flask-jwt icon indicating copy to clipboard operation
flask-jwt copied to clipboard
verified publisher icon mattupstate

Fix bug: Expired token would crash application

Open q3yi opened this issue 10 years ago • 1 comments

Expired token would crash application if the config JWT_VERIFY_EXPIRATION set to False with default token decode handler

Even when JWT_VERIFY_EXPIRATION is to False, the token would still be decode with TimedJSONWebSignatureSerializer, so if the token is expired a SignatureExpired will be threw out, and the local variable result in function _default_decode_handler would not be initialized, which would cause UnboundLocalError in function _default_decode_handler.

q3yi avatar Jul 26 '15 18:07 q3yi

Not relevant anymore since the transition to pyjwt.

stephane avatar Aug 03 '16 19:08 stephane