Minor restructure for greater confidence that only authenticated requests are proxied #180
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…icity allowed, rather than as implicit dangling else
JoelSpeed
reviewed
Jun 15, 2019
oauthproxy.go
Outdated
| status := p.Authenticate(rw, req) | ||
| if status == http.StatusAccepted { | ||
| session, err := p.getAuthenticatedSession(rw, req) | ||
| switch err { |
There was a problem hiding this comment.
Is there any reason for using a switch here? Would a typical if err != nil block not suffice? (I say != as I would personally reorder the statements so that the happy path is the least indented)
There was a problem hiding this comment.
Agreed - I think my first pass handled one type of error differently. Now though with only a non-nil check, the switch makes no sense. Have fixed as suggested. Thanks!
JoelSpeed
approved these changes
Jun 15, 2019
Jing-ze
pushed a commit
to Jing-ze/oauth2-proxy
that referenced
this pull request
Nov 19, 2024
Signed-off-by: bitliu <bitliu@tencent.com>
T-vK
pushed a commit
to T-vK/oauth2-proxy
that referenced
this pull request
Nov 20, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description
We've been reviewing parts of the code base to evaluate usage of this app (and we like what we see so far :) ). This PR is a minor tidy up that I think makes crucial parts easier to reason about.
It splits the
Authenticate()method which previously returned an HTTP status code into 2 methods, one to handle session related work and which returns a more standard Go error code, and a second to add headers to requests.It then changes both invocations such that only a
nilerror code regards the session as authenticated, whereas the old code didn't explicitly check for success, rather it checked for known errors and then assumed in the absence of an expected error code, it would imply success.Motivation and Context
I found the old code a little difficult to reason about in terms of what side-effects
Authenticate()had, and it was more work for someone reading the code to need to follow everything the method did in order for the caller to be satisfied that they were handlng it correctly.For example, with the code as is, if in the future someone modified the
Authenticate()method to return a 400 bad request if the JSON cookie wouldn't unmarshal, which on it's own would be totally reasonable, the request would then be proxied through to the upstream server as the current code would fall through to fail open if an unexpected error was returned.How Has This Been Tested?
It hasn't. The code changes are pretty small, and it is assumed the unit tests and code review will pick up any issues.
Checklist: