Fixed penguins of death due to infinite loop of SSO login redirects

2026-01-23 16:32:15 +00:00 · 2016-11-02 23:50:49 +00:00
parent 01f754ad53
commit 0ad3aa7d3f
3 changed files with 9 additions and 3 deletions
--- a/RIGS/discourse/discourse.py
+++ b/RIGS/discourse/discourse.py
@@ -73,8 +73,11 @@ class DiscourseAuth(BaseAuth):
    def auth_complete(self, *args, **kwargs):
        """Completes login process, must return user instance."""

-        if not self.sso.validate(self.data['sso'], self.data['sig']):
-            raise Exception("Someone wants to hack us!")
+        try:
+            if not self.sso.validate(self.data['sso'], self.data['sig']):
+                raise Exception("Someone wants to hack us!")
+        except KeyError:
+            raise Exception("SSO Error, please try again")

        nonce = self.sso.get_nonce(self.data['sso'])
        nonce_obj = self.get_nonce(nonce)