OAuth: Check both TLS client cert and key

If either is set, try to use them. This should help avoid a situation where someone has half-configured TLS client authentication and it doesn't work without raising an obvious error.

OAuth: Check both TLS client cert and key
If either is set, try to use them. This should help avoid a situation where someone has half-configured TLS client authentication and it doesn't work without raising an obvious error.
f2f8ca52 · Matt Bostock · 16c5d0e4 · f2f8ca52
Commit f2f8ca52 authored Oct 06, 2017 by Matt Bostock
Hide whitespace changes
Inline Side-by-side

Showing with 1 additions and 1 deletions

pkg/api/login_oauth.go
+1 -1

No files found.
--- a/pkg/api/login_oauth.go
+++ b/pkg/api/login_oauth.go
@@ -81,7 +81,7 @@ func OAuthLogin(ctx *middleware.Context) {

 	// initialize oauth2 context
 	oauthCtx := oauth2.NoContext
-	if setting.OAuthService.OAuthInfos[name].TlsClientCert != "" {
+	if setting.OAuthService.OAuthInfos[name].TlsClientCert != "" || setting.OAuthService.OAuthInfos[name].TlsClientKey != "" {
 		cert, err := tls.LoadX509KeyPair(setting.OAuthService.OAuthInfos[name].TlsClientCert, setting.OAuthService.OAuthInfos[name].TlsClientKey)
 		if err != nil {
 			log.Fatal(err)