From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from firstgate.proxmox.com (firstgate.proxmox.com [212.224.123.68]) by lore.proxmox.com (Postfix) with ESMTPS id 4FEB21FF15F for ; Mon, 16 Dec 2024 05:16:11 +0100 (CET) Received: from firstgate.proxmox.com (localhost [127.0.0.1]) by firstgate.proxmox.com (Proxmox) with ESMTP id 740DD3F97; Mon, 16 Dec 2024 05:16:21 +0100 (CET) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1734322541; x=1734927341; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=TkD/8XyGEuP6zEkWnQnWq808XAM8/hC5a9atm0/PunA=; b=LPLkOWIP4NBCWjf8iLr5MRauMUqguCf9BMgtZMbeztDo5z5//jAV4Kd3QDlw1lNKlF W2Bsp6yLC/5h1CeT2hkiTcmUt7GkWZFwypd9So+AnqeSdMnkE/xdT1q+UtGBpDk+U3bW hEDcny+g9wLqefLb9EIIN9BflT5lbSlZcnGAs7nlU+X744bXNTDozyWKnOXdtcrfq2kS wfM2M3zwh65TTZjOgwgx+944KCCiCAFKYmSp6IcCfGnPlrXotO9bXGEmLXBVZMizvkoD JQHs2j0mz7h/lyMNuHJom0iEI9asHX0JIybLwSam/ZKtzjjeAEqzKW+aKUt7v2g+8H5q 6YUA== X-Gm-Message-State: AOJu0YwQZvRnRvOFKYlwkctqNUmlkO2o5muDpyoRRlSOX1Nh3M4mklz8 +l10ZXE0YXvzX1qLMyFOWDe746zLydbA2H9R56PDwk0Lb/JSSmkXHXM6nA== X-Gm-Gg: ASbGncsORNP3iPKxhOp6GKoFp/o3eC7mxFK/Cxz3ukyDpENqLkMld+Cr62qHNAzRuvN HHgKdPC+rFcqf2Q7efXfN8rVYN95MvnaAOHta3MnntWbsKKAXt3CiuOdRK80UXHvTn3WOmV40Tg JFC03jP+KbKWPy+fqqDuc4Jk5/Fe5pRLJbv8jUkl9hMsIbF+f9iU4rfaVz7UdYDSVWAuM9eK4Bj IPrqTrWSz1J2DyQPXIdvKXbxP9T83PvJp5PBgOMZ6sjlQa4ok4DrQOaC5v/kgTD+wXIbwLtS1Hr nCNTc7Wf7/xZ+dPAqV/FUxpQA68+D1v0f3VSxgBL4BDIR2F/A+zvv1dWFjZevPOKJwfuBQ== X-Google-Smtp-Source: AGHT+IG5COJ0mLdHWm1nj6b5+11Cy/9rLTdzzpMWYK0JbVT/gfsf2Sp+AJd4DCKNbkPheaAdLHS6Sg== X-Received: by 2002:a05:6902:c0a:b0:e47:f4e3:8803 with SMTP id 3f1490d57ef6-e47f4e38e31mr3970244276.20.1734322540881; Sun, 15 Dec 2024 20:15:40 -0800 (PST) From: Thomas Skinner To: pve-devel@lists.proxmox.com Date: Sun, 15 Dec 2024 22:14:27 -0600 Message-Id: <20241216041428.1184350-5-thomas@atskinner.net> X-Mailer: git-send-email 2.39.5 In-Reply-To: <20241216041428.1184350-1-thomas@atskinner.net> References: <20241216041428.1184350-1-thomas@atskinner.net> MIME-Version: 1.0 X-SPAM-LEVEL: Spam detection results: 0 AWL 0.471 Adjusted score from AWL reputation of From: address BAYES_00 -1.9 Bayes spam probability is 0 to 1% DMARC_MISSING 0.1 Missing DMARC policy FREEMAIL_FORGED_FROMDOMAIN 0.001 2nd level domains in From and EnvelopeFrom freemail headers are different FREEMAIL_FROM 0.001 Sender email is commonly abused enduser mail provider HEADER_FROM_DIFFERENT_DOMAINS 0.248 From and EnvelopeFrom 2nd level mail domains are different KAM_DMARC_STATUS 0.01 Test Rule for DKIM or SPF Failure with Strict Alignment RCVD_IN_DNSWL_NONE -0.0001 Sender listed at https://www.dnswl.org/, no trust RCVD_IN_MSPIKE_H2 -1.13 Average reputation (+2) SPF_HELO_NONE 0.001 SPF: HELO does not publish an SPF Record SPF_PASS -0.001 SPF: sender matches SPF record Subject: [pve-devel] [PATCH perl-rs v2 4/5] fix #4234: openid: adjust openid verification function for userinfo option X-BeenThere: pve-devel@lists.proxmox.com X-Mailman-Version: 2.1.29 Precedence: list List-Id: Proxmox VE development discussion List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: Proxmox VE development discussion Cc: Thomas Skinner Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Errors-To: pve-devel-bounces@lists.proxmox.com Sender: "pve-devel" Signed-off-by: Thomas Skinner --- pve-rs/src/openid/mod.rs | 9 +++++++-- 1 file changed, 7 insertions(+), 2 deletions(-) diff --git a/pve-rs/src/openid/mod.rs b/pve-rs/src/openid/mod.rs index 1fa7572..cd573ee 100644 --- a/pve-rs/src/openid/mod.rs +++ b/pve-rs/src/openid/mod.rs @@ -50,13 +50,18 @@ mod export { } #[export(raw_return)] - pub fn verify_authorization_code( + pub fn verify_authorization_code_userinfo( #[try_from_ref] this: &OpenId, code: &str, private_auth_state: PrivateAuthState, + disable_userinfo: bool, ) -> Result { let open_id = this.inner.lock().unwrap(); - let claims = open_id.verify_authorization_code_simple(code, &private_auth_state)?; + let claims = open_id.verify_authorization_code_simple_userinfo( + code, + &private_auth_state, + disable_userinfo, + )?; Ok(to_value(&claims)?) } -- 2.39.5 _______________________________________________ pve-devel mailing list pve-devel@lists.proxmox.com https://lists.proxmox.com/cgi-bin/mailman/listinfo/pve-devel