Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

JWT _verify must use all keys (sig and ver) #508

Closed
ermakoves opened this issue Mar 20, 2018 · 0 comments
Closed

JWT _verify must use all keys (sig and ver) #508

ermakoves opened this issue Mar 20, 2018 · 0 comments
Assignees
@tpazderka
Labels
bug
Milestone
0.14.0

Comments

@ermakoves
Copy link
Contributor

ermakoves commented Mar 20, 2018
edited
Loading

Instead
https://github.com/OpenIDC/pyoidc/blob/f1d7e29a3d60fa7bfc5b65a30be211a786839a8e/src/oic/utils/jwt.py#L97

use get_verify_key

File "....\lib\site-packages\oic\utils\jwt.py", line 99, in verify
return rj.verify_compact(token, keys)
File ....\lib\site-packages\jwkest\jws.py", line 517, in verify_compact
return self.verify_compact_verbose(jws, keys, allow_none, sigalg)['msg']
File "....\lib\site-packages\jwkest\jws.py", line 568, in verify_compact_verbose
"No key with kid: %s" % (self.jwt.headers["kid"]))
jwkest.jws.NoSuitableSigningKeys: No key with kid: HzyHbT0uH-ZZ5nzEqsEpPNrSPYGnoZleiuz-EfC3gk
@tpazderka tpazderka added the bug label Mar 20, 2018
@tpazderka tpazderka added this to the 0.14.0 milestone Mar 20, 2018
@tpazderka tpazderka self-assigned this Mar 21, 2018
tpazderka added a commit that referenced this issue Mar 21, 2018
@tpazderka
Fix verification of JWT using verify keys
40627a4 
Close #508
@tpazderka tpazderka mentioned this issue Mar 21, 2018
Merged
2 tasks
tpazderka added a commit that referenced this issue Apr 6, 2018
@tpazderka
Fix verification of JWT using verify keys
506d43b 
Close #508
tpazderka added a commit that referenced this issue Apr 6, 2018
@tpazderka
Fix verification of JWT using verify keys (#511)
ad70ac6 
Close #508
andrewkrug pushed a commit to mozilla-iam/pyoidc that referenced this issue Jun 6, 2019
@tpazderka @andrewkrug
Fix verification of JWT using verify keys (CZ-NIC#511)
4cc5a12 
Close CZ-NIC#508
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@tpazderka tpazderka

Labels
bug
Projects
None yet
Milestone
0.14.0
Development

No branches or pull requests
2 participants
@tpazderka @ermakoves