使用KeyError()重定向到oAuth提供程序时获取‘redirect_to_auth_server:目的’

Question

我想要一种使用烧瓶.激活和停用检查的方法

使用@require_login装饰器是一个问题，因为它不能被停用。例如：

g_use_oidc = True # <= A global boolean to activate or deactivate OIDC at application level

@app.route('/') # <= Flask routing
@require_login # <= Flask-OIDC making redirection to oAuth provider
def home():
    return render_template('index.html')

当我被重定向到我的oAUth提供程序时，这在OIDC中运行得很好。但是现在我希望g_use_oidc设置为False，@require_login停止重定向调用。

为了实现这一点，我创建了一个装饰器来检查g_use_oidc状态，如下所示：

def check_oidc_test(func):

    @wraps()
    def inner():
        if not use_oidc or oidc.user_loggedin == True:
            func()
        elif use_oidc and oidc.user_loggedin == False:
            return oidc.redirect_to_auth_server(None, request.values) # <= Redirection to OIDC provider as shown in the doc
    return inner

我应该能用这样的装潢师：

@app.route('/')
@check_oidc # <= my new decorator
def home():
    return render_template('index.html')

不幸的是，我从OIDC获得了这个堆栈跟踪：

Traceback (most recent call last):
  File "x.local/lib/python3.8/site-packages/flask/app.py", line 2088, in __call__
    return self.wsgi_app(environ, start_response)
  File "x.local/lib/python3.8/site-packages/flask/app.py", line 2073, in wsgi_app
    response = self.handle_exception(e)
  File "x.local/lib/python3.8/site-packages/flask/app.py", line 2070, in wsgi_app
    response = self.full_dispatch_request()
  File "x.local/lib/python3.8/site-packages/flask/app.py", line 1515, in full_dispatch_request
    rv = self.handle_user_exception(e)
  File "x.local/lib/python3.8/site-packages/flask/app.py", line 1513, in full_dispatch_request
    rv = self.dispatch_request()
  File "x.local/lib/python3.8/site-packages/flask/app.py", line 1499, in dispatch_request
    return self.ensure_sync(self.view_functions[rule.endpoint])(**req.view_args)
  File "x.local/lib/python3.8/site-packages/flask_oidc/__init__.py", line 657, in _oidc_callback
    plainreturn, data = self._process_callback('destination')
  File "x.local/lib/python3.8/site-packages/flask_oidc/__init__.py", line 707, in _process_callback
    response = self.extra_data_serializer.loads(state[statefield])
KeyError: 'destination'

Answer 1

解决了。

我查看了@require_login的代码，它如下所示：

if g.oidc_id_token is None:
    return self.redirect_to_auth_server(request.url)

(代码)

所以我没走远..。

我更新了我的装潢师，使之与他们的相匹配

def check_oidc(view_func):
    @wraps(view_func)
    def decorated(*args, **kwargs):
        if g_use_oidc is True and oidc.user_loggedin == False:
            return oidc.redirect_to_auth_server(request.url)
        return view_func(*args, **kwargs)
    return decorated

它使用的是oidc.redirect_to_auth_server，它在1.0.0时被弃用。但是它是在@require_login中被内部使用的函数，所以它不受欢迎。