Commit 0ed29d09 authored by James Edwards-Jones's avatar James Edwards-Jones

Show error on failed OAuth account link

parent 5ede4e78
...@@ -95,6 +95,8 @@ class OmniauthCallbacksController < Devise::OmniauthCallbacksController ...@@ -95,6 +95,8 @@ class OmniauthCallbacksController < Devise::OmniauthCallbacksController
if identity_linker.created? if identity_linker.created?
redirect_identity_linked redirect_identity_linked
elsif identity_linker.error_message.present?
redirect_identity_link_failed(identity_linker.error_message)
else else
redirect_identity_exists redirect_identity_exists
end end
...@@ -107,6 +109,10 @@ class OmniauthCallbacksController < Devise::OmniauthCallbacksController ...@@ -107,6 +109,10 @@ class OmniauthCallbacksController < Devise::OmniauthCallbacksController
redirect_to after_sign_in_path_for(current_user) redirect_to after_sign_in_path_for(current_user)
end end
def redirect_identity_link_failed(error_message)
redirect_to profile_account_path, notice: "Authentication failed: #{error_message}"
end
def redirect_identity_linked def redirect_identity_linked
redirect_to profile_account_path, notice: 'Authentication method updated' redirect_to profile_account_path, notice: 'Authentication method updated'
end end
......
...@@ -3,11 +3,23 @@ module Gitlab ...@@ -3,11 +3,23 @@ module Gitlab
module OAuth module OAuth
class IdentityLinker < OmniauthIdentityLinkerBase class IdentityLinker < OmniauthIdentityLinkerBase
def create_or_update def create_or_update
current_user.identities if identity.new_record?
.with_extern_uid(oauth['provider'], oauth['uid']) @created = identity.save
.first_or_create(extern_uid: oauth['uid']) end
end
def error_message
identity.validate
identity.errors.full_messages.join(', ')
end
private
@created = true def identity
@identity ||= current_user.identities
.with_extern_uid(oauth['provider'], oauth['uid'])
.first_or_initialize(extern_uid: oauth['uid'])
end end
end end
end end
......
...@@ -13,6 +13,10 @@ module Gitlab ...@@ -13,6 +13,10 @@ module Gitlab
@created @created
end end
def error_message
''
end
def create_or_update def create_or_update
raise NotImplementedError raise NotImplementedError
end end
......
...@@ -14,6 +14,26 @@ describe Gitlab::Auth::OAuth::IdentityLinker do ...@@ -14,6 +14,26 @@ describe Gitlab::Auth::OAuth::IdentityLinker do
it "doesn't create new identity" do it "doesn't create new identity" do
expect { subject.create_or_update }.not_to change { Identity.count } expect { subject.create_or_update }.not_to change { Identity.count }
end end
it "#created? returns false" do
subject.create_or_update
expect(subject).not_to be_created
end
end
context 'identity already linked to different user' do
let!(:identity) { create(:identity, provider: provider, extern_uid: uid) }
it "#created? returns false" do
subject.create_or_update
expect(subject).not_to be_created
end
it 'exposes error message' do
expect(subject.error_message).to eq 'Extern uid has already been taken'
end
end end
context 'identity needs to be created' do context 'identity needs to be created' do
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment