Fix missing LoginChallenge and LoginSessionID from GetConsentRequest #1105
Conversation
|
Yup, that looks definitely like a bug! Can you please add a test for this as well? I think one place to do that is here and another one in this file. Thank you! |
|
Oh sorry, I missed that you added it to the latter file already. Adding it to the first one should assure that the behaviour is correct across all managers. |
|
Because another PR was merged, there's a small conflict now which has to be addressed as well. |
jcxplorer
force-pushed
the
bugfix/consent-respond-with-login-session-id-and-challenge
branch
from
bd1d76a to
dda5af2
Compare
|
Thanks for looking at this so quickly, and for the pointers! I've rebased, and also added the LoginChallenge assertion to compareConsentRequest. However, adding an assertion for LoginSessionID causes a bunch of test failures. I know that a login session ID is only provided in certain cases, but unsure of how to add it to the test. Any idea how to proceed? |
|
Hm, that's interesting, the session ID should always be set. Maybe it hints to another error? |
…response Signed-off-by: Joao Cardoso <mail@joao-carlos.com>
jcxplorer
force-pushed
the
bugfix/consent-respond-with-login-session-id-and-challenge
branch
from
dda5af2 to
428b8a3
Compare
|
Found the issue. There were two struct fields with the same tag of What I've done was rename I've also added the missing test for session ID in the authentication request and also fixed that converter. |
|
Yeah awesome, good thing the other test was added too :) Thank you! |
|
And thank you @aeneasr for handling this so quickly. This feature makes Hydra really flexible for us. 👍 |
I believe this was missing from #1013. Responses from
GET /oauth2/auth/requests/consent/:challengehave thelogin_challengeandlogin_session_idfields, but they're always empty strings, because they were not being converted from the database response.This PR adds the missing fields to the relevant SQL converter test and implementation.
cc @aeneasr