How to make policy fail when bad jwt token value is given to io.jwt.decode_verify ? #497
Replies: 1 comment 1 reply
-
You could add another deny["provided token not a JWT"] {
not io.jwt.decode(input.message)
} |
Beta Was this translation helpful? Give feedback.
1 reply
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
I managed to make it work with a valid JWT token value 👌
But when not giving a valid JWT token like "not.a.jwt" to io.jwt.decode_verify() I don't have any idea how to make a denial :/
https://play.openpolicyagent.org/p/gZ8hF22hIF
Thank you for your suggestions 🙏
Beta Was this translation helpful? Give feedback.
All reactions