auth: db-oauth2 - Do not fallback into remote validation anymore

author Aki Tuomi <aki.tuomi@open-xchange.com>

Tue, 26 May 2020 18:24:02 +0000 (21:24 +0300)

committer Aki Tuomi <aki.tuomi@open-xchange.com>

Wed, 27 May 2020 07:51:31 +0000 (10:51 +0300)
author Aki Tuomi <aki.tuomi@open-xchange.com>
Tue, 26 May 2020 18:24:02 +0000 (21:24 +0300)
committer Aki Tuomi <aki.tuomi@open-xchange.com>
Wed, 27 May 2020 07:51:31 +0000 (10:51 +0300)
diff --git a/src/auth/db-oauth2.c b/src/auth/db-oauth2.c

index 7e9aa7069798b91ae95f7497fdd4702625626746..d7d44868aaa7dc54e81b65ff7367f4dd5bc1c7a9 100644 (file)
--- a/src/auth/db-oauth2.c
+++ b/src/auth/db-oauth2.c
@@ -764,17 +764,10 @@ void db_oauth2_lookup(struct db_oauth2 *db, struct db_oauth2_request *req,
                 e_debug(authdb_event(req->auth_request),
                         "oauth2: Attempting to locally validate token");
                 /* will send result if ret = 0 */
-               if (db_oauth2_local_validation(req) == 0)
-                       return;
-               /* fallback to online validation */
-               if (*db->oauth2_set.tokeninfo_url == '\0' &&
-                   *db->oauth2_set.introspection_url == '\0') {
+               if (db_oauth2_local_validation(req) < 0)
                         db_oauth2_callback(req, PASSDB_RESULT_PASSWORD_MISMATCH,
                                            "oauth2: Not a JWT token");
-                       return;
-               }
-               e_debug(authdb_event(req->auth_request),
-                       "Token not a JWT token, falling back to online validation");
+               return;
  
         }
         if (db->oauth2_set.use_grant_password) {
author	Aki Tuomi <aki.tuomi@open-xchange.com>
	Tue, 26 May 2020 18:24:02 +0000 (21:24 +0300)
committer	Aki Tuomi <aki.tuomi@open-xchange.com>
	Wed, 27 May 2020 07:51:31 +0000 (10:51 +0300)