pyjwt
pyjwt copied to clipboard
give a way to not raise error if key type not correct, just do the base64.
in algorithm.py
if any(string_value in key for string_value in invalid_strings):
raise InvalidKeyError(
"The specified key is an asymmetric key or x509 certificate and"
" should not be used as an HMAC secret."
)
Well, quite some of the people use this lib to attack something so we need it not throw error.
Maybe an error logging is a better choice?
related materials : https://medium.com/101-writeups/hacking-json-web-token-jwt-233fe6c862e6
pyJWT==1.7.1 can be used
pyJWT==1.7.1 can be used
Well, using an older version?
Maybe it can work but I don't think it be a right way to solve this .
This issue is stale because it has been open 60 days with no activity. Remove stale label or comment or this will be closed in 7 days
This issue is stale because it has been open 60 days with no activity. Remove stale label or comment or this will be closed in 7 days
comment
This issue is stale because it has been open 60 days with no activity. Remove stale label or comment or this will be closed in 7 days
This issue is stale because it has been open 60 days with no activity. Remove stale label or comment or this will be closed in 7 days
comment
This issue is stale because it has been open 60 days with no activity. Remove stale label or comment or this will be closed in 7 days
This issue is stale because it has been open 60 days with no activity. Remove stale label or comment or this will be closed in 7 days
comment
This issue is stale because it has been open 60 days with no activity. Remove stale label or comment or this will be closed in 7 days
This issue is stale because it has been open 60 days with no activity. Remove stale label or comment or this will be closed in 7 days
This issue is stale because it has been open 60 days with no activity. Remove stale label or comment or this will be closed in 7 days