refactor: inline usage of validate id token

author: mo khan <mo@mokhan.ca> 2025-05-15 09:26:52 -0600
committer: mo khan <mo@mokhan.ca> 2025-05-15 09:26:52 -0600
commit: 7605ca4106ff230cc326a6bbf059bd1dd6f5fa8d (patch)
tree: bcf937df4151314e998457fedcb68aff5cc2bc55 /app/middleware/id_token.go
parent: 930e8adfc85331d9f16a903a34c8b0cfb9c1d11a (diff)
1 files changed, 3 insertions, 1 deletions
diff --git a/app/middleware/id_token.go b/app/middleware/id_token.go
index dbaf691..cc5e79b 100644
--- a/app/middleware/id_token.go
+++ b/app/middleware/id_token.go
@@ -3,6 +3,7 @@ package middleware
 import (
 	"net/http"
 
+	xoidc "github.com/coreos/go-oidc/v3/oidc"
 	"github.com/xlgmokha/x/pkg/log"
 	"github.com/xlgmokha/x/pkg/x"
 	xcfg "gitlab.com/gitlab-org/software-supply-chain-security/authorization/sparkled/app/cfg"
@@ -17,7 +18,8 @@ func IDToken(cfg *oidc.OpenID, parsers ...TokenParser) func(http.Handler) http.H
 			for _, parser := range parsers {
 				rawIDToken := parser(r)
 				if x.IsPresent(rawIDToken) {
-					idToken, err := cfg.ValidateIDToken(r.Context(), rawIDToken)
+					verifier := cfg.Provider.VerifierContext(r.Context(), &xoidc.Config{ClientID: cfg.Config.ClientID})
+					idToken, err := verifier.Verify(r.Context(), rawIDToken.String())
 
 					if err != nil {
 						pls.LogError(r.Context(), err)
author	mo khan <mo@mokhan.ca>	2025-05-15 09:26:52 -0600
committer	mo khan <mo@mokhan.ca>	2025-05-15 09:26:52 -0600
commit	7605ca4106ff230cc326a6bbf059bd1dd6f5fa8d (patch)
tree	bcf937df4151314e998457fedcb68aff5cc2bc55 /app/middleware/id_token.go
parent	930e8adfc85331d9f16a903a34c8b0cfb9c1d11a (diff)