oxidecomputer · luqmana · Aug 16, 2022 · Aug 16, 2022
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/nexus/db-model/src/device_auth.rs b/nexus/db-model/src/device_auth.rs
@@ -33,13 +33,17 @@ pub struct DeviceAuthRequest {
 
 impl DeviceAuthRequest {
     // We need the host to construct absolute verification URIs.
-    pub fn into_response(self, host: &str) -> views::DeviceAuthResponse {
+    pub fn into_response(
+        self,
+        tls: bool,
+        host: &str,
+    ) -> views::DeviceAuthResponse {
+        let scheme = if tls { "https" } else { "http" };
         views::DeviceAuthResponse {
-            // TODO-security: use HTTPS
-            verification_uri: format!("http://{}/device/verify", host),
+            verification_uri: format!("{scheme}://{host}/device/verify"),
             verification_uri_complete: format!(
-                "http://{}/device/verify?user_code={}",
-                host, &self.user_code
+                "{scheme}://{host}/device/verify?user_code={}",
+                &self.user_code
             ),
             user_code: self.user_code,
             device_code: self.device_code,

diff --git a/nexus/src/external_api/device_auth.rs b/nexus/src/external_api/device_auth.rs
@@ -110,7 +110,10 @@ pub async fn device_auth_request(
 
         let model =
             nexus.device_auth_request_create(&opctx, params.client_id).await?;
-        build_oauth_response(StatusCode::OK, &model.into_response(host))
+        build_oauth_response(
+            StatusCode::OK,
+            &model.into_response(rqctx.server.tls, host),
+        )
     };
     // TODO: instrumentation doesn't work because we use `Response<Body>`
     //apictx.external_latencies.instrument_dropshot_handler(&rqctx, handler).await