fix: removed snyk issues involving OIDC

DelineaXPM · Aug 7, 2024 · 6f26958 · 6f26958
1 parent 7020029
commit 6f26958
Show file tree

Hide file tree

Showing 3 changed files with 5 additions and 5 deletions.
diff --git a/.gitignore b/.gitignore
@@ -126,3 +126,6 @@ snapcraft-login
 
 # mac
 .DS_Store
+
+# snyk
+.dccache
diff --git a/auth/method_oidc.go b/auth/method_oidc.go
@@ -103,9 +103,8 @@ func (a *authenticator) buildOIDCParams(at AuthType, provider string, callback s
 // handleOidcAuth handles OIDC and Thycotic One auths.
 func handleOidcAuth(at AuthType, doneCh chan<- authResponse) http.HandlerFunc {
 	return func(w http.ResponseWriter, req *http.Request) {
-		b, err := io.ReadAll(req.Body)
+		_, err := io.ReadAll(req.Body)
 		if err != nil {
-			w.Write([]byte(err.Error()))
 			doneCh <- authResponse{err: fmt.Errorf("reading body: %w", err)}
 		}
 
@@ -116,14 +115,12 @@ func handleOidcAuth(at AuthType, doneCh chan<- authResponse) http.HandlerFunc {
 			doneCh <- authResponse{
 				err: errors.New("missing values in callback, authorization code is empty"),
 			}
-			w.Write(b)
 			return
 		}
 		if state == "" {
 			doneCh <- authResponse{
 				err: errors.New("missing values in callback, authorization state is empty"),
 			}
-			w.Write(b)
 			return
 		}
 

diff --git a/cicd-integration/generate_pki.go b/cicd-integration/generate_pki.go
@@ -52,7 +52,7 @@ func generateRootWithPrivateKey() ([]byte, []byte, error) {
 }
 
 func generateCSR() ([]byte, error) {
-	keyBytes, _ := rsa.GenerateKey(rand.Reader, 1024)
+	keyBytes, _ := rsa.GenerateKey(rand.Reader, 2048)
 
 	subj := pkix.Name{
 		CommonName:         leafCommonName,