private/nexus
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

asaS

Browse Source
This commit is contained in:
Lars Gebhardt-Kusche
2026-03-04 22:25:31 +01:00
parent 13a45c0c55
commit c4b317d047
2 changed files with 14 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
public/page/auth_callback.php
View File

@@ -37,6 +37,7 @@ $client->validateIdToken($claims, $nonce);
unset($_SESSION['oidc_nonce']); unset($_SESSION['oidc_nonce']);
$groups = $client->groupsFromClaims($claims); $groups = $client->groupsFromClaims($claims);
$accessClaims = null;
if (!$groups && $accessToken !== '') { if (!$groups && $accessToken !== '') {
try { try {
$accessClaims = $client->decodeJwt($accessToken); $accessClaims = $client->decodeJwt($accessToken);
@@ -62,8 +63,15 @@ if (defined('APP_AUTH_DEBUG') && APP_AUTH_DEBUG) {
'email' => $user['email'], 'email' => $user['email'],
'name' => $user['name'], 'name' => $user['name'],
'groups' => $groups, 'groups' => $groups,
'iss' => $claims['iss'] ?? null, 'id_token_claims' => $claims,
'aud' => $claims['aud'] ?? null, 'access_token_claims' => $accessToken ? ($accessClaims ?? null) : null,
'token_meta' => [
'has_id_token' => $idToken !== '',
'has_access_token' => $accessToken !== '',
'expires_in' => $token['expires_in'] ?? null,
'refresh_expires_in' => $token['refresh_expires_in'] ?? null,
'scope' => $token['scope'] ?? null,
],
'claim_source' => !empty($groups) ? 'id_token_or_access_token' : 'none', 'claim_source' => !empty($groups) ? 'id_token_or_access_token' : 'none',
]; ];
@file_put_contents(__DIR__ . '/../../debug/oidc_login.log', json_encode($log) . PHP_EOL, FILE_APPEND); @file_put_contents(__DIR__ . '/../../debug/oidc_login.log', json_encode($log) . PHP_EOL, FILE_APPEND);

4
public/page/debug.php
View File

@@ -39,6 +39,10 @@ if (isset($_GET['raw']) && $_GET['raw'] === '1') {
<h1 style="margin-top:.75rem;">Debug Logs</h1> <h1 style="margin-top:.75rem;">Debug Logs</h1>
<p class="muted">Hier kannst du temporäre Log-Files aus dem <code>debug/</code>-Ordner ansehen.</p> <p class="muted">Hier kannst du temporäre Log-Files aus dem <code>debug/</code>-Ordner ansehen.</p>
<div style="margin-top:.5rem;">
<a class="nav-link" href="/debug?file=oidc_login.log">OIDC Login</a>
</div>
<div style="margin-top:1rem;" class="grid"> <div style="margin-top:1rem;" class="grid">
<div class="card" style="background:var(--panel-2);"> <div class="card" style="background:var(--panel-2);">
<strong>Logs</strong> <strong>Logs</strong>