Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Handle ValidationError returned by keyFunc in jwt.ParseWithClaims
Previously, returning a `jwt.ValidationError` from `jwt.Parse()` or `jwt.ParseWithClaims()` would result values the error to be ignored. For example, when testing the signature while parsing the token, it was not possible to return `jwt.ValidationErrorSignatureInvalid`. The documentation shows an example for returning an `errors.Error`, but this is not enough. We change the `jwt.ParseWithClaims()`-function and check whether the returned error from the `KeyFunc` is already a `jwt.ValidationError`-type and return as-is. This allows us to do the following: token, err := jwt.ParseWithClaims(authToken, claims, func(token *jwt.Token) (interface{}, error) { if _, ok := token.Method.(*jwt.SigningMethodHMAC); !ok { vErr := new(jwt.ValidationError) vErr.Errors = jwt.ValidationErrorSignatureInvalid vErr.Inner = fmt.Errorf("invalid signature") return nil, vErr } return []byte(MySecret), nil }) The idea is to then be able to check the `Errors`-member: } else if ve.Errors&jwt.ValidationErrorSignatureInvalid != 0 { return fmt.Errorf("Authentication Token has invalid signature") }
- Loading branch information