mirror of
https://github.com/yusing/godoxy.git
synced 2026-04-24 17:28:31 +02:00
add a block page to oidc on invallid credentials, fix inifinite login redirect
This commit is contained in:
@@ -132,7 +132,7 @@ func (auth *OIDCProvider) CheckToken(r *http.Request) error {
|
||||
allowedUser := slices.Contains(auth.allowedUsers, claims.Username)
|
||||
allowedGroup := len(CE.Intersect(claims.Groups, auth.allowedGroups)) > 0
|
||||
if !allowedUser && !allowedGroup {
|
||||
return ErrUserNotAllowed.Subject(claims.Username)
|
||||
return ErrUserNotAllowed
|
||||
}
|
||||
return nil
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user