andreas/heartbeat
Public Access
1
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases 44 Wiki Activity

fix: coerce malformed profile JSON to OAuthError; add redirect_uri assertion

Browse Source 
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This commit is contained in:
Andreas Wrede
2026-05-09 08:46:19 -04:00
parent 87aeec5999
commit 2f5da9fc5e
2 changed files with 6 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
hbd/server/oauth.py
+5 -2
View File
@@ -241,8 +241,11 @@ async def fetch_user(provider: ResolvedProvider, token: str) -> dict:
except aiohttp.ClientError as exc:
raise OAuthError(f"User fetch network error: {exc}") from exc
for key in provider.profile_data_path:
data = data.get(key, {})
try:
for key in provider.profile_data_path:
data = data.get(key, {})
except AttributeError:
raise OAuthError(f"Unexpected profile response structure from {provider.type}")
avatar_field = provider.field_map.get("avatar")
return {
tests/test_oauth.py
+1
View File
@@ -363,6 +363,7 @@ def test_build_auth_url_gitea():
assert qs["state"] == ["teststate"]
assert qs["scope"] == ["user:email"]
assert qs["response_type"] == ["code"]
assert qs["redirect_uri"] == ["https://hbd.example.com/login/oauth/gitea/callback"]
def test_build_auth_url_github():