fix: handle server error when refresh token requests come same time (#…

…3207) Signed-off-by: sawadashota <shota@sslife.tech>
ory · Aug 18, 2022 · 68755ac · 68755ac
1 parent 943d01a
commit 68755ac
Showing 1 changed file with 10 additions and 2 deletions.
diff --git a/persistence/sql/persister_oauth2.go b/persistence/sql/persister_oauth2.go
@@ -272,11 +272,19 @@ func (p *Persister) deleteSessionBySignature(ctx context.Context, signature stri
 
 	signature = p.hashSignature(ctx, signature, table)
 
-	/* #nosec G201 table is static */
-	return sqlcon.HandleError(
+	err := sqlcon.HandleError(
 		p.QueryWithNetwork(ctx).
 			Where("signature=?", signature).
 			Delete(&OAuth2RequestSQL{Table: table}))
+
+	if errors.Is(err, sqlcon.ErrNoRows) {
+		return errorsx.WithStack(fosite.ErrNotFound)
+	} else if errors.Is(err, sqlcon.ErrConcurrentUpdate) {
+		return errors.Wrap(fosite.ErrSerializationFailure, err.Error())
+	} else if err != nil {
+		return err
+	}
+	return nil
 }
 
 func (p *Persister) deleteSessionByRequestID(ctx context.Context, id string, table tableName) error {