flask-jwt-router
flask-jwt-router copied to clipboard
joegasewicz
Flask JWT Router is a Python library that adds authorised routes to a Flask app.
Bumps [pyjwt](https://github.com/jpadilla/pyjwt) from 2.0.0 to 2.4.0. Release notes Sourced from pyjwt's releases. 2.4.0 Security [CVE-2022-29217] Prevent key confusion through non-blocklisted public key formats. https://github.com/jpadilla/pyjwt/security/advisories/GHSA-ffqj-6fqr-9h24 What's Changed Add support for Python...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Currently there is some code duplication within the `handle_token` methods. Employ a hook system to pull in the logic as required, could use a generator function etc...
Remove the following badges from the readme: - codevoc - code quality
rv = client.get(url, headers={"X-Auth-Token": "Bearer 1234.1234.1234"}) causes: ``` email = self.test_metadata[email]["email"] KeyError: '1234.1234.1234' ```
Currently, if a a `SECRET_KEY` flask config value is not set then flask-jwt-router throws. The message points to a broken link in the docs.
Currently the routing fixture scope is set to `class`. This is due to some tests failing when set to `function` scope. This needs investigating.
https://github.com/joegasewicz/flask-jwt-router/blob/1822b9160da8ef0c7933184481b1849fab565e0f/flask_jwt_router/oauth2/http_requests.py#L40 Remove url value as this could display the client_secret in the logs
https://github.com/joegasewicz/flask-jwt-router/blob/1822b9160da8ef0c7933184481b1849fab565e0f/flask_jwt_router/_jwt_routes.py#L257 Set the default value earlier
Metadata
Owner
Metadata
Flask JWT Router is a Python library that adds authorised routes to a Flask app.