dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Option to check JWT Signature (#183)

Browse Source
This commit is contained in:
Clément Oudot 2014-11-18 14:24:03 +00:00
parent 2a33f67155
commit 27225cfe86
1 changed files with 5 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
lemonldap-ng-portal/lib/Lemonldap/NG/Portal/AuthOpenIDConnect.pm
View File

@ -106,10 +106,12 @@ sub extractFormInfo {
$self->lmLog( "ID token: $id_token", 'debug' ); $self->lmLog( "ID token: $id_token", 'debug' );
# Verify JWT signature # Verify JWT signature
if ( $self->{OIDCRPCheckJWTSignature} ) {
unless ( $self->verifyJWTSignature($id_token) ) { unless ( $self->verifyJWTSignature($id_token) ) {
$self->lmLog( "JWT signature verification failed", 'error' ); $self->lmLog( "JWT signature verification failed", 'error' );
return PE_ERROR; return PE_ERROR;
} }
}
# Get ID token content # Get ID token content
my ( $id_token_header, $id_token_payload, $id_token_signature ) = my ( $id_token_header, $id_token_payload, $id_token_signature ) =