You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@oltu.apache.org by "Thomas Meyer (JIRA)" <ji...@apache.org> on 2015/04/22 11:23:58 UTC

[jira] [Created] (OLTU-172) Handle invalid JWT exp field more gracefully

Thomas Meyer created OLTU-172:
---------------------------------

             Summary: Handle invalid JWT exp field more gracefully
                 Key: OLTU-172
                 URL: https://issues.apache.org/jira/browse/OLTU-172
             Project: Apache Oltu
          Issue Type: Bug
          Components: oauth2-jwt
            Reporter: Thomas Meyer
            Priority: Minor


Hi,

Sadly WSO2 create invalid JW tokens with an "exp" field with millisecond resolution. According to the spec the field "exp" should only contain second resolution.

When JWTReader tries to parse the exp field a ClassCastException will occur, becaue a Long object is returned and not an Integer.

Attached patch casts to the super class method to cover Long and Integer values correctly.

What do you think about this patch? Okay to go in?



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)