pokemon/nuzlocke-tracker
1
1
Fork 0
Code Issues Pull Requests 10 Actions Packages Projects Releases Wiki Activity

Merge pull request 'Fix intermittent 401 errors and add ES256 JWT support' (#86) from feature/fix-intermittent-401-errors into develop
All checks were successful
CI / backend-tests (push) Successful in 30s
Details
CI / frontend-tests (push) Successful in 29s
Details

Browse Source 
Reviewed-on: #86
This commit was merged in pull request #86.
This commit is contained in:
TheFurya
2026-03-22 11:53:48 +01:00
parent 79cbb06ec9 c5959cfd14
commit ce9d08963f
7 changed files with 97 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
backend/src/app/core/auth.py
View File

@@ -60,7 +60,7 @@ def _verify_jwt_hs256(token: str) -> dict | None:
def _verify_jwt(token: str) -> dict | None:
"""Verify JWT using JWKS (RS256), falling back to HS256 shared secret."""
"""Verify JWT using JWKS (RS256/ES256), falling back to HS256 shared secret."""
client = _get_jwks_client()
if client:
try:
@@ -68,7 +68,7 @@ def _verify_jwt(token: str) -> dict | None:
return jwt.decode(
token,
signing_key.key,
algorithms=["RS256"],
algorithms=["RS256", "ES256"],
audience="authenticated",
)
except jwt.InvalidTokenError: