Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

proxy: ignore typ and use jwt.alg rather than jwk.alg #9215

Merged
merged 1 commit into from
Oct 1, 2024

Conversation

conradludgate
Copy link
Contributor

@conradludgate conradludgate commented Oct 1, 2024

Microsoft exposes JWKs without the alg header. It's only included on the tokens. Not a problem.

Also noticed that wrt the typ header:

It will typically not be used by applications when it is already known that the object is a JWT. This parameter is ignored by JWT implementations; any processing of this parameter is performed by the JWT application.

Since we know we are expecting JWTs only, I've followed the guidance and removed the validation.

@conradludgate conradludgate requested a review from a team as a code owner October 1, 2024 06:40
Copy link

github-actions bot commented Oct 1, 2024

5013 tests run: 4855 passed, 0 failed, 158 skipped (full report)


Flaky tests (4)

Postgres 17

Postgres 16

Postgres 15

  • test_ondemand_wal_download_in_replication_slot_funcs: release-x86-64

Postgres 14

Code coverage* (full report)

  • functions: 31.3% (7486 of 23886 functions)
  • lines: 49.6% (60101 of 121195 lines)

* collected from Rust tests only


The comment gets automatically updated with the latest test results
24c8a49 at 2024-10-01T07:33:33.689Z :recycle:

@conradludgate conradludgate merged commit 4391b25 into main Oct 1, 2024
83 checks passed
@conradludgate conradludgate deleted the fix-jwt-handling branch October 1, 2024 09:36
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants