Readd URL token and cleanup

Fix session values.
2025-07-23 04:51:39 +02:00 · 2023-08-12 09:02:41 +02:00
parent b8273a9b02
commit 19d645f65c
7 changed files with 83 additions and 59 deletions
--- a/internal/auth/jwtCookieSession.go
+++ b/internal/auth/jwtCookieSession.go
@@ -24,8 +24,6 @@ type JWTCookieSessionAuthenticator struct {
 	privateKey          ed25519.PrivateKey
 	publicKeyCrossLogin ed25519.PublicKey // For accepting externally generated JWTs

-	loginTokenKey []byte // HS256 key
-
 	config *schema.JWTAuthConfig
 }

@@ -55,15 +53,6 @@ func (ja *JWTCookieSessionAuthenticator) Init(auth *Authentication, conf interfa
 		ja.privateKey = ed25519.PrivateKey(bytes)
 	}

-	if pubKey = os.Getenv("CROSS_LOGIN_JWT_HS512_KEY"); pubKey != "" {
-		bytes, err := base64.StdEncoding.DecodeString(pubKey)
-		if err != nil {
-			log.Warn("Could not decode cross login JWT HS512 key")
-			return err
-		}
-		ja.loginTokenKey = bytes
-	}
-
 	// Look for external public keys
 	pubKeyCrossLogin, keyFound := os.LookupEnv("CROSS_LOGIN_JWT_PUBLIC_KEY")
 	if keyFound && pubKeyCrossLogin != "" {
@@ -105,13 +94,6 @@ func (ja *JWTCookieSessionAuthenticator) CanLogin(
 	rw http.ResponseWriter,
 	r *http.Request) bool {

-	if ja.publicKeyCrossLogin == nil ||
-		ja.config == nil ||
-		ja.config.TrustedExternalIssuer == "" {
-
-		return false
-	}
-
 	cookieName := ""
 	if ja.config != nil && ja.config.CookieName != "" {
 		cookieName = ja.config.CookieName