go-oauth2 · LyricTian · Jan 26, 2022 · Jan 24, 2022
diff --git a/server/handler.go b/server/handler.go
@@ -36,6 +36,9 @@ type (
 // InternalErrorHandler internal error handing
 InternalErrorHandler func(err error) (re *errors.Response)
 
+// PreRedirectErrorHandler is used to override "redirect-on-error" behavior
+PreRedirectErrorHandler func(w http.ResponseWriter, req *AuthorizeRequest, err error) error
+
 // AuthorizeScopeHandler set the authorized scope
 AuthorizeScopeHandler func(w http.ResponseWriter, r *http.Request) (scope string, err error)
 

diff --git a/server/server.go b/server/server.go
@@ -48,6 +48,7 @@ type Server struct {
 UserAuthorizationHandler UserAuthorizationHandler
 PasswordAuthorizationHandler PasswordAuthorizationHandler
 RefreshingValidationHandler RefreshingValidationHandler
+PreRedirectErrorHandler PreRedirectErrorHandler
 RefreshingScopeHandler RefreshingScopeHandler
 ResponseErrorHandler ResponseErrorHandler
 InternalErrorHandler InternalErrorHandler
@@ -57,10 +58,19 @@ type Server struct {
 ResponseTokenHandler ResponseTokenHandler
 }
 
+func (s *Server) handleError(w http.ResponseWriter, req *AuthorizeRequest, err error) error {
+if fn := s.PreRedirectErrorHandler; fn != nil {
+return fn(w, req, err)
+}
+
+return s.redirectError(w, req, err)
+}
+
 func (s *Server) redirectError(w http.ResponseWriter, req *AuthorizeRequest, err error) error {
 if req == nil {
 return err
 }
+
 data, _, _ := s.GetErrorData(err)
 return s.redirect(w, req, data)
 }
@@ -257,13 +267,13 @@ func (s *Server) HandleAuthorizeRequest(w http.ResponseWriter, r *http.Request)
 
 req, err := s.ValidationAuthorizeRequest(r)
 if err != nil {
-return s.redirectError(w, req, err)
+return s.handleError(w, req, err)
 }
 
 // user authorization
 userID, err := s.UserAuthorizationHandler(w, r)
 if err != nil {
-return s.redirectError(w, req, err)
+return s.handleError(w, req, err)
 } else if userID == "" {
 return nil
 }
@@ -290,7 +300,7 @@ func (s *Server) HandleAuthorizeRequest(w http.ResponseWriter, r *http.Request)
 
 ti, err := s.GetAuthorizeToken(ctx, req)
 if err != nil {
-return s.redirectError(w, req, err)
+return s.handleError(w, req, err)
 }
 
 // If the redirect URI is empty, the default domain provided by the client is used.

diff --git a/server/server_config.go b/server/server_config.go
@@ -59,7 +59,6 @@ func (s *Server) SetRefreshingValidationHandler(handler RefreshingValidationHand
 s.RefreshingValidationHandler = handler
 }
 
-
 // SetResponseErrorHandler response error handling
 func (s *Server) SetResponseErrorHandler(handler ResponseErrorHandler) {
 s.ResponseErrorHandler = handler
@@ -70,6 +69,11 @@ func (s *Server) SetInternalErrorHandler(handler InternalErrorHandler) {
 s.InternalErrorHandler = handler
 }
 
+// SetPreRedirectErrorHandler sets the PreRedirectErrorHandler in current Server instance
+func (s *Server) SetPreRedirectErrorHandler(handler PreRedirectErrorHandler) {
+s.PreRedirectErrorHandler = handler
+}
+
 // SetExtensionFieldsHandler in response to the access token with the extension of the field
 func (s *Server) SetExtensionFieldsHandler(handler ExtensionFieldsHandler) {
 s.ExtensionFieldsHandler = handler
@@ -88,4 +92,4 @@ func (s *Server) SetAuthorizeScopeHandler(handler AuthorizeScopeHandler) {
 // SetResponseTokenHandler response token handing
 func (s *Server) SetResponseTokenHandler(handler ResponseTokenHandler) {
 s.ResponseTokenHandler = handler
-}
+}