Skip to content

RS256 key caching bug fix

Compare
Choose a tag to compare
@sachin-maheshwari sachin-maheshwari released this 13 Jun 14:22
· 24 commits to master since this release
v2.6.3
f453529
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

There was following error logged in Cloudwatch (at 2019-06-12 07:00:00(UTC +00:00))-
Error: Invalid Token.Error: getaddrinfo EMFILE topcoder.auth0.com:443
at jwksClients.(anonymous function).getSigningKey (/opt/app/node_modules/tc-core-library-js/lib/auth/verifier.js:44:28)

Current fix (PR #19) will prevent multiple calls to Auth0 server for fetching public signing key to verify m2m token by caching locally.

Assets 2
Loading