fix: create openid session when log in succeeds

ory · Nov 18, 2024 · b3e1342 · b3e1342
1 parent 7f76c0a
commit b3e1342
Show file tree

Hide file tree

Showing 3 changed files with 1 addition and 27 deletions.
diff --git a/oauth2/handler.go b/oauth2/handler.go
@@ -784,7 +784,7 @@ func (h *Handler) performOAuth2DeviceVerificationFlow(w http.ResponseWriter, r *
 
 	// Update the OpenID Connect session if "openid" scope is granted
 	if req.GetGrantedScopes().Has("openid") {
-		err = h.r.OAuth2Storage().UpdateOpenIDConnectSessionByRequestID(ctx, f.DeviceCodeRequestID.String(), req)
+		err = h.r.OAuth2Storage().CreateOpenIDConnectSession(ctx, req.GetID(), req)
 		if err != nil {
 			x.LogError(r, err, h.r.Logger())
 			h.r.Writer().WriteError(w, r, err)

diff --git a/persistence/sql/persister_oauth2.go b/persistence/sql/persister_oauth2.go
@@ -499,30 +499,6 @@ func (p *Persister) CreateOpenIDConnectSession(ctx context.Context, signature st
 	return p.createSession(ctx, signature, requester, sqlTableOpenID, requester.GetSession().GetExpiresAt(fosite.AuthorizeCode).UTC())
 }
 
-// UpdateOpenIDConnectSessionByRequestID updates an OpenID session by requestID
-func (p *Persister) UpdateOpenIDConnectSessionByRequestID(ctx context.Context, requestID string, requester fosite.Requester) (err error) {
-	ctx, span := p.r.Tracer(ctx).Tracer().Start(ctx, "persistence.sql.UpdateOpenIDConnectSessionByRequestID")
-	defer otelx.End(span, &err)
-
-	req, err := p.sqlSchemaFromRequest(ctx, requestID, requester, sqlTableOpenID, requester.GetSession().GetExpiresAt(fosite.IDToken).UTC())
-	if err != nil {
-		return err
-	}
-
-	stmt := fmt.Sprintf(
-		"UPDATE %s SET granted_scope=?, granted_audience=?, session_data=? WHERE request_id=? AND nid = ?",
-		OAuth2RequestSQL{Table: sqlTableOpenID}.TableName(),
-	)
-
-	/* #nosec G201 table is static */
-	err = p.Connection(ctx).RawQuery(stmt, req.GrantedScope, req.GrantedAudience, req.Session, requestID, p.NetworkID(ctx)).Exec()
-	if err != nil {
-		return sqlcon.HandleError(err)
-	}
-
-	return nil
-}
-
 func (p *Persister) GetOpenIDConnectSession(ctx context.Context, signature string, requester fosite.Requester) (_ fosite.Requester, err error) {
 	ctx, span := p.r.Tracer(ctx).Tracer().Start(ctx, "persistence.sql.GetOpenIDConnectSession")
 	defer otelx.End(span, &err)

diff --git a/x/fosite_storer.go b/x/fosite_storer.go
@@ -40,8 +40,6 @@ type FositeStorer interface {
 
 	FlushInactiveRefreshTokens(ctx context.Context, notAfter time.Time, limit int, batchSize int) error
 
-	UpdateOpenIDConnectSessionByRequestID(ctx context.Context, requestID string, requester fosite.Requester) error
-
 	// DeleteOpenIDConnectSession deletes an OpenID Connect session.
 	// This is duplicated from Ory Fosite to help against deprecation linting errors.
 	DeleteOpenIDConnectSession(ctx context.Context, authorizeCode string) error