0001-idp_oidc-adapt-error-message-for-expired-codes-67277.patch
| src/authentic2_idp_oidc/views.py | ||
|---|---|---|
| 732 | 732 |
code = request.POST.get('code')
|
| 733 | 733 |
if not code: |
| 734 | 734 |
raise MissingParameter('code', client=client)
|
| 735 |
oidc_code_qs = models.OIDCCode.objects.filter(expired__gte=now()).select_related() |
|
| 735 | 736 |
try: |
| 736 |
oidc_code = models.OIDCCode.objects.select_related().get(uuid=code)
|
|
| 737 |
oidc_code = oidc_code_qs.get(uuid=code)
|
|
| 737 | 738 |
except models.OIDCCode.DoesNotExist: |
| 738 |
raise InvalidGrant(_('Code is unknown.'), client=client)
|
|
| 739 |
raise InvalidGrant(_('Code is unknown or has expired.'), client=client)
|
|
| 739 | 740 |
if not oidc_code.is_valid(): |
| 740 |
raise InvalidGrant(_('Code has expired, user is disconnected or session was lost.'), client=client)
|
|
| 741 |
raise InvalidGrant(_('User is disconnected or session was lost.'), client=client)
|
|
| 741 | 742 |
redirect_uri = request.POST.get('redirect_uri')
|
| 742 | 743 |
if oidc_code.redirect_uri != redirect_uri: |
| 743 | 744 |
raise InvalidGrant(_('Redirect_uri does not match the code.'), client=client)
|
| 744 |
- |
|