Improve error message for checking claims.Audience

umputun · Dec 10, 2024 · 161257b · 161257b
1 parent f473105
commit 161257b
Show file tree

Hide file tree

Showing 2 changed files with 3 additions and 1 deletion.
diff --git a/backend/app/cmd/server.go b/backend/app/cmd/server.go
@@ -1215,6 +1215,7 @@ func (s *ServerCommand) getAuthenticator(ds *service.DataStore, avas avatar.Stor
 			if c.User == nil {
 				return c
 			}
+			// Audience is a slice but we set it to a single element, and situation when there is no audience or there are more than one is unexpected
 			if len(c.Audience) != 1 {
 				return c
 			}

diff --git a/backend/app/rest/api/admin.go b/backend/app/rest/api/admin.go
@@ -107,8 +107,9 @@ func (a *admin) deleteMeRequestCtrl(w http.ResponseWriter, r *http.Request) {
 		return
 	}
 
+	// Audience is a slice but we set it to a single element, and situation when there is no audience or there are more than one is unexpected
 	if len(claims.Audience) != 1 {
-		rest.SendErrorJSON(w, r, http.StatusBadRequest, fmt.Errorf("bad request"), "can't process token, aud is not a single element", rest.ErrActionRejected)
+		rest.SendErrorJSON(w, r, http.StatusBadRequest, fmt.Errorf("bad request"), "can't process token, claims.Audience expected to be a single element but it's not", rest.ErrActionRejected)
 		return
 	}