3pp-mirror/pomerium
1
0
Fork 0
mirror of https://github.com/pomerium/pomerium.git synced 2025-08-04 01:09:36 +02:00
Code Issues Projects Releases Packages Wiki Activity

core/databroker: disable identity manager user refresh when hosted authenticate is used (#4905)

Browse source
This commit is contained in:
Caleb Doxsey 2024-01-12 13:30:03 -07:00 committed by GitHub
parent 1080a33443
commit 5e0079c649
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 21 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

18
config/options.go
View file

@ -841,6 +841,24 @@ func (o *Options) UseStatelessAuthenticateFlow() bool {
return urlutil.IsHostedAuthenticateDomain(u.Hostname())
}
// SupportsUserRefresh returns true if the config options support refreshing of user sessions.
func (o *Options) SupportsUserRefresh() bool {
if o == nil {
return false
}
if o.Provider == "" {
return false
}
u, err := o.GetInternalAuthenticateURL()
if err != nil {
return false
}
return !urlutil.IsHostedAuthenticateDomain(u.Hostname())
}
// GetAuthorizeURLs returns the AuthorizeURLs in the options or 127.0.0.1:5443.
func (o *Options) GetAuthorizeURLs() ([]*url.URL, error) {
if IsAll(o.Services) && o.AuthorizeURLString == "" && len(o.AuthorizeURLStrings) == 0 {