fix(oidc): multiple state cookies being sent to frontend causing invalid oauth state

internal/auth/auth.go

@@ -1,7 +1,6 @@
 package auth
 
 import (
-	"context"
 	"net/http"
 
 	"github.com/yusing/go-proxy/internal/common"
@@ -49,12 +48,7 @@ func RequireAuth(next http.HandlerFunc) http.HandlerFunc {
 	}
 	return func(w http.ResponseWriter, r *http.Request) {
 		if err := defaultAuth.CheckToken(r); err != nil {
-			if IsFrontend(r) {
-				r = r.WithContext(context.WithValue(r.Context(), nextHandlerContextKey, next))
-				defaultAuth.LoginHandler(w, r)
-			} else {
-				gphttp.Unauthorized(w, err.Error())
-			}
+			gphttp.Unauthorized(w, err.Error())
 			return
 		}
 		next(w, r)

internal/net/gphttp/server/server.go

@@ -73,6 +73,7 @@ func NewServer(opt Options) (s *Server) {
 			Handler: opt.Handler,
 			TLSConfig: &tls.Config{
 				GetCertificate: opt.CertProvider.GetCert,
+				MinVersion:     tls.VersionTLS12,
 			},
 		}
 	}
@@ -169,7 +170,7 @@ func stop[Server httpServer](srv Server, logger *zerolog.Logger) {
 
 	proto := proto(srv)
 
-	ctx, cancel := context.WithTimeout(task.RootContext(), 3*time.Second)
+	ctx, cancel := context.WithTimeout(task.RootContext(), 1*time.Second)
 	defer cancel()
 
 	if err := srv.Shutdown(ctx); err != nil {