Update identity/confidential_identity_provider.go

ndyakov · Copilot · web-flow · commit 1fca220fb017 · 2025-04-17T15:13:54.000+03:00
Co-authored-by: Copilot &lt;175728472+Copilot@users.noreply.github.com&gt;
diff --git a/identity/confidential_identity_provider.go b/identity/confidential_identity_provider.go
@@ -124,8 +124,8 @@ func NewConfidentialIdentityProvider(opts ConfidentialIdentityProviderOptions) (
 		}
 	case ClientCertificateCredentialType:
 		// ClientCertificateCredentialType is the type of credentials that uses a client certificate to authenticate.
-		if opts.ClientCert == nil {
-			return nil, fmt.Errorf("client certificate is required when using client certificate credentials")
+		if opts.ClientCert == nil || len(opts.ClientCert) == 0 {
+			return nil, fmt.Errorf("non-empty client certificate is required when using client certificate credentials")
 		}
 		if opts.ClientPrivateKey == nil {
 			return nil, fmt.Errorf("client private key is required when using client certificate credentials")

Original file line number	Diff line number	Diff line change
`@@ -124,8 +124,8 @@ func NewConfidentialIdentityProvider(opts ConfidentialIdentityProviderOptions) (`
`124`	`124`	`}`
`125`	`125`	`case ClientCertificateCredentialType:`
`126`	`126`	`// ClientCertificateCredentialType is the type of credentials that uses a client certificate to authenticate.`
`127`		`- if opts.ClientCert == nil {`
`128`		`- return nil, fmt.Errorf("client certificate is required when using client certificate credentials")`
	`127`	`+ if opts.ClientCert == nil \|\| len(opts.ClientCert) == 0 {`
	`128`	`+ return nil, fmt.Errorf("non-empty client certificate is required when using client certificate credentials")`
`129`	`129`	`}`
`130`	`130`	`if opts.ClientPrivateKey == nil {`
`131`	`131`	`return nil, fmt.Errorf("client private key is required when using client certificate credentials")`