AuthN: Tune logs in client (#65714)

* AuthN: Remove log * AuthN: Check for user not found error in hook
2 years ago · 355f47628f
parent 94cc93cc83
commit 355f47628f
3 changed files with 8 additions and 2 deletions
--- a/pkg/services/authn/authnimpl/sync/user_sync.go
+++ b/pkg/services/authn/authnimpl/sync/user_sync.go
@ -40,6 +40,11 @@ var (
 		"user.sync.fetch",
 		errutil.WithPublicMessage("Insufficient information to authenticate user"),
 	)
+	errFetchingSignedInUserNotFound = errutil.NewBase(
+		errutil.StatusUnauthorized,
+		"user.sync.fetch-not-found",
+		errutil.WithPublicMessage("User not found"),
+	)
 )

 func ProvideUserSync(userService user.Service,
@ -114,6 +119,9 @@ func (s *UserSync) FetchSyncedUserHook(ctx context.Context, identity *authn.Iden
 		OrgID:  r.OrgID,
 	})
 	if err != nil {
+		if errors.Is(err, user.ErrUserNotFound) {
+			return errFetchingSignedInUserNotFound.Errorf("%w", err)
+		}
 		return errFetchingSignedInUser.Errorf("failed to resolve user: %w", err)
 	}

--- a/pkg/services/authn/clients/jwt.go
+++ b/pkg/services/authn/clients/jwt.go
@ -59,7 +59,6 @@ func (s *JWT) Authenticate(ctx context.Context, r *authn.Request) (*authn.Identi

 	sub, _ := claims["sub"].(string)
 	if sub == "" {
-		s.log.FromContext(ctx).Warn("Got a JWT without the mandatory 'sub' claim", "error", err)
 		return nil, errJWTMissingClaim.Errorf("missing mandatory 'sub' claim in JWT")
 	}

--- a/pkg/services/authn/clients/session.go
+++ b/pkg/services/authn/clients/session.go
@ -51,7 +51,6 @@ func (s *Session) Authenticate(ctx context.Context, r *authn.Request) (*authn.Id

 	token, err := s.sessionService.LookupToken(ctx, rawSessionToken)
 	if err != nil {
-		s.log.FromContext(ctx).Warn("Failed to look up session from cookie", "error", err)
 		return nil, err
 	}