Skip to content

Don't fail on ID token expiration#168

Open
AntoineMarques wants to merge 1 commit intoTheNetworg:masterfrom
AntoineMarques:AntoineMarques-patch-1
Open

Don't fail on ID token expiration#168
AntoineMarques wants to merge 1 commit intoTheNetworg:masterfrom
AntoineMarques:AntoineMarques-patch-1

Conversation

@AntoineMarques
Copy link

@AntoineMarques AntoineMarques commented Aug 12, 2022

This prevented from reading an expired token from cache and refreshing it.
JWT_Exception didn't existed => replaced with UnexpectedValueException used by JWT.
Catches ExpiredException and proceeds.

@AntoineMarques
Don't fail on ID token expiration
58b6729 
This prevented from reading an expired token from cache and refreshing it.
JWT_Exception didn't existed => replaced with UnexpectedValueException used by JWT.
Catches ExpiredException and proceeds.
@hajekj
Copy link
Member

hajekj commented Sep 9, 2022

I agree that this can be skipped, especially when retrieving token from cache. I don't think that removing this will have any big impact on security of this library, since token for API scenarios is being validated elsewhere. I will walk through the code once more, just to be very sure but I think it should be fine to merge.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@AntoineMarques @hajekj