From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <pve-devel-bounces@lists.proxmox.com>
Received: from firstgate.proxmox.com (firstgate.proxmox.com [212.224.123.68])
	by lore.proxmox.com (Postfix) with ESMTPS id 4FEB21FF15F
	for <inbox@lore.proxmox.com>; Mon, 16 Dec 2024 05:16:11 +0100 (CET)
Received: from firstgate.proxmox.com (localhost [127.0.0.1])
	by firstgate.proxmox.com (Proxmox) with ESMTP id 740DD3F97;
	Mon, 16 Dec 2024 05:16:21 +0100 (CET)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20230601; t=1734322541; x=1734927341;
 h=content-transfer-encoding:mime-version:references:in-reply-to
 :message-id:date:subject:cc:to:from:x-gm-message-state:from:to:cc
 :subject:date:message-id:reply-to;
 bh=TkD/8XyGEuP6zEkWnQnWq808XAM8/hC5a9atm0/PunA=;
 b=LPLkOWIP4NBCWjf8iLr5MRauMUqguCf9BMgtZMbeztDo5z5//jAV4Kd3QDlw1lNKlF
 W2Bsp6yLC/5h1CeT2hkiTcmUt7GkWZFwypd9So+AnqeSdMnkE/xdT1q+UtGBpDk+U3bW
 hEDcny+g9wLqefLb9EIIN9BflT5lbSlZcnGAs7nlU+X744bXNTDozyWKnOXdtcrfq2kS
 wfM2M3zwh65TTZjOgwgx+944KCCiCAFKYmSp6IcCfGnPlrXotO9bXGEmLXBVZMizvkoD
 JQHs2j0mz7h/lyMNuHJom0iEI9asHX0JIybLwSam/ZKtzjjeAEqzKW+aKUt7v2g+8H5q
 6YUA==
X-Gm-Message-State: AOJu0YwQZvRnRvOFKYlwkctqNUmlkO2o5muDpyoRRlSOX1Nh3M4mklz8
 +l10ZXE0YXvzX1qLMyFOWDe746zLydbA2H9R56PDwk0Lb/JSSmkXHXM6nA==
X-Gm-Gg: ASbGncsORNP3iPKxhOp6GKoFp/o3eC7mxFK/Cxz3ukyDpENqLkMld+Cr62qHNAzRuvN
 HHgKdPC+rFcqf2Q7efXfN8rVYN95MvnaAOHta3MnntWbsKKAXt3CiuOdRK80UXHvTn3WOmV40Tg
 JFC03jP+KbKWPy+fqqDuc4Jk5/Fe5pRLJbv8jUkl9hMsIbF+f9iU4rfaVz7UdYDSVWAuM9eK4Bj
 IPrqTrWSz1J2DyQPXIdvKXbxP9T83PvJp5PBgOMZ6sjlQa4ok4DrQOaC5v/kgTD+wXIbwLtS1Hr
 nCNTc7Wf7/xZ+dPAqV/FUxpQA68+D1v0f3VSxgBL4BDIR2F/A+zvv1dWFjZevPOKJwfuBQ==
X-Google-Smtp-Source: AGHT+IG5COJ0mLdHWm1nj6b5+11Cy/9rLTdzzpMWYK0JbVT/gfsf2Sp+AJd4DCKNbkPheaAdLHS6Sg==
X-Received: by 2002:a05:6902:c0a:b0:e47:f4e3:8803 with SMTP id
 3f1490d57ef6-e47f4e38e31mr3970244276.20.1734322540881; 
 Sun, 15 Dec 2024 20:15:40 -0800 (PST)
From: Thomas Skinner <thomas@atskinner.net>
To: pve-devel@lists.proxmox.com
Date: Sun, 15 Dec 2024 22:14:27 -0600
Message-Id: <20241216041428.1184350-5-thomas@atskinner.net>
X-Mailer: git-send-email 2.39.5
In-Reply-To: <20241216041428.1184350-1-thomas@atskinner.net>
References: <20241216041428.1184350-1-thomas@atskinner.net>
MIME-Version: 1.0
X-SPAM-LEVEL: Spam detection results:  0
 AWL 0.471 Adjusted score from AWL reputation of From: address
 BAYES_00                 -1.9 Bayes spam probability is 0 to 1%
 DMARC_MISSING             0.1 Missing DMARC policy
 FREEMAIL_FORGED_FROMDOMAIN 0.001 2nd level domains in From and EnvelopeFrom
 freemail headers are different
 FREEMAIL_FROM 0.001 Sender email is commonly abused enduser mail provider
 HEADER_FROM_DIFFERENT_DOMAINS 0.248 From and EnvelopeFrom 2nd level mail
 domains are different
 KAM_DMARC_STATUS 0.01 Test Rule for DKIM or SPF Failure with Strict Alignment
 RCVD_IN_DNSWL_NONE     -0.0001 Sender listed at https://www.dnswl.org/,
 no trust RCVD_IN_MSPIKE_H2       -1.13 Average reputation (+2)
 SPF_HELO_NONE           0.001 SPF: HELO does not publish an SPF Record
 SPF_PASS               -0.001 SPF: sender matches SPF record
Subject: [pve-devel] [PATCH perl-rs v2 4/5] fix #4234: openid: adjust openid
 verification function for userinfo option
X-BeenThere: pve-devel@lists.proxmox.com
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Proxmox VE development discussion <pve-devel.lists.proxmox.com>
List-Unsubscribe: <https://lists.proxmox.com/cgi-bin/mailman/options/pve-devel>, 
 <mailto:pve-devel-request@lists.proxmox.com?subject=unsubscribe>
List-Archive: <http://lists.proxmox.com/pipermail/pve-devel/>
List-Post: <mailto:pve-devel@lists.proxmox.com>
List-Help: <mailto:pve-devel-request@lists.proxmox.com?subject=help>
List-Subscribe: <https://lists.proxmox.com/cgi-bin/mailman/listinfo/pve-devel>, 
 <mailto:pve-devel-request@lists.proxmox.com?subject=subscribe>
Reply-To: Proxmox VE development discussion <pve-devel@lists.proxmox.com>
Cc: Thomas Skinner <thomas@atskinner.net>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: pve-devel-bounces@lists.proxmox.com
Sender: "pve-devel" <pve-devel-bounces@lists.proxmox.com>

Signed-off-by: Thomas Skinner <thomas@atskinner.net>
---
 pve-rs/src/openid/mod.rs | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/pve-rs/src/openid/mod.rs b/pve-rs/src/openid/mod.rs
index 1fa7572..cd573ee 100644
--- a/pve-rs/src/openid/mod.rs
+++ b/pve-rs/src/openid/mod.rs
@@ -50,13 +50,18 @@ mod export {
     }
 
     #[export(raw_return)]
-    pub fn verify_authorization_code(
+    pub fn verify_authorization_code_userinfo(
         #[try_from_ref] this: &OpenId,
         code: &str,
         private_auth_state: PrivateAuthState,
+        disable_userinfo: bool,
     ) -> Result<Value, Error> {
         let open_id = this.inner.lock().unwrap();
-        let claims = open_id.verify_authorization_code_simple(code, &private_auth_state)?;
+        let claims = open_id.verify_authorization_code_simple_userinfo(
+            code,
+            &private_auth_state,
+            disable_userinfo,
+        )?;
 
         Ok(to_value(&claims)?)
     }
-- 
2.39.5


_______________________________________________
pve-devel mailing list
pve-devel@lists.proxmox.com
https://lists.proxmox.com/cgi-bin/mailman/listinfo/pve-devel