Additional debug for Hello auth

Signed-off-by: David Mulder <[email protected]>
himmelblau-idm · Apr 12, 2024 · 52a2aa2 · 52a2aa2
1 parent 9a23aba
commit 52a2aa2
Showing 1 changed file with 26 additions and 6 deletions.
diff --git a/src/common/src/idprovider/himmelblau.rs b/src/common/src/idprovider/himmelblau.rs
@@ -605,13 +605,23 @@ impl IdProvider for HimmelblauProvider {
 
                 match self.token_validate(account_id, &token).await {
                     Ok(AuthResult::Success { token }) => {
+                        debug!("Returning user token from successful Hello PIN setup and authentication.");
                         Ok((AuthResult::Success { token }, AuthCacheAction::None))
                     }
                     /* This should never happen. It doesn't make sense to
                      * continue from a Pin auth. */
-                    Ok(AuthResult::Next(_)) => Err(IdpError::BadRequest),
-                    Ok(auth_result) => Ok((auth_result, AuthCacheAction::None)),
-                    Err(e) => Err(e),
+                    Ok(AuthResult::Next(_)) => {
+                        debug!("Invalid additional authentication requested with Hello auth.");
+                        Err(IdpError::BadRequest)
+                    }
+                    Ok(auth_result) => {
+                        debug!("Hello auth failed.");
+                        Ok((auth_result, AuthCacheAction::None))
+                    }
+                    Err(e) => {
+                        error!("Error encountered during Hello auth: {:?}", e);
+                        Err(e)
+                    }
                 }
             }
             (AuthCredHandler::Pin, PamAuthRequest::Pin { cred }) => {
@@ -647,13 +657,23 @@ impl IdProvider for HimmelblauProvider {
 
                 match self.token_validate(account_id, &token).await {
                     Ok(AuthResult::Success { token }) => {
+                        debug!("Returning user token from successful Hello PIN authentication.");
                         Ok((AuthResult::Success { token }, AuthCacheAction::None))
                     }
                     /* This should never happen. It doesn't make sense to
                      * continue from a Pin auth. */
-                    Ok(AuthResult::Next(_)) => Err(IdpError::BadRequest),
-                    Ok(auth_result) => Ok((auth_result, AuthCacheAction::None)),
-                    Err(e) => Err(e),
+                    Ok(AuthResult::Next(_)) => {
+                        debug!("Invalid additional authentication requested with Hello auth.");
+                        Err(IdpError::BadRequest)
+                    }
+                    Ok(auth_result) => {
+                        debug!("Hello auth failed.");
+                        Ok((auth_result, AuthCacheAction::None))
+                    }
+                    Err(e) => {
+                        error!("Error encountered during Hello auth: {:?}", e);
+                        Err(e)
+                    }
                 }
             }
             (AuthCredHandler::Password, PamAuthRequest::Password { cred }) => {