Remove user entry from the user_db in the case of stateless flow

Author: smalihaider-daasi

src/satosa/frontends/openid_connect.py

@@ -67,9 +67,10 @@ def __init__(self, auth_req_callback_func, internal_attributes, conf, base_url,
         )
 
         db_uri = self.config.get("db_uri")
+        self.stateless = StorageBase.type(db_uri) == "stateless"
         self.user_db = (
             StorageBase.from_uri(db_uri, db_name="satosa", collection="authz_codes")
-            if db_uri and not StorageBase.type(db_uri) == "stateless"
+            if db_uri and not self.stateless
             else {}
         )
 
@@ -130,6 +131,9 @@ def handle_authn_response(self, context, internal_resp):
                 self._get_extra_id_token_claims(user_id, client_id),
         )
 
+        if self.stateless:
+            del self.user_db[internal_resp.subject_id]
+
         del context.state[self.name]
         http_response = auth_resp.request(auth_req["redirect_uri"], should_fragment_encode(auth_req))
         return SeeOther(http_response)