Catalyst::Exception->throw("id_token not specified.");
}
+ my $email = $authinfo->{email};
+ $email ||= $c->req->method eq 'GET' ? $c->req->query_params->{email} :
+ $c->req->body_params->{email};
+
my $userinfo = $self->decode($id_token);
+ $userinfo->{email} = $authinfo->{email};
my $sub = $userinfo->{sub};
my $openid = $userinfo->{openid_id};
+ $userinfo->{email} = $email if $email;
+
if (!$sub || !$openid) {
Catalyst::Exception->throw(
'Could not retrieve sub and openid from token! Is the token
sub retrieve_certs {
my ($self, $url) = @_;
- $url ||= ( $self->{_app}->config->{'Authentication::Credential::Google'}->{url} || 'https://www.googleapis.com/oauth2/v1/certs' );
- return decode_json(get($url));
+ my $c = $self->{_app};
+ my $cached = 0;
+ my $certs;
+ my $cache;
+
+ $url ||= ( $c->config->{'Authentication::Credential::Google'}->{public_cert_url} || 'https://www.googleapis.com/oauth2/v1/certs' );
+
+ if ( ($c->registered_plugins('Catalyst::Plugin::Cache')) && ($cache = $c->cache) ) {
+ if ($certs = $cache->get('certs')) {
+ $certs = decode_json($certs);
+
+ foreach my $key (keys %$certs) {
+ my $cert = $certs->{$key};
+ my $x509 = Crypt::OpenSSL::X509->new_from_string($cert);
+
+ if ($self->is_cert_expired($x509)) {
+ $cached = 0;
+ last;
+ } else {
+ $cached = 1;
+ }
+ }
+ }
+ }
+
+ if (!$cached) {
+ my $certs_encoded = get($url);
+
+ if ($cache) {
+ $cache->set('certs', $certs_encoded);
+ }
+
+ $certs = decode_json($certs_encoded);
+ }
+
+ return $certs;
}
=head2 get_key_from_cert
projects / scpubgit/stemmaweb.git / blobdiff