app/middleware/token_parser.go


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30

package middleware

import (
	"net/http"

	"github.com/xlgmokha/x/pkg/x"
	"gitlab.com/gitlab-org/software-supply-chain-security/authorization/sparkled/app/cfg"
	"gitlab.com/gitlab-org/software-supply-chain-security/authorization/sparkled/pkg/oidc"
	"gitlab.com/gitlab-org/software-supply-chain-security/authorization/sparkled/pkg/pls"
	"gitlab.com/gitlab-org/software-supply-chain-security/authorization/sparkled/pkg/web"
)

type TokenParser x.Mapper[*http.Request, oidc.RawToken]

func IDTokenFromSessionCookie(r *http.Request) oidc.RawToken {
	cookies := r.CookiesNamed(cfg.SessionCookie)

	if len(cookies) != 1 {
		return ""
	}

	value := web.CookieValueFrom(cookies[0])
	tokens, err := oidc.TokensFromBase64String(value)
	if err != nil {
		pls.LogError(r.Context(), err)
		return ""
	}

	return tokens.IDToken
}