entrouvert
/
pyoidc-ozwillo
Archived
17
0
Fork 0
Code Issues Pull Requests Releases Activity

Use the OP key when verifying signature on a received JWT.

This commit is contained in:
Roland Hedberg 2014-12-13 15:21:58 +01:00
parent b44f84eaab
commit 7eeaabeb0e
1 changed files with 5 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
src/oic/oic/__init__.py
View File

@ -751,9 +751,12 @@ class Client(oauth2.Client):
_kty = jws.alg2keytype(algo)
# Keys of the OP ?
try:
keys = self.keyjar.get_signing_key(_kty, self.kid["sig"][_kty])
args = {"kid": self.kid["sig"][_kty]}
except KeyError:
keys = self.keyjar.get_signing_key(_kty)
args = {}
owner = self.keyjar.match_owner(path)
keys = self.keyjar.get_signing_key(_kty, owner, **args)
return _schema().from_jwt(resp.text, keys)