dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Test if required secret elements are set to sign JWT

Browse Source
This commit is contained in:
Christophe Maudoux 2019-05-02 14:33:56 +02:00
parent a382d919ae
commit c8dd4554aa
1 changed files with 11 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Lib/OpenIDConnect.pm
View File

@ -1165,6 +1165,11 @@ sub createJWT {
my $client_secret =
$self->conf->{oidcRPMetaDataOptions}->{$rp}
->{oidcRPMetaDataOptionsClientSecret};
unless ($client_secret) {
$self->logger->error(
"Algorithm $alg needs a Client Secret to sign JWT");
return;
}
my $digest;
@ -1194,6 +1199,12 @@ sub createJWT {
# Get signing private key
my $priv_key = $self->conf->{oidcServicePrivateKeySig};
unless ($priv_key) {
$self->logger->error(
"Algorithm $alg needs a Private Key to sign JWT");
return;
}
my $rsa_priv = Crypt::OpenSSL::RSA->new_private_key($priv_key);
if ( $alg eq "RS256" ) {