cffa353ffb
Also: - Add CSS to login page - Refactor login page HTML and CSS into a new package - New custom CSP headers for the login page, because the requirements are different from the form_post page
43 lines
1.2 KiB
Go
43 lines
1.2 KiB
Go
// Copyright 2022 the Pinniped contributors. All Rights Reserved.
|
|
// SPDX-License-Identifier: Apache-2.0
|
|
|
|
package login
|
|
|
|
import (
|
|
"net/http"
|
|
|
|
"go.pinniped.dev/internal/oidc"
|
|
"go.pinniped.dev/internal/oidc/login/loginhtml"
|
|
)
|
|
|
|
const (
|
|
internalErrorMessage = "An internal error occurred. Please contact your administrator for help."
|
|
incorrectUsernameOrPasswordErrorMessage = "Incorrect username or password."
|
|
)
|
|
|
|
func NewGetHandler() HandlerFunc {
|
|
return func(w http.ResponseWriter, r *http.Request, encodedState string, decodedState *oidc.UpstreamStateParamData) error {
|
|
alertMessage, hasAlert := getAlert(r)
|
|
|
|
pageInputs := &loginhtml.PageData{
|
|
PostPath: r.URL.Path, // the path for POST is the same as for GET
|
|
State: encodedState,
|
|
IDPName: decodedState.UpstreamName,
|
|
HasAlertError: hasAlert,
|
|
AlertMessage: alertMessage,
|
|
}
|
|
return loginhtml.Template().Execute(w, pageInputs)
|
|
}
|
|
}
|
|
|
|
func getAlert(r *http.Request) (string, bool) {
|
|
errorParamValue := r.URL.Query().Get(errParamName)
|
|
|
|
message := internalErrorMessage
|
|
if errorParamValue == string(ShowBadUserPassErr) {
|
|
message = incorrectUsernameOrPasswordErrorMessage
|
|
}
|
|
|
|
return message, errorParamValue != ""
|
|
}
|