Skip to content

Commit

Permalink
Merge pull request #1183 from psteniusubi/fix-signed-jwks-optional-exp
Browse files Browse the repository at this point in the history
Change to make exp claim optional in signed jwks
  • Loading branch information
zandbelt authored Feb 21, 2024
2 parents 9f2b11e + a4d9359 commit 2b3d799
Show file tree
Hide file tree
Showing 2 changed files with 5 additions and 1 deletion.
4 changes: 4 additions & 0 deletions ChangeLog
Original file line number Diff line number Diff line change
@@ -1,3 +1,7 @@
02/21/2024
- OIDCProviderSignedJwksUri - change to make exp claim optional in signed jwks
interop with OpenID Federation specification https://openid.net/specs/openid-federation-1_0-32.html#section-5.2.1

02/15/2024
- refactor zlib compression routines and add error checks
- bump to 2.4.15.4dev
Expand Down
2 changes: 1 addition & 1 deletion src/metadata.c
Original file line number Diff line number Diff line change
Expand Up @@ -597,7 +597,7 @@ static apr_byte_t oidc_metadata_jwks_retrieve_and_cache(request_rec *r, oidc_cfg
}

// TODO: add issuer?
if (oidc_proto_validate_jwt(r, jwt, NULL, TRUE, FALSE, -1) == FALSE)
if (oidc_proto_validate_jwt(r, jwt, NULL, FALSE, FALSE, -1) == FALSE)
return FALSE;

oidc_debug(r, "successfully verified and validated JWKs JWT");
Expand Down

0 comments on commit 2b3d799

Please sign in to comment.