TyleoDvDelaware3217/GoDoxy
1
0
Fork 0
mirror of https://github.com/yusing/godoxy.git synced 2025-06-01 01:22:34 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

fix(oidc): restore old user matching behavior

Browse source
This commit is contained in:
yusing 2025-05-25 09:14:54 +08:00
parent f0ab14cb1e
commit 82ee75daab
1 changed files with 4 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
internal/auth/oidc.go
View file

@ -201,11 +201,12 @@ func parseClaims(idToken *oidc.IDToken) (*IDTokenClaims, error) {
func (auth *OIDCProvider) checkAllowed(user string, groups []string) bool { func (auth *OIDCProvider) checkAllowed(user string, groups []string) bool {
userAllowed := slices.Contains(auth.allowedUsers, user) userAllowed := slices.Contains(auth.allowedUsers, user)
if !userAllowed { if userAllowed {
return false return true
} }
if len(auth.allowedGroups) == 0 { if len(auth.allowedGroups) == 0 {
return true // user is not allowed, but no groups are allowed
return false
} }
return len(utils.Intersect(groups, auth.allowedGroups)) > 0 return len(utils.Intersect(groups, auth.allowedGroups)) > 0
} }