Add access token validation

1 files changed, 8 insertions, 5 deletions

diff --git a/server/src/main.rs b/server/src/main.rs
index e3a84d9..4183abb 100644
--- a/server/src/main.rs
+++ b/server/src/main.rs
@@ -2,9 +2,9 @@ use std::{collections::HashMap, env, sync::Arc};
 
 use axum::{
     extract::{Extension, Query},
-    response::Redirect,
+    response::{Redirect, IntoResponse},
     routing::get,
-    Json, Router,
+    Json, Router, http::StatusCode,
 };
 use protocol::UserInfo;
 use tower_cookies::{Cookie, CookieManagerLayer, Cookies};
@@ -12,8 +12,10 @@ use tower_http::trace::TraceLayer;
 use tracing::info;
 use tracing_subscriber::{layer::SubscriberExt, util::SubscriberInitExt};
 mod auth;
+mod error;
 use crate::auth::{Authenticator, EndUserId};
 use sqlx::{postgres::PgPoolOptions, PgPool};
+use crate::error::BridgeError;
 
 pub struct ServerContext {
     pub app_url: String,
@@ -75,14 +77,14 @@ async fn login_callback(
     cookies: Cookies,
     Query(params): Query<HashMap<String, String>>,
     extension: ContextExtension,
-) -> () {
+) -> Result<(), BridgeError> {
     let cookie = cookies.get("user-id").unwrap();
     let user_id: EndUserId =
         serde_json::from_str(&urlencoding::decode(cookie.value()).unwrap()).unwrap();
     info!("cookie: {cookie:?}");
     info!("params: {params:?}");
-    extension.authenticator.authenticate(user_id, params).await;
-    ()
+    extension.authenticator.authenticate(user_id, params).await?;
+    Ok(())
 }
 
 async fn login(cookies: Cookies, extension: ContextExtension) -> Redirect {
@@ -95,3 +97,4 @@ async fn login(cookies: Cookies, extension: ContextExtension) -> Redirect {
     ));
     Redirect::temporary(auth_url.as_str())
 }
+