Skip to content

feat(lib/extract_jwt): correctly parse comma terminated token#231

Open
jrc2139 wants to merge 1 commit intomikenicholson:masterfrom
jrc2139:feat/correctly-parse-comma-terminated-token
Open

feat(lib/extract_jwt): correctly parse comma terminated token#231
jrc2139 wants to merge 1 commit intomikenicholson:masterfrom
jrc2139:feat/correctly-parse-comma-terminated-token

Conversation

@jrc2139
Copy link

@jrc2139 jrc2139 commented Mar 28, 2022
edited
Loading

My stack is NestJs, Auth0, Passport, and GraphQL. I noticed that the parsed jwt token from the Authorization Header being passed from lib/verify_jwt.js#L4 was including a trailing comma like:

auth_params: {
    scheme: 'Bearer',
    value: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c,
  }

This fix just checks if the token terminates with a comma and returns it without the comma.

eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c

@b-o-993
Copy link

b-o-993 commented Apr 7, 2022

looks good 👏

@Outternet
Copy link

Outternet commented Sep 9, 2022
edited
Loading

This can be easily solved with a custom extractor, see an example of this case in the documentation of my pull request and furthermore this is not standard behaviour of nestjs, so I don't know why this happens to you.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@jrc2139 @b-o-993 @Outternet