Skip to content

Commit

Permalink
Add error messages for invalid JWT claims
Browse files Browse the repository at this point in the history
  • Loading branch information
@spvickers
spvickers committed Jan 30, 2021
1 parent 0b9a7f8 commit abbf606
Showing 1 changed file with 8 additions and 3 deletions.
11 changes: 8 additions & 3 deletions src/System.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -852,6 +852,7 @@ private function parseMessage()
*/
private function parseClaims()
{
$errors = array();
foreach (Util::JWT_CLAIM_MAPPING as $key => $mapping) {
$claim = Util::JWT_CLAIM_PREFIX;
if (!empty($mapping['suffix'])) {
Expand Down Expand Up @@ -880,7 +881,7 @@ private function parseClaims()
if (!is_null($value)) {
if (isset($mapping['isArray']) && $mapping['isArray']) {
if (!is_array($value)) {
$this->ok = false;
$errors[] = "'{$claim}' claim must be an array";
} else {
$value = implode(',', $value);
}
Expand Down Expand Up @@ -923,7 +924,7 @@ private function parseClaims()
if ($this->jwt->hasClaim($claim)) {
$custom = $this->jwt->getClaim($claim);
if (!is_array($custom) && !is_object($custom)) {
$this->ok = false;
$errors[] = "'{$claim}' claim must be an object";
} else {
foreach ($custom as $key => $value) {
$this->messageParameters["custom_{$key}"] = $value;
Expand All @@ -934,13 +935,17 @@ private function parseClaims()
if ($this->jwt->hasClaim($claim)) {
$ext = $this->jwt->getClaim($claim);
if (!is_array($ext) && !is_object($ext)) {
$this->ok = false;
$errors[] = "'{$claim}' claim must be an object";
} else {
foreach ($ext as $key => $value) {
$this->messageParameters["ext_{$key}"] = $value;
}
}
}
if (!empty($errors)) {
$this->ok = false;
$this->reason = 'Invalid JWT: ' . implode(', ', $errors);
}
}

/**
Expand Down

0 comments on commit abbf606

Please sign in to comment.