Skip to content

Possible Invalid iat fix#503

Draft
PascalDR wants to merge 5 commits into
devfrom
fix/invalid_iat
Draft

Possible Invalid iat fix#503
PascalDR wants to merge 5 commits into
devfrom
fix/invalid_iat

Conversation

@PascalDR

@PascalDR PascalDR commented Sep 26, 2025

Copy link
Copy Markdown
Contributor

Resolves #498

Comment thread pyeudiw/jwt/helper.py
KeyLike: TypeAlias = ECKey | RSAKey | OKPKey | SYMKey
SerializationFormat = Literal["compact", "json"]

JWT_REGEX = r'^[A-Za-z0-9-_]+\.[A-Za-z0-9-_]+\.[A-Za-z0-9-_]+$'

@peppelinux peppelinux Sep 29, 2025

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

not sure that it might work with an SD-JWT

@PascalDR PascalDR Sep 29, 2025

Copy link
Copy Markdown
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

In this case the signed request is always a simple JWS.
I can also add a proper function in the sd-jwt package if you want.

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

is this helper used also for SD-JWT?

Copy link
Copy Markdown
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

At this moment this function is used exclusively to do the check for the signed request.

PascalDR and others added 2 commits September 29, 2025 12:54
…tion_request_endpoint.py

Co-authored-by: Giuseppe De Marco <demarcog83@gmail.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants