RepoMirrors/haproxy
1
0
Fork 0
mirror of http://git.haproxy.org/git/haproxy.git/ synced 2025-04-11 03:31:36 +00:00
Code Issues Packages Projects Releases Wiki Activity

MINOR: jwt: Make invalid static JWT algorithms an error in jwt_verify converter

Browse Source 
It is not useful to start a configuration where an invalid static string is
provided as the JWT algorithm. Better make the administrator aware of the
suspected typo by failing to start.
This commit is contained in:
Tim Duesterhus 2021-10-29 18:06:55 +02:00 committed by Willy Tarreau
parent 0d026edaef
commit ab896ee3f7
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
src/sample.c
View File

@ -3522,14 +3522,14 @@ static int sample_conv_jwt_verify_check(struct arg *args, struct sample_conv *co
switch(alg) {
case JWT_ALG_DEFAULT:
memprintf(err, "unknown JWT algorithm : %s", *err);
break;
memprintf(err, "unknown JWT algorithm: %s", args[0].data.str.area);
return 0;
case JWS_ALG_PS256:
case JWS_ALG_PS384:
case JWS_ALG_PS512:
memprintf(err, "RSASSA-PSS JWS signing not managed yet");
break;
return 0;
default:
break;