fmt.Errorf("invalid oauth state")
 
 	}
 
-	var token, err = auth_provider.Exchange(context.Background(), code)
 
+	var token, err = auth_provider.Exchange(context.Background(), code, oauth2.SetAuthURLParam("prompt", "login"))
 
 	if err != nil {
 
 		return nil, fmt.Errorf("code exchange failed: %s", err.Error())
 
 	}

+ 1 - 1
auth/google.go
查看文件 

@@ -124,7 +124,7 @@ func getGoogleUserInfo(state string, code string) (*OAuthUser, error) {
 
 	if (!isValid || state != oauth_state_string) && !isStateCached(state) {
 
 		return nil, fmt.Errorf("invalid oauth state")
 
 	}
 
-	var token, err = auth_provider.Exchange(context.Background(), code)
 
+	var token, err = auth_provider.Exchange(context.Background(), code, oauth2.SetAuthURLParam("prompt", "login"))
 
 	if err != nil {
 
 		return nil, fmt.Errorf("code exchange failed: %s", err.Error())
 
 	}

+ 1 - 1
auth/headless_callback.go
查看文件 

@@ -52,7 +52,7 @@ func HandleHeadlessSSOCallback(w http.ResponseWriter, r *http.Request) {
 
 
 	// check if user approval is already pending
 
 	if logic.IsPendingUser(userClaims.getUserName()) {
 
-		handleOauthUserNotAllowed(w)
 
+		handleOauthUserSignUpApprovalPending(w)
 
 		return
 
 	}
 
 	user, err := logic.GetUser(userClaims.getUserName())

+ 1 - 1
auth/oidc.go
查看文件 

@@ -146,7 +146,7 @@ func getOIDCUserInfo(state string, code string) (u *OAuthUser, e error) {
 
 	ctx, cancel := context.WithTimeout(context.Background(), OIDC_TIMEOUT)
 
 	defer cancel()
 
 
-	oauth2Token, err := auth_provider.Exchange(ctx, code)
 
+	oauth2Token, err := auth_provider.Exchange(ctx, code, oauth2.SetAuthURLParam("prompt", "login"))
 
 	if err != nil {
 
 		return nil, fmt.Errorf("failed to exchange oauth2 token using code \"%s\"", code)
 
 	}