Add check if session secret is set

inovex · Dec 18, 2024 · 1b2b0f6 · 1b2b0f6
1 parent 6812942
commit 1b2b0f6
Showing 1 changed file with 10 additions and 0 deletions.
diff --git a/server/src/main.go b/server/src/main.go
@@ -219,6 +219,12 @@ func main() {
 				Usage:   "JWT claim to request for the user name",
 				Value:   "profile",
 			}),
+			altsrc.NewStringFlag(&cli.StringFlag{
+				Name:     "session-secret",
+				EnvVars:  []string{"SESSION_SECRET"},
+				Usage:    "Session secret for the authentication provider. Must be provided if an authentication provider is used.",
+				Required: false,
+			}),
 			altsrc.NewBoolFlag(&cli.BoolFlag{
 				Name:    "verbose",
 				Aliases: []string{"v"},
@@ -341,6 +347,10 @@ func run(c *cli.Context) error {
 		}
 	}
 
+	if c.String("session-secret") == "" && len(providersMap) != 0 {
+		return errors.New("you may not start the application without a session secret if an authentication provider is configured")
+	}
+
 	dbConnection := database.New(db, c.Bool("verbose"))
 
 	keyWithNewlines := strings.ReplaceAll(c.String("key"), "\\n", "\n")