Skip to content

Commit

Permalink
minor refactoring
Browse files Browse the repository at this point in the history
  • Loading branch information
@bseber
bseber committed Jun 28, 2024
1 parent 2be0e99 commit 45d69c7
Showing 1 changed file with 7 additions and 5 deletions.
12 changes: 7 additions & 5 deletions src/main/java/de/focusshift/zeiterfassung/security/OAuth2TenantUserService.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -26,20 +26,22 @@ abstract class OAuth2TenantUserService implements OAuth2UserService<OidcUserRequ
public OidcUser loadUser(OidcUserRequest userRequest) throws OAuth2AuthenticationException {

final OidcUser oidcUser = delegate.loadUser(userRequest);
final Optional<TenantUser> tenantUser = loadTenantUser(userRequest, oidcUser);
final Optional<TenantUser> maybeTenantUser = loadTenantUser(userRequest, oidcUser);

if (tenantUser.isEmpty()) {
if (maybeTenantUser.isEmpty()) {
return oidcUser;
}

if (!tenantUser.get().isActive()) {
final TenantUser tenantUser = maybeTenantUser.get();

if (!tenantUser.isActive()) {
// prevent login of non-active users
throw new UserNotActiveException(tenantUser.get().id());
throw new UserNotActiveException(tenantUser.id());
}

final List<GrantedAuthority> combinedAuthorities = Stream.concat(
oidcUser.getAuthorities().stream(),
tenantUser.get().authorities().stream().map(SecurityRole::authority)
tenantUser.authorities().stream().map(SecurityRole::authority)
).toList();

return new DefaultOidcUser(combinedAuthorities, oidcUser.getIdToken(), oidcUser.getUserInfo());
Expand Down

0 comments on commit 45d69c7

Please sign in to comment.