Closed ekmadsen closed 2 years ago
@ekmadsen, Thanks for reaching out! I'll bring this to the attention of our python developers and someone will review and follow up.
Thanks for using Okta!
Internal Ref: OKTA-432249
@ekmadsen Fixed, jwt-verifier v0.2.1 has been released. I'm closing this issue as resolved. Feel free to reopen this issue or create a new one if your problem exists still.
Thanks @serhiibuniak-okta. I've updated the package and confirmed the issue has been resolved.
Thank you @ekmadsen for letting us know that it works now.
I am using version 0.2 of
okta_jwt_verifier
for Python. When attempting to verify a JWT token has not expired via:jwt_verifier.verify_expiration(token)
I receive the following error:
The call stack is:
The last call is a method in the
jose
package. So even though theJWTUtils.verify_claims
method specifies only verify the "exp" claim, thejose
code insists the "audience" and "issuer" claims must exist. They were not passed at the top of the call stack, so they have a value ofNone
.I resorted to manually verifying the token's "iat" and "exp" claims were within 5 minutes of the system clock. But I'd prefer if the
jwt_verifier.verify_expiration
method functioned correctly.