Merge pull request #2773 from jplana/jwks_validation_error_control

Better error management in jwks token validation
2019-05-08 07:42:35 -07:00 · 2019-05-08 07:42:35 -07:00 · 9cfdf55d9e
parent 6a83da2292 1de85dbcf4
commit 9cfdf55d9e
1 changed files with 6 additions and 3 deletions
--- a/lemur/auth/views.py
+++ b/lemur/auth/views.py
@ -343,8 +343,9 @@ class Ping(Resource):
        )

        jwks_url = current_app.config.get('PING_JWKS_URL')
-        validate_id_token(id_token, args['clientId'], jwks_url)
-
+        error_code = validate_id_token(id_token, args['clientId'], jwks_url)
+        if error_code:
+            return error_code
        user, profile = retrieve_user(user_api_url, access_token)
        roles = create_user_roles(profile)
        update_user(user, profile, roles)
@ -392,7 +393,9 @@ class OAuth2(Resource):
        )

        jwks_url = current_app.config.get('PING_JWKS_URL')
-        validate_id_token(id_token, args['clientId'], jwks_url)
+        error_code = validate_id_token(id_token, args['clientId'], jwks_url)
+        if error_code:
+            return error_code

        user, profile = retrieve_user(user_api_url, access_token)
        roles = create_user_roles(profile)