pyjwt
pyjwt copied to clipboard
jpadilla
JSON Web Token implementation in Python
I'm trying to validate JWTs from Apple using their JWK (https://appleid.apple.com/auth/keys) and it took me hours to figure out what to do with them. Had to piece together information from...
updates: - [github.com/PyCQA/flake8: 5.0.2 → 5.0.4](https://github.com/PyCQA/flake8/compare/5.0.2...5.0.4)
![pre-commit-ci[bot] avatar](https://avatars.githubusercontent.com/in/68672?v=4 "pre-commit-ci[bot] avatar"){kind=avatar}
### Codes:  ### Return: 
Hello, thank you for the tool! It seems the `get_unverified_header` is missing types to use in a strict mypy configuration! https://github.com/jpadilla/pyjwt/blob/master/jwt/api_jws.py#L202 If I am not mistaken, this might do it:...
PyJWKClient doesn't support custom SSL contexts when calling `fetch_data()` to get the JWK set. ### Expected Result `get_signing_key_from_jwt()` could accept a [SSLContext](https://docs.python.org/3/library/ssl.html#ssl.SSLContext) as a parameter to support authorization servers that...
 ![Uploading image.png…]()
in algorithm.py ``` if any(string_value in key for string_value in invalid_strings): raise InvalidKeyError( "The specified key is an asymmetric key or x509 certificate and" " should not be used as...
JWTs where the signature is generated over a *base64*-encoded (not *base64url*-encoded) payload are erroneously accepted. ## Expected Result These JWTs must be rejected according to several different parts of the...
PyJWT does not support all valid JSON types as the payload. ## Expected Result `str`s, `int`s, `float`s and `list`s (even better `Sequence`s) should be able to encoded in the payload...
Using a hosted KeyCloak instance from https://www.cloud-iam.com/ which sets its `enc` public cert to use `RSA-OAEP` causes `PyJWKClient` to throw an exception (raised by `PyJWK` constructor). ## Expected Result I...
