Check return OAuth ID reference.

benbjohnson · Jan 7, 2021 · e23f5f0 · e23f5f0
1 parent c393e72
commit e23f5f0
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/http/auth.go b/http/auth.go
@@ -106,10 +106,14 @@ func (s *Server) handleOAuthGitHubCallback(w http.ResponseWriter, r *http.Reques
 	)))
 
 	// Fetch user information for the currently authenticated user.
+	// Require that we at least receive a user ID from GitHub.
 	u, _, err := client.Users.Get(r.Context(), "")
 	if err != nil {
 		Error(w, r, fmt.Errorf("cannot fetch github user: %s", err))
 		return
+	} else if u.ID == nil {
+		Error(w, r, fmt.Errorf("user ID not returned by GitHub, cannot authenticate user"))
+		return
 	}
 
 	// Email is not necessarily available for all accounts. If it is, store it