Add support for AbortHandler #251
Conversation
| } else { | ||
| return c.SendStatus(statusCode) | ||
| } |
There was a problem hiding this comment.
I usually never use else and do early returns instead.
| @@ -21,7 +21,10 @@ const DefaultClaimsContextKeyName ClaimsContextKeyName = "claims" | |||
| // ErrorHandler is called by the middleware if not nil | |||
| type ErrorHandler func(description ErrorDescription, err error) | |||
|
|
|||
| // ErrorDescription is used to pass the description of the error to ErrorHandler | |||
| // AbortHandler is called by the middleware if not nil | |||
| type AbortHandler func(c interface{}, statusCode int, description ErrorDescription, err error) | |||
There was a problem hiding this comment.
Is it possible to not use interface {} here?
There was a problem hiding this comment.
I note that ErrorHandler and AbortHandler are actually used only in the various web framework packages and I wonder if they shouldn't be removed and replaced by a mechanism that allows for framework-specific options? I'll try to PR a proposal in the coming days.
|
After some offline discussion, me and @landerss1 came to the conclusion that the current error handler is not very useful and that it would better to be able to provide a "failure handler" which gets a structured representation of the auth failure and would be expected to provide a status code, relevant headers and a []byte body. The framework adaptors would be expected to call this handle and convert the result to an actual HTTP response. Possibly, it should also be able to decide whether middleware evaluation should be aborted or not. Something like this: type Response struct {
StatusCode uint,
Headers map[string]string
Body []byte
}
func MyFailureHandler(failure Failure) *Response { ... }We think a "HTTP abstraction" interface is reasonable, since go-oidc-middleware seems to have no ambition to support anything non-HTTP and the basic HTTP structure seems unlikely to change anytime soon. @simongottschlag ? |
I'm quite fine with that, or at least I think so. If both of you think it's the way forward I listen to you! 😊 We do have this that isn't http, but maybe isn't affected? https://github.com/XenitAB/go-oidc-middleware/blob/main/oidctoken/token.go |
|
@simongottschlag Re oidctoken #253 |
|
Closing because alternative implementation in #252 merged. |
With this PR, we will have support for
AbortHandler, which will be responsible for sending a result and aborting the middleware processing. This is to address the current issue where theContent-Typeof the error response is alwaystext/plan.