sartography
/
spiff-arena
mirror of https://github.com/sartography/spiff-arena.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

The aud in a json web token can be a string or an array -- so also deal with the case that it is an array

This commit is contained in:
Dan 2023-02-14 19:39:35 -05:00
parent 735e7f726c
commit c8a83f80b6
1 changed files with 2 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
spiffworkflow-backend/src/spiffworkflow_backend/services/authentication_service.py
View File

@ -169,10 +169,8 @@ class AuthenticationService:
iat = decoded_token["iat"] iat = decoded_token["iat"]
if iss != cls.server_url(): if iss != cls.server_url():
valid = False valid = False
elif aud not in ( elif aud not in (cls.client_id(), "account") and\
cls.client_id(), aud != [cls.client_id(), "account"]:
"account",
):
valid = False valid = False
elif azp and azp not in ( elif azp and azp not in (
cls.client_id(), cls.client_id(),