letro/letro-authentication-service
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity

Mark access token as used when calling the userinfo endpoint

Browse Source
This commit is contained in:
Quentin Gliech
2024-12-10 17:45:52 +01:00
parent 6bda8b91d0
commit 6b1b3abfe9
2 changed files with 7 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
crates/axum-utils/src/user_authorization.rs
View File

@@ -117,6 +117,11 @@ impl<F: Send> UserAuthorization<F> {
return Err(AuthorizationVerificationError::InvalidToken);
}
if !token.is_used() {
// Mark the token as used
repo.oauth2_access_token().mark_used(clock, token).await?;
}
Ok(session)
}
}

2
crates/handlers/src/oauth2/userinfo.rs
View File

@@ -142,6 +142,8 @@ pub async fn get(
.await?
.ok_or(RouteError::NoSuchClient)?;
repo.save().await?;
if let Some(alg) = client.userinfo_signed_response_alg {
let key = key_store
.signing_key_for_algorithm(&alg)