Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

aliri_oauth2::Authority::new_from_url errors if an unknown algorithm is encountered #11

Closed
netthier opened this issue May 5, 2022 · 2 comments · Fixed by #13
Closed

aliri_oauth2::Authority::new_from_url errors if an unknown algorithm is encountered #11

netthier opened this issue May 5, 2022 · 2 comments · Fixed by #13

Comments

@netthier
Copy link

netthier commented May 5, 2022

Even if multiple algorithms are offered, the deserialization of the response will fail if any unsupported algorithm is offered.
My Keycloak server provides both RS256 and RSA-OAEP algorithms.
Running

let authority =
        aliri_oauth2::Authority::new_from_url("https://example.com/auth/realms/master/protocol/openid-connect/certs", oauth_validator)
            .await?;

fails with

Error: error decoding response body: data did not match any variant of untagged enum Algorithm at line 1 column 90

with column 90 containing "alg": "RSA-OAEP"
@netthier
Copy link
Author

netthier commented May 5, 2022

Disabling RSA-OAEP in Keycloak fixes this issue, but I think there should be a way to handle unknown algorithms in aliri.

@neoeinstein
Copy link
Owner

That certainly sounds reasonable. I may be able to add something in to identify that it is an unsupported key type and log a warning, but continue operating normally.

neoeinstein added a commit that referenced this issue Jun 15, 2022
@neoeinstein
fix: better handle unknown key types in a JWKS
06a3b0a 
Closes #11
neoeinstein added a commit that referenced this issue Jun 15, 2022
@neoeinstein
fix: better handle unknown key types in a JWKS
b7b53dd 
Closes #11
@neoeinstein neoeinstein mentioned this issue Jun 15, 2022
Merged
neoeinstein added a commit that referenced this issue Jun 15, 2022
@neoeinstein
fix: better handle unknown key types in a JWKS
9c5b831 
Closes #11
neoeinstein added a commit that referenced this issue Jun 15, 2022
@neoeinstein
fix: better handle unknown key types in a JWKS
f0834a2 
Closes #11
neoeinstein added a commit that referenced this issue Jun 15, 2022
@neoeinstein
fix: better handle unknown key types in a JWKS
373fb40 
Closes #11
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

fix: better handle unknown key types in a JWKS neoeinstein/aliri
2 participants
@neoeinstein @netthier