vbatts/quay
Archived
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity

Include invalid oidc token in the error message for debugging

Browse source
This commit is contained in:
Evan Cordell 2017-07-07 13:07:00 -04:00 committed by Joseph Schorr
parent ed897c7cb0
commit 1d246784dd
3 changed files with 9 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

5
data/users/__init__.py
View file

@ -26,7 +26,10 @@ def get_federated_service_name(authentication_type):
return 'keystone'
if authentication_type == 'OIDC':
return 'oidc'
return None
if authentication_type == 'Database':
return None
raise Exception('Unknown auth type: %s' % authentication_type)

4
data/users/oidc.py
View file

@ -39,10 +39,10 @@ class OIDCInternalAuth(object):
try:
payload = self.login_service.decode_user_jwt(id_token)
except InvalidTokenError as ite:
logger.exception('Got invalid token error on OIDC decode: %s', ite.message)
logger.exception('Got invalid token error on OIDC decode: %s. Token: %s', ite.message, id_token)
return (None, 'Could not validate OIDC token')
except PublicKeyLoadException as pke:
logger.exception('Could not load public key during OIDC decode: %s', pke.message)
logger.exception('Could not load public key during OIDC decode: %s. Token: %s', pke.message, id_token)
return (None, 'Could not validate OIDC token')
# Find the user ID.