Fix parsing of PEM and RSA keys #65

paulineribeyre · 2022-06-27T20:46:29Z

Fix a bug introduced in 6.0.2 by #52 when using authutils.token.fastapi.access_token:

Traceback (most recent call last):
  File "/env/lib/python3.9/site-packages/authutils/token/fastapi.py", line 90, in getter
    pub_keys = await pub_keys
fastapi.exceptions.HTTPException

This is caused by calling the OrderedDict constructor with a list of dicts instead of a list of tuples.

Fence's /.well-known/jwks endpoint returns:

{
  keys: [
    {
      kid: "<kid>",
      kty: "RSA",
      n: "<key>",
      [...]
    }
  ]
}

while the /jwt/keys endpoint returns the keys in PEM format:

{
  keys: [
    [
      "<kid>",
      "-----BEGIN PUBLIC KEY----- <key> -----END PUBLIC KEY----- ",
    ]
  ]
}

Since version 6.0.2, get_keys_url can return the URL to either endpoint, and access_token was not updated to work with the non-PEM format.

Bug Fixes

Fix authutils.token.fastapi.access_token to accept both PEM and RSA key formats

github-actions · 2022-06-27T20:47:06Z

The style in this PR agrees with black. ✔️

This formatting comment was generated automatically by a script in uc-cdis/wool.

Fix parsing of PEM and RSA keys

4174ec7

paulineribeyre mentioned this pull request Jun 27, 2022

PXP-10039 Ability to make authenticated calls uc-cdis/requestor#35

Merged

Avantol13 approved these changes Jun 27, 2022

View reviewed changes

paulineribeyre merged commit 41295ce into master Jun 27, 2022

paulineribeyre deleted the fix/key-parsing branch June 27, 2022 20:58

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Fix parsing of PEM and RSA keys #65

Fix parsing of PEM and RSA keys #65

paulineribeyre commented Jun 27, 2022

github-actions bot commented Jun 27, 2022

Fix parsing of PEM and RSA keys #65

Fix parsing of PEM and RSA keys #65

Conversation

paulineribeyre commented Jun 27, 2022

Bug Fixes

github-actions bot commented Jun 27, 2022