pokemon/nuzlocke-tracker
1
1
Fork 0
Code Issues Pull Requests 10 Actions Packages Projects Releases Wiki Activity

fix: catch PyJWKSetError in JWT verification fallback
All checks were successful
CI / backend-tests (push) Successful in 29s
Details
CI / frontend-tests (push) Successful in 28s
Details

Browse Source 
PyJWKSetError is not a subclass of PyJWKClientError — they are siblings
under PyJWTError. The empty JWKS key set error was not being caught.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
This commit is contained in:
Julian Tabel
2026-03-22 09:56:58 +01:00
parent 94cc74c0fb
commit ac0a04e71f
1 changed files with 3 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
backend/src/app/core/auth.py
View File

@@ -3,7 +3,7 @@ from uuid import UUID
import jwt import jwt
from fastapi import Depends, HTTPException, Request, status from fastapi import Depends, HTTPException, Request, status
from jwt import PyJWKClient, PyJWKClientError from jwt import PyJWKClient, PyJWKClientError, PyJWKSetError
from sqlalchemy import select from sqlalchemy import select
from sqlalchemy.ext.asyncio import AsyncSession from sqlalchemy.ext.asyncio import AsyncSession
@@ -75,6 +75,8 @@ def _verify_jwt(token: str) -> dict | None:
pass pass
except PyJWKClientError: except PyJWKClientError:
pass pass
except PyJWKSetError:
pass
return _verify_jwt_hs256(token) return _verify_jwt_hs256(token)