vikunja/pkg/modules/auth/openid
kolaente 783c0dd52a refactor(auth): make OIDC email-only fallback explicit instead of an empty-username sentinel
The fallback block only runs when EmailFallback || UsernameFallback, so when
UsernameFallback is off the else branch (previously an empty-username candidate)
is the email-only lookup path: it must still run one GetUserWithEmail to link an
existing local user by email. Removing it entirely would skip that lookup and
create a duplicate user for the emailfallback-only config.

Replace the empty-string sentinel with an explicit []*user.User candidate list
built in a small helper, keeping the same behavior, and assert no duplicate is
created in the email-only fallback test.
2026-06-19 19:38:10 +02:00
..
cron.go fix: add missing Commit() to write callers 2026-02-25 11:03:02 +01:00
main_test.go feat: move to slog for logging 2025-07-21 18:15:39 +02:00
openid.go refactor(auth): make OIDC email-only fallback explicit instead of an empty-username sentinel 2026-06-19 19:38:10 +02:00
openid_test.go refactor(auth): make OIDC email-only fallback explicit instead of an empty-username sentinel 2026-06-19 19:38:10 +02:00
providers.go fix(auth): tolerate string booleans in oidc provider config (#2599) 2026-04-11 19:10:26 +00:00
providers_test.go test(auth): cover env-var string booleans for oidc providers (#2599) 2026-04-11 19:10:26 +00:00