fix(op): check if getTokenIDAndClaims succeeded (#429)

When getTokenIDAndClaims didn't succeed, so `ok` would be false. This was ignored and the accessTokenClaims.Claims call would panic.
2023-08-18 18:54:58 +03:00 · 2023-08-18 18:54:58 +03:00 · 4ed269979e
commit 4ed269979e
parent 37b5de0e82
1 changed files with 3 additions and 0 deletions
--- a/pkg/op/token_exchange.go
+++ b/pkg/op/token_exchange.go
@ -282,6 +282,9 @@ func GetTokenIDAndSubjectFromToken(
 	case oidc.AccessTokenType:
 		var accessTokenClaims *oidc.AccessTokenClaims
 		tokenIDOrToken, subject, accessTokenClaims, ok = getTokenIDAndClaims(ctx, exchanger, token)
+		if !ok {
+			break
+		}
 		claims = accessTokenClaims.Claims
 	case oidc.RefreshTokenType:
 		refreshTokenRequest, err := exchanger.Storage().TokenRequestByRefreshToken(ctx, token)