python-jose

python-jose copied to clipboard

[BUG] Weird: decode of encode does not work with quotes inside string

1

```python jwt.decode(jwt.encode({'test': 0, 'exp': 1647029460}, 'test'), 'test') ``` -> `{'test': 0, 'exp': 1647029460}` But, ```python jwt.decode(jwt.encode({'test': 0, 'exp': 1647029460}, '"test"'), '"test"') ``` -> `JWTError: Signature verification failed.`

thomashlvt

Add python_requires arg to setup.cfg

1

This prevents pip from attempting to install new python-jose packages on unsupported Python versions. See https://packaging.python.org/tutorials/packaging-projects/#configuring-metadata

avian2

Using latest python 3.8 The problem: ``` >>> import jose >>> jose.__version__ '3.3.0' >>> from jose import jwt >>> key = {'alg': 'ES256', 'created_at': 1560466143, 'crv': 'P-256', 'expired_at': None, 'kid':...

dcreekp

jwt.decode raises '[ERROR] JWKError: No PEM start marker "b'-----BEGIN PRIVATE KEY-----'"' as exception when attempting to decode a jwt.

1

This is more of a cosmetic/logging issue than a true productivity impacting issue. When calling jwt.decode, if jwt.decode fails to load the public key it references a private key PEM...

Disgruntled

Hi, would be nice to add the `thumbprint` attribute for each key as, for example, done [here](https://github.com/latchset/jwcrypto/blob/ea36353202bb6f0dab3340f38e6273a5681cc382/jwcrypto/jwk.py#L943) in the jwcrypto library. This enhancement would be extremely useful when dealing with...

fmardero

Hi, I can construct public keys from `x5c` like this: ```python import base64 from cryptography.hazmat.backends.openssl.backend import backend from cryptography.x509 import load_der_x509_certificate from jose import jwk x5c_key = "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" cert_obj =...

JonasKs

In Jose/backends/rsa_backend.py / Line 19 states that the RSA-OAEP algorithm is no longer supported. However when using JWE, encrypting with RSA-OAEP algorithm still functions. Is RSA-OAEP not supported or is...

ABEHW

birdhackor

This PR implements https://github.com/mpdavis/python-jose/issues/214.

chbndrhnns

🛠 Added typings for public api (and mypy checks)

3

Typings for all publicly available functions have been added. upd: missed it: Related to #215 ### Motivation When integrating `python-jose` into the `fastapi` [(PR #3305)](https://github.com/tiangolo/fastapi/pull/3305) library, there were additional difficulties...

k4black