Handle a specific exception in the auth process

706dda00 · Lukas Burgey · 48b6b49d · 706dda00
Commit 706dda00 authored Oct 29, 2018 by Lukas Burgey
Hide whitespace changes
Inline Side-by-side

Showing with 21 additions and 12 deletions

feudal/backend/auth/v1/views/webpage.py feudal/backend/auth/v1/views/webpage.py +21 -12

No files found.
--- a/feudal/backend/auth/v1/views/webpage.py
+++ b/feudal/backend/auth/v1/views/webpage.py
@@ -9,6 +9,7 @@ from django.shortcuts import redirect
 from django.views import View
 from oic import rndstr
 from oic.oic.message import AuthorizationResponse
+from oic.oauth2.exception import HttpError
 from rest_framework import generics, views
 from rest_framework.permissions import AllowAny
 from rest_framework.response import Response
@@ -31,7 +32,6 @@ def select_oidc_config(request):
    issuer_uri_urlenc = request.GET.get('idp', None)
    idp_id = request.COOKIES.get(IDP_COOKIE_NAME, None)

-
    # IdP selection using the 'idp' url parameter
    try:
        if issuer_uri_urlenc is not None:
@@ -109,20 +109,29 @@ class AuthCallback(View):
            if not state == aresp['state']:
                raise AuthException('AuthCallback: States do not match')

-            ac_token_response = (
-                oidc_client.do_access_token_request(
-                    state=state,
-                    request_args={
-                        'code': aresp['code']
-                    },
+            ac_token_response = None
+            try:
+                ac_token_response = (
+                    oidc_client.do_access_token_request(
+                        state=state,
+                        request_args={
+                            'code': aresp['code']
+                        },
+                    )
                )
-            )
+            except HttpError as exception:
+                # this exception is throw
+                LOGGER.error('AuthCallback: Access Token Request: %s', exception)
+
+                # the error is deleted from the session when the state is delivered
+                request.session['error'] = 'Server Communication Error'
+                return redirect('/')

            # TODO retry in the future
-            #pyoidc_userinfo = oidc_client.do_user_info_request(
-            #    state=aresp["state"],
-            #)
-            #LOGGER.debug("pyoidc: %s", pyoidc_userinfo)
+            # pyoidc_userinfo = oidc_client.do_user_info_request(
+            #     state=aresp["state"],
+            # )
+            # LOGGER.debug("pyoidc: %s", pyoidc_userinfo)

            user = authenticate(
                request,