Close PKCE Listening Port After Authorization (#1110)

Addresses the issue of an open listening port persisting after the PKCE authorization flow is completed.
2025-05-01 06:44:37 +02:00 · 2023-08-29 10:13:27 +03:00 · 2023-08-29 10:13:27 +03:00 · 1a9301b684
commit 1a9301b684
parent 80d9b5fca5
2 changed files with 15 additions and 7 deletions
--- a/client/cmd/login.go
+++ b/client/cmd/login.go
@ -204,6 +204,7 @@ func openURL(cmd *cobra.Command, verificationURIComplete, userCode string) {
 	authenticateUsingBrowser := func() {
 		cmd.Println(browserAuthMsg)
 		cmd.Println("")
 		if err := open.Run(verificationURIComplete); err != nil {
 			cmd.Println(setupKeyAuthMsg)
 		}
--- a/client/internal/auth/pkce_flow.go
+++ b/client/internal/auth/pkce_flow.go
@ -5,12 +5,14 @@ import (
 	"crypto/sha256"
 	"crypto/subtle"
 	"encoding/base64"
 	"errors"
 	"fmt"
 	"html/template"
 	"net"
 	"net/http"
 	"net/url"
 	"strings"
 	"sync"
 	"time"
 	log "github.com/sirupsen/logrus"
@ -125,21 +127,25 @@ func (p *PKCEAuthorizationFlow) WaitToken(ctx context.Context, _ AuthFlowInfo) (
 }
 func (p *PKCEAuthorizationFlow) startServer(tokenChan chan<- *oauth2.Token, errChan chan<- error) {
 	var wg sync.WaitGroup
 	parsedURL, err := url.Parse(p.oAuthConfig.RedirectURL)
 	if err != nil {
 		errChan <- fmt.Errorf("failed to parse redirect URL: %v", err)
 		return
 	}
 	port := parsedURL.Port()
-	server := http.Server{Addr: fmt.Sprintf(":%s", port)}
+	server := http.Server{Addr: fmt.Sprintf(":%s", parsedURL.Port())}
-	defer func() {
+	go func() {
-		if err := server.Shutdown(context.Background()); err != nil {
+		if err := server.ListenAndServe(); err != nil && !errors.Is(err, http.ErrServerClosed) {
-			log.Errorf("error while shutting down pkce flow server: %v", err)
+			errChan <- err
 		}
 	}()
 	wg.Add(1)
 	http.HandleFunc("/", func(w http.ResponseWriter, req *http.Request) {
 		defer wg.Done()
 		tokenValidatorFunc := func() (*oauth2.Token, error) {
 			query := req.URL.Query()
@ -176,8 +182,9 @@ func (p *PKCEAuthorizationFlow) startServer(tokenChan chan<- *oauth2.Token, errC
 		tokenChan <- token
 	})
-	if err := server.ListenAndServe(); err != nil {
+	wg.Wait()
-		errChan <- err
+	if err := server.Shutdown(context.Background()); err != nil {
 		log.Errorf("error while shutting down pkce flow server: %v", err)
 	}
 }