@@ -2,6 +2,7 @@ package entraid
22
33import (
44 "fmt"
5+ "sync"
56
67 "github.com/redis/go-redis/v9/auth"
78)
@@ -16,11 +17,18 @@ type entraidCredentialsProvider struct {
1617 tokenManager TokenManager
1718 cancelTokenManager cancelFunc
1819
20+ // listeners is a slice of listeners that are notified when the token manager receives a new token.
1921 listeners []auth.CredentialsListener
22+
23+ // rwLock is a mutex that is used to synchronize access to the listeners slice.
24+ // It is used to ensure that only one goroutine can access the listeners slice at a time.
25+ rwLock sync.RWMutex
2026}
2127
2228// onTokenNext is a method that is called when the token manager receives a new token.
2329func (e * entraidCredentialsProvider ) onTokenNext (token * Token ) {
30+ e .rwLock .RLock ()
31+ defer e .rwLock .RUnlock ()
2432 // Notify all listeners with the new token.
2533 for _ , listener := range e .listeners {
2634 listener .OnNext (& authCredentials {
@@ -34,6 +42,8 @@ func (e *entraidCredentialsProvider) onTokenNext(token *Token) {
3442// onError is a method that is called when the token manager encounters an error.
3543// It notifies all listeners with the error.
3644func (e * entraidCredentialsProvider ) onTokenError (err error ) {
45+ e .rwLock .RLock ()
46+ defer e .rwLock .RUnlock ()
3747 // Notify all listeners with the error.
3848 for _ , listener := range e .listeners {
3949 listener .OnError (err )
@@ -46,6 +56,7 @@ func (e *entraidCredentialsProvider) onTokenError(err error) {
4656// The listener will be notified with an error if there is an error obtaining the credentials.
4757// The caller can cancel the subscription by calling the cancel function which is the second return value.
4858func (e * entraidCredentialsProvider ) Subscribe (listener auth.CredentialsListener ) (auth.Credentials , auth.CancelProviderFunc , error ) {
59+ e .rwLock .Lock ()
4960 // Check if the listener is already in the list of listeners.
5061 alreadySubscribed := false
5162 for _ , l := range e .listeners {
@@ -59,6 +70,7 @@ func (e *entraidCredentialsProvider) Subscribe(listener auth.CredentialsListener
5970 // Get the token from the identity provider.
6071 e .listeners = append (e .listeners , listener )
6172 }
73+ e .rwLock .Unlock ()
6274
6375 token , err := e .tokenManager .GetToken ()
6476 if err != nil {
@@ -78,21 +90,32 @@ func (e *entraidCredentialsProvider) Subscribe(listener auth.CredentialsListener
7890
7991 cancel := func () error {
8092 // Remove the listener from the list of listeners.
93+ e .rwLock .Lock ()
94+ defer e .rwLock .Unlock ()
8195 for i , l := range e .listeners {
8296 if l == listener {
8397 e .listeners = append (e .listeners [:i ], e .listeners [i + 1 :]... )
8498 break
8599 }
86100 }
87101 if len (e .listeners ) == 0 {
88- e .cancelTokenManager ()
102+ e .close ()
89103 }
90104 return nil
91105 }
92106
93107 return credentials , cancel , nil
94108}
95109
110+ func (e * entraidCredentialsProvider ) close () {
111+ if e .cancelTokenManager != nil {
112+ e .cancelTokenManager ()
113+ }
114+ e .cancelTokenManager = nil
115+ e .listeners = nil
116+ e .rwLock = sync.RWMutex {}
117+ }
118+
96119type entraidTokenListener struct {
97120 onTokenNext func (token * Token )
98121 onTokenError func (err error )
0 commit comments